Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
File: BKnP8kmB1yY9G31jd59dZz3ivbw.mft (raw, json)
Hash identifier: Oblw3/hXRtJMMF1mEg1DhM39FLZK3LkwHy1a6m6cKjo=
Subject key identifier: 1A:A8:CA:39:07:A8:30:F2:28:36:56:86:B4:70:8F:9C:AB:C8:93:1E
Authority key identifier: 04:A9:CF:F2:49:81:D7:26:3D:1B:7D:63:77:9F:5D:67:3D:E2:BD:BC
Certificate issuer: /CN=04a9cff24981d7263d1b7d63779f5d673de2bdbc
Certificate serial: 0198879FA652AEB5ED4CC529923596EE7A6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKnP8kmB1yY9G31jd59dZz3ivbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
Manifest number: 1624
Signing time: Fri 08 Aug 2025 03:00:43 +0000
Manifest this update: Fri 08 Aug 2025 03:00:43 +0000
Manifest next update: Sat 09 Aug 2025 03:00:43 +0000
Files and hashes: 1: BKnP8kmB1yY9G31jd59dZz3ivbw.crl (hash: 9S54M5Wi8mq9nShgQziY5IahJejtyyRgoaH+ih4bWPk=)
2: zx1XMXhbE28ZMTwu9AxINedJc60.roa (hash: 4bo9B0lLSnpXpzHGQAUAoXEmUUE4IbZbuOepJknUA+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BKnP8kmB1yY9G31jd59dZz3ivbw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:87:9f:a6:52:ae:b5:ed:4c:c5:29:92:35:96:ee:7a:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a9cff24981d7263d1b7d63779f5d673de2bdbc
Validity
Not Before: Aug 8 03:00:43 2025 GMT
Not After : Aug 9 03:00:43 2025 GMT
Subject: CN=1aa8ca3907a830f228365686b4708f9cabc8931e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d0:b8:be:29:26:e1:e4:dd:d5:09:19:94:5c:
52:ab:66:1f:96:17:79:41:66:d2:ab:7b:ba:b2:4c:
cf:33:64:93:6a:b9:7e:24:8e:75:ef:c8:68:10:c6:
58:bb:cd:fb:ec:e2:65:73:c4:8e:6d:7f:9f:d6:77:
e0:8d:a4:2c:97:c8:35:5f:bf:13:8f:05:2d:85:fa:
f3:92:68:ba:7b:53:82:a7:ff:41:fa:ea:1d:60:7b:
1b:f8:6c:78:18:32:6d:da:40:fe:df:7a:79:d9:b7:
a2:9a:3a:48:24:94:e5:cb:e2:01:b4:1a:62:05:fe:
6a:68:c7:15:76:03:10:53:38:9a:84:91:ee:24:8e:
8f:4d:c9:c5:ae:aa:5c:76:87:90:d5:e1:f6:fe:d9:
df:62:2b:e5:f1:7d:10:e2:87:10:19:c8:cd:84:3c:
f2:64:ef:74:fd:46:ef:69:c7:1b:c6:f3:1c:55:8e:
f9:b5:59:bc:f3:72:dd:05:56:e1:1c:5f:45:1a:3e:
ef:99:3b:e2:51:90:27:80:51:02:1b:0e:52:27:8c:
24:ef:8d:39:a1:a4:26:8c:76:88:02:d2:2b:5a:10:
7b:47:e5:c5:9e:1a:27:89:18:4e:60:f5:33:0f:bf:
ca:24:70:ff:ac:96:9a:9d:d0:07:21:ca:e8:62:d0:
e1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:A8:CA:39:07:A8:30:F2:28:36:56:86:B4:70:8F:9C:AB:C8:93:1E
X509v3 Authority Key Identifier:
keyid:04:A9:CF:F2:49:81:D7:26:3D:1B:7D:63:77:9F:5D:67:3D:E2:BD:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKnP8kmB1yY9G31jd59dZz3ivbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:78:79:27:e4:f5:66:3b:c6:14:51:88:47:9b:f8:dd:f9:c5:
3d:6b:a0:c5:d2:5c:01:78:27:8a:64:90:f3:c1:a7:d6:3d:60:
15:d5:c7:f7:76:03:00:68:cb:a0:a7:2f:75:9c:61:0d:a3:13:
a0:58:fc:b3:29:af:c7:b2:e6:68:47:75:fc:db:ed:44:01:1a:
82:f7:42:7f:8f:49:6f:76:0a:f1:78:e6:1f:2c:12:55:b8:c2:
8b:ec:da:88:55:6b:40:6f:80:ad:03:b0:7b:de:57:1d:c4:93:
a5:69:ed:66:c4:91:1e:81:91:0e:a6:86:79:42:93:d5:3a:fe:
cd:28:20:2d:75:e2:e7:43:e1:45:25:f7:f4:c0:df:6f:75:75:
b8:13:d2:6b:44:b2:c0:c4:54:16:64:cf:88:00:47:1e:9c:e2:
8e:6a:f9:a1:eb:48:f6:9e:29:e4:74:bc:c5:c6:52:87:74:58:
61:88:e2:b6:8e:14:48:38:df:0e:e4:1f:e5:cb:09:7b:fa:e5:
8a:9a:a3:4d:98:61:47:91:f4:a4:e9:27:de:b0:5f:1f:e7:73:
79:b4:8e:6e:91:ec:e8:f6:59:40:02:d5:c0:cd:cf:44:69:13:
8f:f5:9a:f4:5b:96:43:a5:c6:42:e3:93:34:5a:b5:c3:58:a1:
0a:58:02:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiHn6ZSrrXtTMUpkjWW7nptMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0YTljZmYyNDk4MWQ3MjYzZDFiN2Q2Mzc3OWY1ZDY3M2Rl
MmJkYmMwHhcNMjUwODA4MDMwMDQzWhcNMjUwODA5MDMwMDQzWjAzMTEwLwYDVQQD
EygxYWE4Y2EzOTA3YTgzMGYyMjgzNjU2ODZiNDcwOGY5Y2FiYzg5MzFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkdC4vikm4eTd1QkZlFxSq2Yflhd5
QWbSq3u6skzPM2STarl+JI5178hoEMZYu8377OJlc8SObX+f1nfgjaQsl8g1X78T
jwUthfrzkmi6e1OCp/9B+uodYHsb+Gx4GDJt2kD+33p52beimjpIJJTly+IBtBpi
Bf5qaMcVdgMQUziahJHuJI6PTcnFrqpcdoeQ1eH2/tnfYivl8X0Q4ocQGcjNhDzy
ZO90/UbvaccbxvMcVY75tVm883LdBVbhHF9FGj7vmTviUZAngFECGw5SJ4wk7405
oaQmjHaIAtIrWhB7R+XFnhoniRhOYPUzD7/KJHD/rJaandAHIcroYtDh/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBqoyjkHqDDyKDZWhrRwj5yryJMeMB8GA1UdIwQY
MBaAFASpz/JJgdcmPRt9Y3efXWc94r28MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQktuUDhrbUIxeVk5RzMxamQ1OWRaejNpdmJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS9lZWNmOGItM2Q2My00YzljLWJkODQt
Y2QwZDllNTc0MmNiLzEvQktuUDhrbUIxeVk5RzMxamQ1OWRaejNpdmJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS9lZWNmOGItM2Q2My00YzljLWJkODQtY2QwZDllNTc0MmNi
LzEvQktuUDhrbUIxeVk5RzMxamQ1OWRaejNpdmJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnXh5J+T1
ZjvGFFGIR5v43fnFPWugxdJcAXgnimSQ88Gn1j1gFdXH93YDAGjLoKcvdZxhDaMT
oFj8symvx7LmaEd1/NvtRAEagvdCf49Jb3YK8XjmHywSVbjCi+zaiFVrQG+ArQOw
e95XHcSTpWntZsSRHoGRDqaGeUKT1Tr+zSggLXXi50PhRSX39MDfb3V1uBPSa0Sy
wMRUFmTPiABHHpzijmr5oetI9p4p5HS8xcZSh3RYYYjito4USDjfDuQf5csJe/rl
ipqjTZhhR5H0pOkn3rBfH+dzebSObpHs6PZZQALVwM3PRGkTj/Wa9FuWQ6XGQuOT
NFq1w1ihClgCeA==
-----END CERTIFICATE-----
Generated at Fri Aug 8 10:10:18 2025 by rpki-client