Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
File: BmNp4nBctDPbBlirZm0ItnsVUdw.mft (raw, json)
Hash identifier: QFHAjAST1MQCovSWCdtpQOwN7T4H0XLnlssPazRCd+U=
Subject key identifier: 6E:B1:5E:12:19:C3:23:77:81:39:90:B6:99:89:5E:F8:63:C2:A0:01
Authority key identifier: 06:63:69:E2:70:5C:B4:33:DB:06:58:AB:66:6D:08:B6:7B:15:51:DC
Certificate issuer: /CN=066369e2705cb433db0658ab666d08b67b1551dc
Certificate serial: 0199FB7CFA9E45C116C02D056EA9BBE0B5DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
Manifest number: 1607
Signing time: Sun 19 Oct 2025 08:01:35 +0000
Manifest this update: Sun 19 Oct 2025 08:01:35 +0000
Manifest next update: Mon 20 Oct 2025 08:01:35 +0000
Files and hashes: 1: BmNp4nBctDPbBlirZm0ItnsVUdw.crl (hash: OX70FKDplK0RIhYmCO73H755ih+3cy/TSLkN0y+uTn4=)
2: jCf5g0MNk7dChvixSvofxX26UqQ.roa (hash: EtFQAu+QfH/I3yhnfzxyM188HrZPVxzTPSpuxFHhJDw=)
3: osJ9_DR-TYLXPhwmG2ma04NJTWc.roa (hash: J9O9DuXjiOjoHZT0sNnMyGnclsGi579GC3bqlBQWEYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:fa:9e:45:c1:16:c0:2d:05:6e:a9:bb:e0:b5:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=066369e2705cb433db0658ab666d08b67b1551dc
Validity
Not Before: Oct 19 08:01:35 2025 GMT
Not After : Oct 20 08:01:35 2025 GMT
Subject: CN=6eb15e1219c32377813990b699895ef863c2a001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1e:08:f5:8a:eb:7e:3e:db:5d:02:e8:87:23:
c5:8c:4d:d6:20:74:fe:49:ad:0d:d1:d2:80:8d:b4:
bc:cb:90:f9:e4:f3:f0:09:15:6a:a2:5d:ff:60:49:
4c:51:5c:82:aa:8f:62:e0:d1:94:53:61:6d:16:56:
9e:6e:4a:d8:95:76:42:f1:5e:d2:e8:8b:86:90:7d:
86:00:ca:e3:8e:b0:f7:d4:48:2b:97:e0:f4:2e:31:
29:5b:77:2c:33:60:a3:be:c3:fd:34:82:13:d0:34:
01:81:45:e3:79:2d:89:63:20:d0:b3:10:c0:2b:64:
7d:e7:75:de:67:86:8b:0e:a8:16:4b:49:81:ea:37:
ec:bc:90:fb:1d:ed:31:fd:c3:3a:4a:4d:e0:cc:6c:
fd:08:d0:1b:28:ec:34:a7:c5:18:3e:24:bb:e8:a3:
80:e6:76:84:aa:27:ac:38:fa:e3:22:0c:cc:4d:f3:
c0:65:f4:42:a6:d1:6f:d1:37:1e:49:0e:33:f3:95:
43:75:56:d3:39:a2:74:ce:36:94:ff:8e:bd:6d:e4:
7d:86:46:e4:e9:8b:26:64:e0:5b:54:fa:f7:1f:88:
14:bb:2f:e8:10:12:95:78:6f:b7:fa:de:c5:f3:83:
8c:bb:fc:92:71:6e:61:11:7d:a7:1a:d7:5f:81:6c:
44:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:B1:5E:12:19:C3:23:77:81:39:90:B6:99:89:5E:F8:63:C2:A0:01
X509v3 Authority Key Identifier:
keyid:06:63:69:E2:70:5C:B4:33:DB:06:58:AB:66:6D:08:B6:7B:15:51:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:7c:46:83:9d:97:44:e1:28:99:ec:ee:58:02:e6:6a:d9:de:
e2:62:ad:cf:83:d0:02:51:2c:2c:e8:16:35:7f:b3:d0:cb:1a:
c2:44:ea:d4:71:47:69:d0:55:69:6f:9b:40:f2:ce:c9:b5:81:
c4:cc:de:cf:f1:28:d8:f5:a2:7b:08:11:c3:4c:2b:3d:3f:54:
00:b1:34:10:ac:49:51:a9:99:ff:92:dc:fb:40:34:8f:84:c3:
62:30:ae:e1:22:67:df:39:ab:e5:a2:14:7c:e2:6d:3f:88:d7:
8f:4e:99:80:ef:be:70:aa:97:33:17:23:26:8a:f1:9d:b7:13:
79:ec:6a:6a:b2:89:e0:fc:cd:95:6b:8a:23:ab:98:65:1d:3d:
39:bb:c2:f3:0d:31:93:a6:ee:1c:7c:eb:6c:f2:79:2d:b9:0f:
d5:f3:b1:36:76:fd:55:37:a3:d0:ec:95:4a:84:fc:9d:ec:1d:
f3:5a:48:7f:8e:c0:13:01:57:91:44:67:69:ff:99:e7:a2:03:
cf:c1:15:b4:3e:fb:d0:ed:78:b7:c9:7b:7b:97:62:b4:5b:33:
4b:b7:6f:8e:4c:70:aa:e3:55:15:ca:3b:34:aa:f8:13:49:09:
13:fe:06:eb:e1:b0:1e:f5:49:55:f7:4b:ca:15:1c:d7:22:0e:
c3:62:dc:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7fPqeRcEWwC0Fbqm74LXeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NjM2OWUyNzA1Y2I0MzNkYjA2NThhYjY2NmQwOGI2N2Ix
NTUxZGMwHhcNMjUxMDE5MDgwMTM1WhcNMjUxMDIwMDgwMTM1WjAzMTEwLwYDVQQD
Eyg2ZWIxNWUxMjE5YzMyMzc3ODEzOTkwYjY5OTg5NWVmODYzYzJhMDAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmh4I9Yrrfj7bXQLohyPFjE3WIHT+
Sa0N0dKAjbS8y5D55PPwCRVqol3/YElMUVyCqo9i4NGUU2FtFlaebkrYlXZC8V7S
6IuGkH2GAMrjjrD31Egrl+D0LjEpW3csM2CjvsP9NIIT0DQBgUXjeS2JYyDQsxDA
K2R953XeZ4aLDqgWS0mB6jfsvJD7He0x/cM6Sk3gzGz9CNAbKOw0p8UYPiS76KOA
5naEqiesOPrjIgzMTfPAZfRCptFv0TceSQ4z85VDdVbTOaJ0zjaU/469beR9hkbk
6YsmZOBbVPr3H4gUuy/oEBKVeG+3+t7F84OMu/yScW5hEX2nGtdfgWxEqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG6xXhIZwyN3gTmQtpmJXvhjwqABMB8GA1UdIwQY
MBaAFAZjaeJwXLQz2wZYq2ZtCLZ7FVHcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm1OcDRuQmN0RFBiQmxpclptMEl0bnNWVWR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC82NGU0OWEtNWZlMS00NWMyLTgzMTAt
MzRhOWU5OGE1Zjg2LzEvQm1OcDRuQmN0RFBiQmxpclptMEl0bnNWVWR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC82NGU0OWEtNWZlMS00NWMyLTgzMTAtMzRhOWU5OGE1Zjg2
LzEvQm1OcDRuQmN0RFBiQmxpclptMEl0bnNWVWR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmHxGg52X
ROEomezuWALmatne4mKtz4PQAlEsLOgWNX+z0MsawkTq1HFHadBVaW+bQPLOybWB
xMzez/Eo2PWiewgRw0wrPT9UALE0EKxJUamZ/5Lc+0A0j4TDYjCu4SJn3zmr5aIU
fOJtP4jXj06ZgO++cKqXMxcjJorxnbcTeexqarKJ4PzNlWuKI6uYZR09ObvC8w0x
k6buHHzrbPJ5LbkP1fOxNnb9VTej0OyVSoT8newd81pIf47AEwFXkURnaf+Z56ID
z8EVtD770O14t8l7e5ditFszS7dvjkxwquNVFco7NKr4E0kJE/4G6+GwHvVJVfdL
yhUc1yIOw2LcqA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:30:17 2025 by rpki-client