Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
File: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft (raw, json)
Hash identifier: sut9gir8bQ1nsk2EmUR6NzHR+5vd1thdfqE3H+6HGi0=
Subject key identifier: C4:73:D1:DD:61:6D:C0:56:F1:5B:FB:0A:85:CE:9C:7C:C7:2C:23:BD
Authority key identifier: 6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
Certificate issuer: /CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Certificate serial: 0198D515F8ADE02AD5A4FE2B48FBE4DDD23E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
Manifest number: 03D6
Signing time: Sat 23 Aug 2025 04:00:43 +0000
Manifest this update: Sat 23 Aug 2025 04:00:43 +0000
Manifest next update: Sun 24 Aug 2025 04:00:43 +0000
Files and hashes: 1: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl (hash: gyeJOJsiVzwxrzy+4nWNEsQKkC56r5R/Qqv/df0cV/M=)
2: xfuYQjKIwNsH8n8qNl-5nn5swlA.roa (hash: EURGAPm/xAIC/hIpJIK0VPaCfzGhmdAUIaI/It3KKIY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:f8:ad:e0:2a:d5:a4:fe:2b:48:fb:e4:dd:d2:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Validity
Not Before: Aug 23 04:00:43 2025 GMT
Not After : Aug 24 04:00:43 2025 GMT
Subject: CN=c473d1dd616dc056f15bfb0a85ce9c7cc72c23bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:37:01:a5:5b:05:c3:7c:38:98:45:45:f1:a7:
97:b9:1e:3b:66:ba:b6:04:26:cd:9f:8f:9e:a7:4b:
06:7c:47:2d:81:0c:20:1d:18:78:f9:66:c0:a0:e3:
90:20:dc:f3:29:e0:7a:a1:e5:59:9c:64:e5:ee:50:
95:65:34:53:d8:bf:3d:10:fc:52:3e:da:ef:11:c1:
2b:f7:5b:ae:41:5a:62:57:74:9e:08:7f:3d:07:b1:
09:19:1e:4e:59:7f:eb:89:dd:dc:d6:c9:73:0c:f9:
22:6a:10:17:2c:a3:51:90:06:08:6d:40:09:72:f4:
38:2d:7f:5a:4a:97:42:96:43:59:97:71:6a:f3:5a:
7e:2e:68:36:77:92:37:c9:d6:e4:e9:c9:3b:35:67:
95:fd:69:3b:5b:5d:27:5f:ff:a7:3c:a2:c9:5c:69:
2d:cc:62:07:fa:40:9e:14:9a:7f:38:ec:75:1b:85:
d1:58:63:0a:28:a3:2f:ca:9d:4d:41:f9:1d:b9:c2:
16:81:a6:fd:c5:0d:aa:32:40:83:11:5a:4a:11:19:
da:c3:0e:47:46:8f:ee:cf:ce:46:8e:1a:12:98:9b:
c7:61:42:cf:e4:71:f7:63:85:de:3e:73:2b:6c:30:
f4:00:d2:d4:9d:41:94:7a:b0:a6:66:c4:48:17:89:
b9:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:73:D1:DD:61:6D:C0:56:F1:5B:FB:0A:85:CE:9C:7C:C7:2C:23:BD
X509v3 Authority Key Identifier:
keyid:6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:74:72:1a:b6:47:e2:8e:a0:54:ce:ea:d9:d3:15:07:40:0c:
77:81:7a:43:dd:18:51:b1:89:d3:52:44:29:5b:35:8e:bc:53:
ce:9f:3e:c7:ba:a6:52:39:bc:d8:03:c0:0d:63:21:60:2c:87:
87:f5:55:e4:a7:0d:d6:fe:4a:82:c8:16:07:06:12:5c:11:8c:
9e:a8:0b:6f:55:3e:04:23:62:01:53:19:a6:af:10:ca:9b:1f:
b7:6f:e1:f7:b0:82:69:9d:88:ad:fe:84:f5:4d:a0:12:66:bf:
3d:9f:4b:12:60:23:98:c0:13:64:96:44:96:a5:a1:ce:2e:92:
83:cb:9c:23:b5:e2:88:c9:1c:0b:cf:ad:e6:bd:e1:2a:68:8b:
7c:f1:0b:ec:1d:a3:12:60:6b:47:71:d6:fe:13:7a:5e:cd:0e:
3e:28:45:c9:32:0a:24:7f:ac:47:a2:2f:30:80:7c:88:49:17:
78:e5:63:11:cb:57:79:07:fd:ad:c5:d2:4e:5b:4f:78:89:30:
de:fd:17:9f:54:61:0b:3c:c0:d3:65:88:67:6a:89:47:fe:72:
29:3d:0b:c2:74:b6:6e:96:9c:d2:f1:2e:40:77:01:95:a1:fd:
0e:68:ff:b1:a7:0e:6f:8e:39:29:df:2c:fc:19:bf:14:bf:eb:
1f:9e:f4:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFfit4CrVpP4rSPvk3dI+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjYjg1MGRlYjI4YmRiMmY2NTVlMmYxYjAyZDM3YzEzYzZk
NDM0NTIwHhcNMjUwODIzMDQwMDQzWhcNMjUwODI0MDQwMDQzWjAzMTEwLwYDVQQD
EyhjNDczZDFkZDYxNmRjMDU2ZjE1YmZiMGE4NWNlOWM3Y2M3MmMyM2JkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArzcBpVsFw3w4mEVF8aeXuR47Zrq2
BCbNn4+ep0sGfEctgQwgHRh4+WbAoOOQINzzKeB6oeVZnGTl7lCVZTRT2L89EPxS
PtrvEcEr91uuQVpiV3SeCH89B7EJGR5OWX/rid3c1slzDPkiahAXLKNRkAYIbUAJ
cvQ4LX9aSpdClkNZl3Fq81p+Lmg2d5I3ydbk6ck7NWeV/Wk7W10nX/+nPKLJXGkt
zGIH+kCeFJp/OOx1G4XRWGMKKKMvyp1NQfkducIWgab9xQ2qMkCDEVpKERnaww5H
Ro/uz85GjhoSmJvHYULP5HH3Y4XePnMrbDD0ANLUnUGUerCmZsRIF4m5nwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMRz0d1hbcBW8Vv7CoXOnHzHLCO9MB8GA1UdIwQY
MBaAFGy4UN6yi9svZV4vGwLTfBPG1DRSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkxoUTNyS0wyeTlsWGk4YkF0TjhFOGJVTkZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9iMmQ3MGQtNDk1My00ZDYxLWI4Yzkt
ODhiMmQyY2Y3YzMxLzEvYkxoUTNyS0wyeTlsWGk4YkF0TjhFOGJVTkZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC9iMmQ3MGQtNDk1My00ZDYxLWI4YzktODhiMmQyY2Y3YzMx
LzEvYkxoUTNyS0wyeTlsWGk4YkF0TjhFOGJVTkZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlnRyGrZH
4o6gVM7q2dMVB0AMd4F6Q90YUbGJ01JEKVs1jrxTzp8+x7qmUjm82APADWMhYCyH
h/VV5KcN1v5KgsgWBwYSXBGMnqgLb1U+BCNiAVMZpq8Qypsft2/h97CCaZ2Irf6E
9U2gEma/PZ9LEmAjmMATZJZElqWhzi6Sg8ucI7XiiMkcC8+t5r3hKmiLfPEL7B2j
EmBrR3HW/hN6Xs0OPihFyTIKJH+sR6IvMIB8iEkXeOVjEctXeQf9rcXSTltPeIkw
3v0Xn1RhCzzA02WIZ2qJR/5yKT0LwnS2bpac0vEuQHcBlaH9Dmj/sacOb445Kd8s
/Bm/FL/rH570Ng==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:25:41 2025 by rpki-client