Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft
File: BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft (raw, json)
Hash identifier: QGhfN1tYRZswNINOt/FdqL9Q6Wze0K7303bol1xMc/4=
Subject key identifier: 33:B6:0E:0F:4C:8F:41:26:3D:34:27:96:41:0C:0A:3B:2A:42:48:15
Authority key identifier: 05:63:CB:26:3D:F5:0D:2D:4D:07:3C:0F:7D:B6:CD:27:76:30:2C:9D
Certificate issuer: /CN=0563cb263df50d2d4d073c0f7db6cd2776302c9d
Certificate serial: 019A4F2B138A8C25DA96D7382A4DE76DB528
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft
Manifest number: 0710
Signing time: Tue 04 Nov 2025 14:00:14 +0000
Manifest this update: Tue 04 Nov 2025 14:00:14 +0000
Manifest next update: Wed 05 Nov 2025 14:00:14 +0000
Files and hashes: 1: B6FxjiJOC6_Birv76wylcyDexTM.roa (hash: eGhXe2MadeqSm3dFdd2yllOqHv5uGkbMvrl6C4hJsTU=)
2: BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl (hash: xFifG8oezM5gGb00ughxW0mGZ0dvFK65aTtTOSl4oa8=)
3: Jkosv2xFFNQ2gORMGJ-Rj1JTgqk.roa (hash: V03sqShQTC3KKVEiSIPpDzr6IAR7BOwlpV6pUG5aI+w=)
4: PU3RtVE8bUTLDau3UULyJxnwYvk.roa (hash: rurDzg32C4cm1zQE6cZCxEDJG3aKAFEXLx56a9lYAvQ=)
5: TPqMfRSK5sIipm7-2Mw_-o6t_pE.roa (hash: DbvKLEpzC4KlaBAFfc8W2Orz87Jz73d6hIvvLvcnSeI=)
6: aFnhQawEO18IQ3GTJ01kkL1iiO8.roa (hash: lmQ4l6Xz/ufxEDRo15j0d1wdcSctSZ/L1+X4hlqiZ0E=)
7: i5Cva7AkVQeMjYySCI1cSGulBFU.roa (hash: OqdQgQr223XTYw+nW6EEK96kWz2kctHBvYApbJ8V5SM=)
8: orwBdnVfFaxWFzZXqCDe7xYVF-0.roa (hash: s5h3MlDKvwqoRseQHdYHw8t3JkEhjpPj+FNdQWzBxyg=)
9: zfGaREwozQlPDznadYm5iZBdTbo.roa (hash: BQ/Qo3WVP+Q/nW3nNfYM3evPzNFHtG1U5B77mp2vN9c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 14:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:13:8a:8c:25:da:96:d7:38:2a:4d:e7:6d:b5:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0563cb263df50d2d4d073c0f7db6cd2776302c9d
Validity
Not Before: Nov 4 14:00:14 2025 GMT
Not After : Nov 5 14:00:14 2025 GMT
Subject: CN=33b60e0f4c8f41263d342796410c0a3b2a424815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3f:88:aa:ba:4c:c8:0d:63:cb:df:6f:11:1c:
fd:ac:f7:f3:b2:0b:a7:5f:9c:3e:ec:93:15:c8:f9:
79:12:fe:e8:8d:72:1f:38:a5:77:3b:48:7f:75:9f:
d3:9d:f9:43:8d:de:32:f1:7e:33:08:b2:e9:4d:0c:
cc:c1:33:b7:2e:53:1b:b8:61:7e:34:19:ca:46:0c:
da:51:b6:5e:f2:6d:77:10:8f:e5:40:1c:ef:22:e0:
fc:dc:3f:3f:a0:59:c8:88:69:63:0f:bd:71:29:87:
ce:03:48:51:bf:ea:f9:40:17:7a:d8:75:bd:68:df:
4b:53:7d:aa:28:35:c6:b8:82:1f:75:e2:34:1a:b1:
6c:29:e9:91:ae:14:f8:6a:22:e6:72:ac:62:ce:c4:
dd:70:1d:2f:1d:b4:8d:a2:99:35:19:54:93:94:b8:
d6:12:bb:05:04:6a:9d:58:05:18:1f:20:be:89:73:
10:15:71:c9:35:e7:59:81:7d:c3:54:ac:c8:f8:de:
b2:de:e7:8c:5a:8c:48:d6:01:fa:1b:36:49:46:2a:
b5:40:e6:23:9e:43:c5:97:09:e5:36:43:a5:ac:f6:
56:c3:7f:76:1c:d1:a3:7c:85:f3:95:08:ff:61:f8:
d8:88:af:ca:b5:10:ff:e0:26:1d:d9:b4:26:19:33:
3e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B6:0E:0F:4C:8F:41:26:3D:34:27:96:41:0C:0A:3B:2A:42:48:15
X509v3 Authority Key Identifier:
keyid:05:63:CB:26:3D:F5:0D:2D:4D:07:3C:0F:7D:B6:CD:27:76:30:2C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:d8:03:17:89:12:89:4e:0c:6e:b6:0a:e5:ee:ef:64:d9:c4:
0d:d6:a6:53:05:dd:91:e1:03:e7:8a:8b:da:4a:0f:08:36:65:
af:2c:42:49:d0:97:03:78:85:15:df:26:1f:91:84:59:54:46:
85:b5:bc:62:dc:54:29:a3:8f:ca:51:ba:d0:da:f7:6e:ac:ac:
4e:bf:6e:11:74:ea:38:86:56:3a:24:b1:41:e0:bb:82:d3:59:
fc:44:ac:88:b6:d4:df:7e:8d:d5:0e:3e:2a:d9:29:9d:49:61:
85:2f:b5:1c:6e:a2:4c:64:64:a9:ba:da:7e:ac:39:09:29:f5:
b8:1f:11:2d:51:fe:6d:c0:dd:e8:aa:aa:f5:7c:e2:44:52:75:
60:13:4b:10:09:14:e0:28:e6:46:28:e6:29:9a:27:4b:e7:e6:
7d:59:c5:ac:bd:97:88:ae:0c:ac:3f:a5:30:e0:d6:ac:06:e7:
9b:86:da:0e:a6:18:68:d8:2d:8c:d0:3a:72:31:37:5b:e2:c2:
79:9f:04:f9:e5:73:58:8d:c9:2f:b1:42:67:b3:c3:d4:d6:70:
6b:8a:3f:0b:63:63:5d:8e:9a:fc:a8:0b:b9:8f:ef:04:a7:bc:
c5:49:40:fc:a9:8b:8f:07:78:69:c6:74:6e:90:70:5f:f7:ee:
05:8a:53:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPKxOKjCXaltc4Kk3nbbUoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NjNjYjI2M2RmNTBkMmQ0ZDA3M2MwZjdkYjZjZDI3NzYz
MDJjOWQwHhcNMjUxMTA0MTQwMDE0WhcNMjUxMTA1MTQwMDE0WjAzMTEwLwYDVQQD
EygzM2I2MGUwZjRjOGY0MTI2M2QzNDI3OTY0MTBjMGEzYjJhNDI0ODE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvz+IqrpMyA1jy99vERz9rPfzsgun
X5w+7JMVyPl5Ev7ojXIfOKV3O0h/dZ/TnflDjd4y8X4zCLLpTQzMwTO3LlMbuGF+
NBnKRgzaUbZe8m13EI/lQBzvIuD83D8/oFnIiGljD71xKYfOA0hRv+r5QBd62HW9
aN9LU32qKDXGuIIfdeI0GrFsKemRrhT4aiLmcqxizsTdcB0vHbSNopk1GVSTlLjW
ErsFBGqdWAUYHyC+iXMQFXHJNedZgX3DVKzI+N6y3ueMWoxI1gH6GzZJRiq1QOYj
nkPFlwnlNkOlrPZWw392HNGjfIXzlQj/YfjYiK/KtRD/4CYd2bQmGTM+mwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDO2Dg9Mj0EmPTQnlkEMCjsqQkgVMB8GA1UdIwQY
MBaAFAVjyyY99Q0tTQc8D322zSd2MCydMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQldQTEpqMzFEUzFOQnp3UGZiYk5KM1l3TEowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi82MmU1ZjItMjViMy00NTU3LWFhOTQt
MTUwMzU0YjAwZTU1LzEvQldQTEpqMzFEUzFOQnp3UGZiYk5KM1l3TEowLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi82MmU1ZjItMjViMy00NTU3LWFhOTQtMTUwMzU0YjAwZTU1
LzEvQldQTEpqMzFEUzFOQnp3UGZiYk5KM1l3TEowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW9gDF4kS
iU4MbrYK5e7vZNnEDdamUwXdkeED54qL2koPCDZlryxCSdCXA3iFFd8mH5GEWVRG
hbW8YtxUKaOPylG60Nr3bqysTr9uEXTqOIZWOiSxQeC7gtNZ/ESsiLbU336N1Q4+
KtkpnUlhhS+1HG6iTGRkqbrafqw5CSn1uB8RLVH+bcDd6Kqq9XziRFJ1YBNLEAkU
4CjmRijmKZonS+fmfVnFrL2XiK4MrD+lMODWrAbnm4baDqYYaNgtjNA6cjE3W+LC
eZ8E+eVzWI3JL7FCZ7PD1NZwa4o/C2NjXY6a/KgLuY/vBKe8xUlA/KmLjwd4acZ0
bpBwX/fuBYpTFA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:20:54 2025 by rpki-client