Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
File: BXEVMhUM58l6fqSMDXekLm8NX8M.mft (raw, json)
Hash identifier: JjYsSyKNXf/D/17xV3kz7DzQlRRCtrL1fEZ0LzQ0iWA=
Subject key identifier: 95:34:F8:93:04:38:94:9D:02:BE:18:14:53:19:35:FA:4C:69:86:A5
Authority key identifier: 05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
Certificate issuer: /CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Certificate serial: 019A5074CFB76DA5A04608CB1D9181EF08A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
Manifest number: 0795
Signing time: Tue 04 Nov 2025 20:00:23 +0000
Manifest this update: Tue 04 Nov 2025 20:00:23 +0000
Manifest next update: Wed 05 Nov 2025 20:00:23 +0000
Files and hashes: 1: BXEVMhUM58l6fqSMDXekLm8NX8M.crl (hash: Ybw5l/DxjQLf8x4d4/R9rvn4Qlw+OW/+CbIIDGSO7zQ=)
2: WQBZ-f5dGsC1cL_jEBOvsIELp80.roa (hash: R9ehHlzYxXlTfaqJUkztXePFQ64EbowiDEZr/EhM2e4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:74:cf:b7:6d:a5:a0:46:08:cb:1d:91:81:ef:08:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Validity
Not Before: Nov 4 20:00:23 2025 GMT
Not After : Nov 5 20:00:23 2025 GMT
Subject: CN=9534f8930438949d02be1814531935fa4c6986a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:50:e4:44:40:1f:92:97:84:e6:74:c2:45:6a:
e8:db:a9:f7:de:a3:5a:19:7e:3b:89:78:5f:89:60:
5f:da:5b:4a:9f:94:de:99:f7:99:6a:41:b5:72:1b:
eb:32:ce:b7:ba:3b:2d:e7:f6:4c:72:24:ec:df:77:
b6:cd:5d:78:01:36:5f:ca:15:fb:8d:9f:b2:3d:a1:
ec:00:29:da:e0:d5:05:c2:08:20:8a:18:d1:55:1e:
02:b6:bf:9e:38:4e:b9:ba:76:af:8f:af:f1:bf:cb:
89:3d:e3:99:b2:29:66:67:82:24:5e:3c:85:7b:db:
9d:1f:6e:2f:33:a7:b1:30:56:3c:50:41:67:f2:bc:
b3:ac:28:3d:d4:fe:a3:8a:ac:b3:5c:50:ad:1b:d4:
5c:41:dc:49:90:0f:24:81:89:ef:6a:8b:2c:02:cb:
97:d2:3e:f1:fe:93:7e:ee:c8:f7:15:4f:23:8a:1d:
46:6c:2b:2e:12:d3:cf:ba:7b:53:d9:37:01:fd:1c:
b6:58:5e:a1:60:a3:0c:5c:53:6a:15:96:80:86:31:
9b:99:bb:3a:20:73:32:a0:3d:7e:0c:27:ea:a4:9a:
36:30:44:c3:d3:7c:30:5d:7b:74:b6:0f:c8:a3:26:
fb:f0:07:2a:bb:94:c8:cd:4d:01:7f:e5:7c:31:9d:
2e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:34:F8:93:04:38:94:9D:02:BE:18:14:53:19:35:FA:4C:69:86:A5
X509v3 Authority Key Identifier:
keyid:05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:e5:6b:f5:7c:af:b1:eb:1b:f2:21:1e:88:31:e3:27:ba:91:
7e:4f:08:68:04:f8:5b:9a:3c:99:4c:e0:88:c9:ae:a5:60:94:
c0:4c:f6:23:35:3c:52:3d:da:ac:ff:65:86:4e:7c:fb:27:61:
9c:8e:79:72:b2:07:2c:b7:5d:68:34:58:49:19:dc:8d:ed:50:
a2:dd:d2:14:47:15:76:79:a9:03:7c:66:24:3f:41:8f:f7:a4:
68:3d:b1:88:eb:40:37:e6:0c:e4:e0:d6:e0:fd:6b:fa:68:2b:
bb:a7:47:55:a3:fd:78:c1:93:25:c5:66:06:91:07:a0:9b:32:
38:f5:08:fd:60:63:17:bd:5b:2c:b4:16:29:71:cc:68:b3:da:
fc:64:10:20:21:55:8e:aa:e3:6b:4a:b6:d3:3b:32:04:4d:ab:
68:29:c4:d2:20:a3:a5:2a:42:9b:fe:66:4c:b3:c4:1c:22:ee:
92:a5:00:b8:a2:3b:29:01:7c:61:cc:b7:82:83:38:de:48:9e:
96:7d:7a:a3:a3:3a:32:53:a6:57:cf:b3:49:44:13:17:16:4b:
b8:1d:4c:79:54:da:01:e9:f1:6a:49:53:c6:71:96:1c:dc:d4:
11:98:18:78:6e:52:c8:5f:dd:44:fb:41:29:e2:f5:0f:d0:7d:
df:2a:d5:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQdM+3baWgRgjLHZGB7wijMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NzExNTMyMTUwY2U3Yzk3YTdlYTQ4YzBkNzdhNDJlNmYw
ZDVmYzMwHhcNMjUxMTA0MjAwMDIzWhcNMjUxMTA1MjAwMDIzWjAzMTEwLwYDVQQD
Eyg5NTM0Zjg5MzA0Mzg5NDlkMDJiZTE4MTQ1MzE5MzVmYTRjNjk4NmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAplDkREAfkpeE5nTCRWro26n33qNa
GX47iXhfiWBf2ltKn5TemfeZakG1chvrMs63ujst5/ZMciTs33e2zV14ATZfyhX7
jZ+yPaHsACna4NUFwgggihjRVR4Ctr+eOE65unavj6/xv8uJPeOZsilmZ4IkXjyF
e9udH24vM6exMFY8UEFn8ryzrCg91P6jiqyzXFCtG9RcQdxJkA8kgYnvaossAsuX
0j7x/pN+7sj3FU8jih1GbCsuEtPPuntT2TcB/Ry2WF6hYKMMXFNqFZaAhjGbmbs6
IHMyoD1+DCfqpJo2METD03wwXXt0tg/Ioyb78Acqu5TIzU0Bf+V8MZ0uNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJU0+JMEOJSdAr4YFFMZNfpMaYalMB8GA1UdIwQY
MBaAFAVxFTIVDOfJen6kjA13pC5vDV/DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlhFVk1oVU01OGw2ZnFTTURYZWtMbThOWDhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS80ZDg5ZDYtNDQ2NS00MzIxLTkyODIt
N2JjZmQ2NGUwMjg4LzEvQlhFVk1oVU01OGw2ZnFTTURYZWtMbThOWDhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS80ZDg5ZDYtNDQ2NS00MzIxLTkyODItN2JjZmQ2NGUwMjg4
LzEvQlhFVk1oVU01OGw2ZnFTTURYZWtMbThOWDhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoeVr9Xyv
sesb8iEeiDHjJ7qRfk8IaAT4W5o8mUzgiMmupWCUwEz2IzU8Uj3arP9lhk58+ydh
nI55crIHLLddaDRYSRncje1Qot3SFEcVdnmpA3xmJD9Bj/ekaD2xiOtAN+YM5ODW
4P1r+mgru6dHVaP9eMGTJcVmBpEHoJsyOPUI/WBjF71bLLQWKXHMaLPa/GQQICFV
jqrja0q20zsyBE2raCnE0iCjpSpCm/5mTLPEHCLukqUAuKI7KQF8Ycy3goM43kie
ln16o6M6MlOmV8+zSUQTFxZLuB1MeVTaAenxaklTxnGWHNzUEZgYeG5SyF/dRPtB
KeL1D9B93yrVxA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 22:22:00 2025 by rpki-client