Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
File: BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft (raw, json)
Hash identifier: K57kQddBkuUbwdZbgBaJGspk24mOTKUncXCpH8zP87E=
Subject key identifier: A6:F4:BD:64:25:C0:5D:15:C9:64:FD:C2:59:B8:6E:8A:2F:2E:CE:A7
Authority key identifier: 04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
Certificate issuer: /CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Certificate serial: 01988E0FDBDBC09F27246E934B42E07E0526
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
Manifest number: 0B09
Signing time: Sat 09 Aug 2025 09:01:00 +0000
Manifest this update: Sat 09 Aug 2025 09:01:00 +0000
Manifest next update: Sun 10 Aug 2025 09:01:00 +0000
Files and hashes: 1: BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl (hash: vaKY9Jb5unHEmXQsmb2jWK1IzAEcYrVm9IpzZzivoDw=)
2: dShe1ipT6-Y_-edVr4eNtxtPKAo.roa (hash: 34QucPlafnV+iMZk3j4FDiUJFtGuS1f17YL6xBvVoIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:0f:db:db:c0:9f:27:24:6e:93:4b:42:e0:7e:05:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Validity
Not Before: Aug 9 09:01:00 2025 GMT
Not After : Aug 10 09:01:00 2025 GMT
Subject: CN=a6f4bd6425c05d15c964fdc259b86e8a2f2ecea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:a2:3c:14:5e:73:63:60:44:97:b2:76:d8:81:
70:f6:29:64:6a:77:9f:e0:39:78:84:0c:2d:24:c9:
98:94:24:65:a3:01:5e:8c:ac:88:76:84:58:02:f9:
50:c8:56:2f:ca:7d:84:ca:35:56:96:72:73:cc:94:
3e:13:6f:57:38:84:b4:b1:93:2c:1e:b6:a2:34:9d:
aa:64:f3:ec:f2:e5:c6:bc:f7:25:dc:ba:58:e4:17:
ed:0f:71:28:bc:39:79:95:cf:9b:4d:9b:94:ce:11:
1b:d2:43:da:64:83:fb:5b:ae:8d:15:fb:76:19:7c:
1e:28:58:a5:dd:74:d8:4f:61:5c:ad:fe:33:31:2f:
bc:10:12:4f:53:20:e3:c0:76:43:07:5c:f5:8a:55:
08:49:df:ae:14:f8:8e:ef:c1:68:4e:ea:91:28:36:
ca:ac:69:5e:d3:13:68:df:7a:de:22:08:d6:a2:0a:
32:4a:cb:2f:52:76:7d:fe:b8:47:ca:f7:e1:74:07:
22:ae:78:9e:84:dd:96:0c:e7:5a:04:ae:56:82:11:
90:04:c5:f4:3f:13:36:13:9f:f0:c8:54:f8:3b:f0:
b7:18:19:78:88:01:de:4c:b1:17:7b:7b:53:d2:64:
04:87:68:2e:8e:a8:11:07:d8:64:d5:b6:cd:b7:03:
1e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:F4:BD:64:25:C0:5D:15:C9:64:FD:C2:59:B8:6E:8A:2F:2E:CE:A7
X509v3 Authority Key Identifier:
keyid:04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:15:b7:7d:cf:95:cd:2b:64:08:e6:db:b0:85:5c:df:c7:5b:
96:c1:21:a0:c6:dd:7b:ea:91:ea:70:43:fd:8b:05:0d:8f:43:
5f:76:92:e6:b1:0a:a3:0c:6b:7f:ee:7d:f6:a4:2b:9b:fb:6c:
8e:1c:e9:7e:fb:44:9e:a6:e5:7b:bf:47:7f:32:e2:3d:58:38:
ad:65:1b:ea:19:f8:aa:b5:94:f2:f4:22:d4:b1:59:da:0b:35:
13:76:69:4e:d3:de:08:55:33:ce:31:e2:40:05:3a:84:aa:8e:
f9:94:0e:d2:93:a9:3e:a2:6d:6c:87:e9:38:82:71:24:fb:41:
7c:71:d4:28:62:a6:9a:f2:0f:7f:9b:cb:26:43:f2:fa:91:09:
1d:45:0b:35:be:a4:06:83:57:2e:62:25:b5:2e:5b:75:dc:2c:
75:9f:b4:de:b4:7d:53:70:69:6c:ac:5d:81:f2:e4:ba:55:c1:
16:89:3f:30:08:66:f6:81:61:92:5a:1f:1a:9d:68:bf:5f:12:
7c:d0:a5:cb:f8:cc:ef:35:0a:9a:7a:2a:9f:de:cb:df:b1:0c:
90:4d:44:98:ec:d7:78:74:4c:d6:ab:d1:2d:6a:c9:2e:10:81:
ab:46:15:03:59:29:06:94:c6:db:7a:ce:eb:84:eb:d4:c7:bb:
fb:18:91:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiOD9vbwJ8nJG6TS0LgfgUmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0ZDI5MjExZjkyZTU2MGYwYjc4MzRiYjI5MzJhYzYzY2Fi
ZmExNGEwHhcNMjUwODA5MDkwMTAwWhcNMjUwODEwMDkwMTAwWjAzMTEwLwYDVQQD
EyhhNmY0YmQ2NDI1YzA1ZDE1Yzk2NGZkYzI1OWI4NmU4YTJmMmVjZWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6qI8FF5zY2BEl7J22IFw9ilkanef
4Dl4hAwtJMmYlCRlowFejKyIdoRYAvlQyFYvyn2EyjVWlnJzzJQ+E29XOIS0sZMs
HraiNJ2qZPPs8uXGvPcl3LpY5BftD3EovDl5lc+bTZuUzhEb0kPaZIP7W66NFft2
GXweKFil3XTYT2Fcrf4zMS+8EBJPUyDjwHZDB1z1ilUISd+uFPiO78FoTuqRKDbK
rGle0xNo33reIgjWogoySssvUnZ9/rhHyvfhdAcirniehN2WDOdaBK5WghGQBMX0
PxM2E5/wyFT4O/C3GBl4iAHeTLEXe3tT0mQEh2gujqgRB9hk1bbNtwMeSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKb0vWQlwF0VyWT9wlm4boovLs6nMB8GA1UdIwQY
MBaAFATSkhH5LlYPC3g0uykyrGPKv6FKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQk5LU0Vma3VWZzhMZURTN0tUS3NZOHFfb1VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mNmFjMzQtNmJjMy00MTdiLTgxNGQt
ZThkMTkyOTYzOTVjLzEvQk5LU0Vma3VWZzhMZURTN0tUS3NZOHFfb1VvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9mNmFjMzQtNmJjMy00MTdiLTgxNGQtZThkMTkyOTYzOTVj
LzEvQk5LU0Vma3VWZzhMZURTN0tUS3NZOHFfb1VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHRW3fc+V
zStkCObbsIVc38dblsEhoMbde+qR6nBD/YsFDY9DX3aS5rEKowxrf+599qQrm/ts
jhzpfvtEnqble79HfzLiPVg4rWUb6hn4qrWU8vQi1LFZ2gs1E3ZpTtPeCFUzzjHi
QAU6hKqO+ZQO0pOpPqJtbIfpOIJxJPtBfHHUKGKmmvIPf5vLJkPy+pEJHUULNb6k
BoNXLmIltS5bddwsdZ+03rR9U3BpbKxdgfLkulXBFok/MAhm9oFhklofGp1ov18S
fNCly/jM7zUKmnoqn97L37EMkE1EmOzXeHRM1qvRLWrJLhCBq0YVA1kpBpTG23rO
64Tr1Me7+xiRfw==
-----END CERTIFICATE-----
Generated at Sat Aug 9 14:16:06 2025 by rpki-client