Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
File: bSPOewwQBo-8RMAhlD4zkBPyruA.mft (raw, json)
Hash identifier: XjalpPMwHCBowRJCakFbyYnxAmSWjYqyPBDcDHnmq+w=
Subject key identifier: AC:5C:66:BA:A0:99:7D:3C:42:11:12:B0:AA:5B:25:C3:26:E1:9D:0F
Authority key identifier: 6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
Certificate issuer: /CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Certificate serial: 0198733D3F86966E8E0A2CC427AAD517E362
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
Manifest number: 1616
Signing time: Mon 04 Aug 2025 04:00:50 +0000
Manifest this update: Mon 04 Aug 2025 04:00:50 +0000
Manifest next update: Tue 05 Aug 2025 04:00:50 +0000
Files and hashes: 1: LQcm0nhQTgxfcAEHFSpSeQFsVHo.roa (hash: ScQNvXtsK5w/Wj3QzlqfHMAUcdIYUpFbtGKhSGmn1FI=)
2: bSPOewwQBo-8RMAhlD4zkBPyruA.crl (hash: exO9KvhoDhvFL5n1PdoMtS+KgzAnAFjFTU6RgRWuDWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:3d:3f:86:96:6e:8e:0a:2c:c4:27:aa:d5:17:e3:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Validity
Not Before: Aug 4 04:00:50 2025 GMT
Not After : Aug 5 04:00:50 2025 GMT
Subject: CN=ac5c66baa0997d3c421112b0aa5b25c326e19d0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:42:d2:9f:16:50:5e:50:b0:78:41:d4:a1:8e:
b5:e7:bb:59:59:89:19:ca:01:b5:6c:dd:36:04:a2:
bf:1e:2c:7a:f9:92:24:36:6e:fb:86:49:8d:74:aa:
15:e1:0b:86:94:f4:fd:eb:9c:0c:58:7b:0e:f7:b6:
0c:fb:52:8f:89:ff:79:68:92:79:14:cd:3a:45:60:
92:76:8c:ce:7e:93:f6:ec:96:60:e6:32:08:a2:b5:
7e:a7:a1:7d:a5:31:d3:8a:13:ed:78:1e:cb:19:e6:
64:b3:59:af:d7:80:71:dc:6c:89:98:80:51:55:56:
a9:e0:bd:7a:b1:ea:a7:38:f1:a8:88:7a:76:aa:14:
ec:c8:b1:7b:3e:1c:33:aa:69:c1:ae:d0:e0:a2:f4:
0d:08:0f:4b:80:51:6f:c4:c9:13:36:38:15:7b:39:
3a:b4:c1:75:f6:8d:16:a8:b2:41:d1:06:68:4e:92:
cc:c3:d5:ce:4b:f1:d9:7a:95:a8:a3:4c:a1:bc:a5:
ba:5d:21:c7:16:a2:aa:8a:ed:4c:c1:70:e5:d5:72:
4d:e4:3b:23:41:3f:a9:bd:8a:03:a8:b8:2d:49:c4:
1c:f1:41:dd:80:06:86:92:6b:a7:98:3f:86:b4:9f:
fb:f1:64:b8:54:b0:bc:e9:0e:ea:e3:02:c2:3e:de:
fa:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:5C:66:BA:A0:99:7D:3C:42:11:12:B0:AA:5B:25:C3:26:E1:9D:0F
X509v3 Authority Key Identifier:
keyid:6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:a5:97:7f:3b:f3:35:03:83:9e:ae:f1:ff:d5:54:c9:ed:03:
a0:52:e3:d5:b3:2b:29:17:5a:79:96:42:6f:02:fd:ba:fa:fb:
b0:47:0f:5e:3c:4f:91:f9:32:fc:3c:25:7b:cc:ec:37:eb:c5:
56:5a:20:18:b9:b4:da:ca:ad:ed:4c:36:92:06:fe:3f:7a:5d:
2b:98:a0:4f:15:93:c8:c0:6c:51:2f:85:be:1f:ae:87:44:09:
27:39:5c:48:14:94:36:29:2b:1f:8a:d5:64:82:b0:62:f5:b0:
71:f7:0e:27:95:04:32:85:89:80:4d:92:f9:8d:48:96:b6:9b:
5e:ab:2b:61:71:a3:bb:bc:eb:1f:67:39:dd:80:8f:54:2a:b1:
8a:86:c1:82:07:0d:ea:e6:59:f8:56:d1:fb:7f:b5:b1:e3:6f:
62:0c:b0:be:3c:83:eb:c1:48:37:82:27:a0:76:7e:84:a5:15:
c2:f0:07:38:fb:12:b0:d2:2d:15:38:9d:61:cf:4f:5e:1b:3e:
fb:a1:68:cf:d7:41:38:43:9d:eb:40:fc:1d:07:d6:60:36:ab:
d5:6f:81:62:35:99:ed:ed:5b:77:91:49:5c:91:ad:cd:32:bc:
ba:fe:4a:05:8f:29:7e:0c:47:e0:ba:32:07:cf:8e:e3:8f:fc:
5f:4e:53:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhzPT+Glm6OCizEJ6rVF+NiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMjNjZTdiMGMxMDA2OGZiYzQ0YzAyMTk0M2UzMzkwMTNm
MmFlZTAwHhcNMjUwODA0MDQwMDUwWhcNMjUwODA1MDQwMDUwWjAzMTEwLwYDVQQD
EyhhYzVjNjZiYWEwOTk3ZDNjNDIxMTEyYjBhYTViMjVjMzI2ZTE5ZDBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvkLSnxZQXlCweEHUoY6157tZWYkZ
ygG1bN02BKK/Hix6+ZIkNm77hkmNdKoV4QuGlPT965wMWHsO97YM+1KPif95aJJ5
FM06RWCSdozOfpP27JZg5jIIorV+p6F9pTHTihPteB7LGeZks1mv14Bx3GyJmIBR
VVap4L16seqnOPGoiHp2qhTsyLF7PhwzqmnBrtDgovQNCA9LgFFvxMkTNjgVezk6
tMF19o0WqLJB0QZoTpLMw9XOS/HZepWoo0yhvKW6XSHHFqKqiu1MwXDl1XJN5Dsj
QT+pvYoDqLgtScQc8UHdgAaGkmunmD+GtJ/78WS4VLC86Q7q4wLCPt76sQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKxcZrqgmX08QhESsKpbJcMm4Z0PMB8GA1UdIwQY
MBaAFG0jznsMEAaPvETAIZQ+M5AT8q7gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlNQT2V3d1FCby04Uk1BaGxENHprQlB5cnVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My82NmFmMDctMzMxOC00ZjRhLTg5ZmYt
NDBjNWViYzZmNzM2LzEvYlNQT2V3d1FCby04Uk1BaGxENHprQlB5cnVBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My82NmFmMDctMzMxOC00ZjRhLTg5ZmYtNDBjNWViYzZmNzM2
LzEvYlNQT2V3d1FCby04Uk1BaGxENHprQlB5cnVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgKWXfzvz
NQODnq7x/9VUye0DoFLj1bMrKRdaeZZCbwL9uvr7sEcPXjxPkfky/Dwle8zsN+vF
VlogGLm02sqt7Uw2kgb+P3pdK5igTxWTyMBsUS+Fvh+uh0QJJzlcSBSUNikrH4rV
ZIKwYvWwcfcOJ5UEMoWJgE2S+Y1IlrabXqsrYXGju7zrH2c53YCPVCqxiobBggcN
6uZZ+FbR+3+1seNvYgywvjyD68FIN4InoHZ+hKUVwvAHOPsSsNItFTidYc9PXhs+
+6Foz9dBOEOd60D8HQfWYDar1W+BYjWZ7e1bd5FJXJGtzTK8uv5KBY8pfgxH4Loy
B8+O44/8X05TAg==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:09:18 2025 by rpki-client