Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/50f64d-2be9-4289-a48e-409bd4aa162b/1/BkAThp4LzSd4EEBTjflc-mfhFy4.mft
File: BkAThp4LzSd4EEBTjflc-mfhFy4.mft (raw, json)
Hash identifier: fqjmcvawiTXvdrXeYz2s20PBGHNdERt9+qfeoEhL/Ao=
Subject key identifier: 1E:59:7E:D8:6D:47:78:C4:E4:93:7F:F0:11:2D:07:78:71:CD:8A:B9
Authority key identifier: 06:40:13:86:9E:0B:CD:27:78:10:40:53:8D:F9:5C:FA:67:E1:17:2E
Certificate issuer: /CN=064013869e0bcd27781040538df95cfa67e1172e
Certificate serial: 01987A88BC1915CAC5BFE79CCEE40DE0FC23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkAThp4LzSd4EEBTjflc-mfhFy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/50f64d-2be9-4289-a48e-409bd4aa162b/1/BkAThp4LzSd4EEBTjflc-mfhFy4.mft
Manifest number: 03A2
Signing time: Tue 05 Aug 2025 14:00:38 +0000
Manifest this update: Tue 05 Aug 2025 14:00:38 +0000
Manifest next update: Wed 06 Aug 2025 14:00:38 +0000
Files and hashes: 1: BkAThp4LzSd4EEBTjflc-mfhFy4.crl (hash: GgdHgltixoAjHtn0kaaoEhYDTETUT0HJGmX1Dcgiljo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/50f64d-2be9-4289-a48e-409bd4aa162b/1/BkAThp4LzSd4EEBTjflc-mfhFy4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/50f64d-2be9-4289-a48e-409bd4aa162b/1/BkAThp4LzSd4EEBTjflc-mfhFy4.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkAThp4LzSd4EEBTjflc-mfhFy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:88:bc:19:15:ca:c5:bf:e7:9c:ce:e4:0d:e0:fc:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=064013869e0bcd27781040538df95cfa67e1172e
Validity
Not Before: Aug 5 14:00:38 2025 GMT
Not After : Aug 6 14:00:38 2025 GMT
Subject: CN=1e597ed86d4778c4e4937ff0112d077871cd8ab9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:fa:4d:8d:c5:ec:1d:4d:46:42:2d:9a:2e:47:
4d:6d:6e:b6:6d:1f:57:e1:58:3a:2b:f0:32:5e:33:
dd:80:6e:dc:46:dc:e5:a1:2f:36:52:7f:8b:bd:ce:
87:f2:1c:36:25:fb:6b:52:4d:19:f1:fa:29:01:39:
49:a9:7e:24:8a:dd:0b:da:df:0b:13:6e:3c:03:86:
1e:7d:bb:d9:2b:58:1c:ff:e0:52:1c:fb:57:3e:2d:
c7:cb:fa:33:27:10:a9:6e:bf:05:e8:15:b3:b3:03:
7b:c3:40:bb:d7:99:94:00:ec:6c:69:cf:17:31:ee:
cb:e8:55:f8:c0:7d:bb:86:d2:d9:45:d1:ec:2e:52:
f0:37:bf:9a:05:ce:83:91:bf:e9:f3:ec:de:27:1f:
bc:d8:ef:a1:0c:76:ee:f8:17:b2:b4:4d:57:74:da:
fc:e6:4d:36:c5:66:72:9e:60:0a:57:87:c7:d5:de:
84:df:f7:fc:63:58:ab:ba:b5:74:9c:fb:f8:3a:52:
2d:2d:9e:9d:f0:bd:03:0b:ca:b2:a7:89:03:10:3a:
c4:21:b4:7a:ff:72:43:1b:19:75:85:49:f3:44:43:
06:9f:a3:bb:b7:a2:59:05:a3:d5:51:76:74:5b:15:
37:fe:d2:27:1b:93:2c:c0:c5:45:6e:a8:2c:ca:96:
cf:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:59:7E:D8:6D:47:78:C4:E4:93:7F:F0:11:2D:07:78:71:CD:8A:B9
X509v3 Authority Key Identifier:
keyid:06:40:13:86:9E:0B:CD:27:78:10:40:53:8D:F9:5C:FA:67:E1:17:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkAThp4LzSd4EEBTjflc-mfhFy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/50f64d-2be9-4289-a48e-409bd4aa162b/1/BkAThp4LzSd4EEBTjflc-mfhFy4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/50f64d-2be9-4289-a48e-409bd4aa162b/1/BkAThp4LzSd4EEBTjflc-mfhFy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:66:69:ae:c5:1a:8c:4d:aa:fb:c6:52:62:39:ee:e0:99:8f:
93:94:aa:99:09:6c:46:aa:8c:db:ea:0f:48:50:f4:35:98:37:
24:a6:94:c1:68:fa:50:c5:91:2a:f6:56:b7:57:19:99:1a:71:
62:e3:e6:08:46:58:6e:3b:20:93:65:68:10:c4:6b:a5:c0:a8:
47:90:84:f9:2e:0c:f9:69:fa:e4:c7:ac:91:c3:56:9f:ce:53:
2e:86:d5:00:e3:b3:36:5a:54:8a:a4:99:ed:e2:c2:bc:00:1b:
31:bc:f3:3f:f2:88:a9:fb:ca:65:8d:16:ab:07:cb:f0:46:f8:
45:f3:07:81:ff:78:90:08:b0:d4:ac:e2:fa:48:4e:82:ba:28:
fc:12:51:86:ff:16:4f:8d:4c:1d:4d:62:2b:59:b1:3d:60:ef:
ec:1b:55:c3:6e:e1:9b:72:d2:e6:f9:1a:ad:b7:d7:76:54:93:
43:ae:a6:ed:dd:2f:e6:2d:02:58:67:10:e7:fe:42:06:54:a1:
e1:8e:75:c7:d0:2d:14:36:87:ab:0c:25:54:d7:f2:b7:3e:bf:
c7:26:68:89:39:a5:c3:cb:f9:5b:2b:d0:bf:db:9b:02:91:dc:
89:d9:77:62:bd:c2:57:be:51:97:dd:1c:ba:c8:8f:d9:47:15:
27:64:cb:88
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh6iLwZFcrFv+eczuQN4PwjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NDAxMzg2OWUwYmNkMjc3ODEwNDA1MzhkZjk1Y2ZhNjdl
MTE3MmUwHhcNMjUwODA1MTQwMDM4WhcNMjUwODA2MTQwMDM4WjAzMTEwLwYDVQQD
EygxZTU5N2VkODZkNDc3OGM0ZTQ5MzdmZjAxMTJkMDc3ODcxY2Q4YWI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy/pNjcXsHU1GQi2aLkdNbW62bR9X
4Vg6K/AyXjPdgG7cRtzloS82Un+Lvc6H8hw2JftrUk0Z8fopATlJqX4kit0L2t8L
E248A4YefbvZK1gc/+BSHPtXPi3Hy/ozJxCpbr8F6BWzswN7w0C715mUAOxsac8X
Me7L6FX4wH27htLZRdHsLlLwN7+aBc6Dkb/p8+zeJx+82O+hDHbu+BeytE1XdNr8
5k02xWZynmAKV4fH1d6E3/f8Y1irurV0nPv4OlItLZ6d8L0DC8qyp4kDEDrEIbR6
/3JDGxl1hUnzREMGn6O7t6JZBaPVUXZ0WxU3/tInG5MswMVFbqgsypbP5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB5ZfthtR3jE5JN/8BEtB3hxzYq5MB8GA1UdIwQY
MBaAFAZAE4aeC80neBBAU435XPpn4RcuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmtBVGhwNEx6U2Q0RUVCVGpmbGMtbWZoRnk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC81MGY2NGQtMmJlOS00Mjg5LWE0OGUt
NDA5YmQ0YWExNjJiLzEvQmtBVGhwNEx6U2Q0RUVCVGpmbGMtbWZoRnk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC81MGY2NGQtMmJlOS00Mjg5LWE0OGUtNDA5YmQ0YWExNjJi
LzEvQmtBVGhwNEx6U2Q0RUVCVGpmbGMtbWZoRnk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo2ZprsUa
jE2q+8ZSYjnu4JmPk5SqmQlsRqqM2+oPSFD0NZg3JKaUwWj6UMWRKvZWt1cZmRpx
YuPmCEZYbjsgk2VoEMRrpcCoR5CE+S4M+Wn65MeskcNWn85TLobVAOOzNlpUiqSZ
7eLCvAAbMbzzP/KIqfvKZY0WqwfL8Eb4RfMHgf94kAiw1Kzi+khOgroo/BJRhv8W
T41MHU1iK1mxPWDv7BtVw27hm3LS5vkarbfXdlSTQ66m7d0v5i0CWGcQ5/5CBlSh
4Y51x9AtFDaHqwwlVNfytz6/xyZoiTmlw8v5WyvQv9ubApHcidl3Yr3CV75Rl90c
usiP2UcVJ2TLiA==
-----END CERTIFICATE-----
Generated at Tue Aug 5 20:19:38 2025 by rpki-client