Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
File: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft (raw, json)
Hash identifier: gxztgHz6Yf64f7Z4Q4tYroFKlBXleFVU0wkzAd6wvkU=
Subject key identifier: 39:45:07:16:29:75:42:CC:73:B5:E6:AC:52:40:1F:6E:A8:F0:33:CD
Authority key identifier: D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
Certificate issuer: /CN=d346e5d46291f6bc53b965865051ba399749eb2d
Certificate serial: 019A53084D469C7BB4EA4F89274B994E6D6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
Manifest number: 02B7
Signing time: Wed 05 Nov 2025 08:00:44 +0000
Manifest this update: Wed 05 Nov 2025 08:00:44 +0000
Manifest next update: Thu 06 Nov 2025 08:00:44 +0000
Files and hashes: 1: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl (hash: Mjwma17xSeSTtiuEgf3AKZg2ykl/d/lW6BSrxxbiQ5I=)
2: gYQl8tX6UzR3RDmi_Q8x7-FjoRo.roa (hash: Ql10T2YHVZxrbMNqGA2K5KVTFR5OZbWrykLTc4F+v5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 08:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:08:4d:46:9c:7b:b4:ea:4f:89:27:4b:99:4e:6d:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d346e5d46291f6bc53b965865051ba399749eb2d
Validity
Not Before: Nov 5 08:00:44 2025 GMT
Not After : Nov 6 08:00:44 2025 GMT
Subject: CN=39450716297542cc73b5e6ac52401f6ea8f033cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9f:ea:77:86:d7:91:5d:dd:63:1e:ff:6e:df:
89:77:55:25:39:03:78:ff:31:42:61:f7:9c:c7:99:
32:06:91:2c:b4:a7:54:4b:de:20:82:a4:45:fd:c5:
f2:90:6b:3a:29:ab:cf:1c:4b:93:f1:ba:70:10:a0:
bd:7d:cc:96:a0:f6:9f:eb:e3:8c:d5:05:f2:89:bb:
f5:5f:b5:b3:5d:09:1b:69:a9:ab:4d:d0:9a:45:3e:
52:db:1f:2d:a3:2c:4e:f8:07:66:7d:06:09:96:72:
74:de:69:5b:95:29:f6:27:08:87:9d:63:aa:de:9e:
e3:96:7c:63:18:af:5c:22:f2:3c:fd:85:1b:74:df:
36:a0:c2:cc:4f:35:9b:60:b9:e2:85:a2:d2:af:ea:
6f:97:f3:79:99:89:db:32:df:89:85:c2:be:7e:fa:
d2:0d:f5:90:8b:80:14:19:6e:9b:68:9f:97:26:15:
72:27:ef:0a:9b:03:f3:0b:c8:86:82:03:ee:a9:be:
34:e9:6e:35:dc:f6:5e:06:9e:54:53:4f:27:f1:98:
08:fe:22:26:eb:24:00:43:2e:99:68:25:94:82:59:
8b:a1:d3:ec:eb:32:e0:c5:50:54:41:aa:49:8c:5c:
3d:5f:1f:d4:d4:d0:fc:a5:3c:88:e4:67:57:f9:82:
75:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:45:07:16:29:75:42:CC:73:B5:E6:AC:52:40:1F:6E:A8:F0:33:CD
X509v3 Authority Key Identifier:
keyid:D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:8b:a0:a9:40:3c:b9:4d:08:b1:19:db:ff:15:a6:ad:fe:49:
48:d4:07:72:89:50:1a:0e:cc:57:b7:a9:de:5b:27:01:d9:a8:
c3:9c:ec:6e:99:c5:f2:ef:a9:cd:ef:6b:cc:aa:d2:71:5a:a7:
4c:9e:56:f8:ad:30:61:fc:be:eb:ac:71:ff:08:f7:29:66:0a:
5e:41:6a:01:99:85:c2:5a:60:5e:01:3e:fc:e2:da:f9:47:22:
86:d4:f4:49:3e:14:d9:1d:b0:ea:a9:77:5a:9d:9d:b8:68:9b:
a8:2e:f7:f4:7a:37:dc:07:24:b7:4b:6d:c4:39:a9:a0:6d:3d:
ff:55:ba:e8:3a:e4:fc:ea:c0:be:2d:9a:15:b2:6e:bd:1a:70:
58:69:c3:db:05:f2:57:9b:da:c7:04:2d:27:4f:6c:14:c5:4a:
04:a1:1d:19:e0:fb:db:c7:ee:74:05:85:9b:ec:11:ad:6b:2c:
90:ef:38:96:8a:75:01:ee:db:03:b1:25:8b:4e:dd:5d:12:c9:
4d:ad:68:7e:ca:81:bc:1a:5a:ea:13:b7:d8:67:3c:d2:02:20:
ca:43:f6:80:20:63:58:12:6a:8d:fe:4b:eb:e0:20:83:d7:49:
26:ca:89:a6:a1:f3:2b:a7:47:a8:f3:d0:1d:3f:ea:0b:a7:f2:
df:46:52:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpTCE1GnHu06k+JJ0uZTm1uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNDZlNWQ0NjI5MWY2YmM1M2I5NjU4NjUwNTFiYTM5OTc0
OWViMmQwHhcNMjUxMTA1MDgwMDQ0WhcNMjUxMTA2MDgwMDQ0WjAzMTEwLwYDVQQD
EygzOTQ1MDcxNjI5NzU0MmNjNzNiNWU2YWM1MjQwMWY2ZWE4ZjAzM2NkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAup/qd4bXkV3dYx7/bt+Jd1UlOQN4
/zFCYfecx5kyBpEstKdUS94ggqRF/cXykGs6KavPHEuT8bpwEKC9fcyWoPaf6+OM
1QXyibv1X7WzXQkbaamrTdCaRT5S2x8toyxO+AdmfQYJlnJ03mlblSn2JwiHnWOq
3p7jlnxjGK9cIvI8/YUbdN82oMLMTzWbYLnihaLSr+pvl/N5mYnbMt+JhcK+fvrS
DfWQi4AUGW6baJ+XJhVyJ+8KmwPzC8iGggPuqb406W413PZeBp5UU08n8ZgI/iIm
6yQAQy6ZaCWUglmLodPs6zLgxVBUQapJjFw9Xx/U1ND8pTyI5GdX+YJ1YQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDlFBxYpdULMc7XmrFJAH26o8DPNMB8GA1UdIwQY
MBaAFNNG5dRikfa8U7llhlBRujmXSestMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDBibDFHS1I5cnhUdVdXR1VGRzZPWmRKNnkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC83YzhlOWMtZWM0OC00YTkwLTg2ZTUt
M2U5NDNmOTdmZjMxLzEvMDBibDFHS1I5cnhUdVdXR1VGRzZPWmRKNnkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC83YzhlOWMtZWM0OC00YTkwLTg2ZTUtM2U5NDNmOTdmZjMx
LzEvMDBibDFHS1I5cnhUdVdXR1VGRzZPWmRKNnkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmIugqUA8
uU0IsRnb/xWmrf5JSNQHcolQGg7MV7ep3lsnAdmow5zsbpnF8u+pze9rzKrScVqn
TJ5W+K0wYfy+66xx/wj3KWYKXkFqAZmFwlpgXgE+/OLa+UcihtT0ST4U2R2w6ql3
Wp2duGibqC739Ho33Ackt0ttxDmpoG09/1W66Drk/OrAvi2aFbJuvRpwWGnD2wXy
V5vaxwQtJ09sFMVKBKEdGeD728fudAWFm+wRrWsskO84lop1Ae7bA7Eli07dXRLJ
Ta1ofsqBvBpa6hO32Gc80gIgykP2gCBjWBJqjf5L6+Agg9dJJsqJpqHzK6dHqPPQ
HT/qC6fy30ZSfg==
-----END CERTIFICATE-----
Generated at Wed Nov 5 17:45:21 2025 by rpki-client