Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
File: BmVsWtlzg3LVTAN-OX81vpqpJNs.mft (raw, json)
Hash identifier: N+BfX7LiNmDV6zM4/sERSH8oZcpq5pEXTmpJnMX95hk=
Subject key identifier: 28:CA:F4:FE:37:A8:4D:49:DA:D9:03:90:51:BB:FF:3E:2E:A3:7A:E9
Authority key identifier: 06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
Certificate issuer: /CN=06656c5ad9738372d54c037e397f35be9aa924db
Certificate serial: 0197B6D79F3056B85562CB37FDBF4A69F7F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
Manifest number: 0183
Signing time: Sat 28 Jun 2025 14:01:13 +0000
Manifest this update: Sat 28 Jun 2025 14:01:13 +0000
Manifest next update: Sun 29 Jun 2025 14:01:13 +0000
Files and hashes: 1: BOJlFcCNxlleMHUbR9TjmHCDeZc.roa (hash: ujITDNQNM0fpryFmlYjLZ0Q/wbil/+me/IAh88EFBg8=)
2: BmVsWtlzg3LVTAN-OX81vpqpJNs.crl (hash: brF/bzJTXXTGQMPcMzGkJgKw5k7P5J9ltvhQ4gykVhU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:9f:30:56:b8:55:62:cb:37:fd:bf:4a:69:f7:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06656c5ad9738372d54c037e397f35be9aa924db
Validity
Not Before: Jun 28 14:01:13 2025 GMT
Not After : Jun 29 14:01:13 2025 GMT
Subject: CN=28caf4fe37a84d49dad9039051bbff3e2ea37ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:91:ee:71:1a:65:28:88:4f:a6:a7:71:a3:31:
ef:9c:36:97:4d:77:71:43:3a:23:d2:8e:fc:d5:ed:
20:dc:6a:12:1f:79:7d:b8:da:2b:3d:dd:1c:1e:69:
92:6f:ce:04:3c:4f:7e:1e:7a:fa:1e:8d:76:3f:98:
51:e8:f3:d1:2d:5b:a9:a2:af:bf:cf:2e:a8:7c:25:
2e:7d:6a:ca:11:20:c8:bc:66:e3:50:84:c1:9f:99:
d6:4d:6b:ce:0e:dd:a9:66:54:2a:b4:58:00:c5:c5:
c6:23:42:8f:16:34:d2:40:71:06:17:1b:5a:32:36:
5b:3a:27:14:df:66:03:c6:91:38:81:99:bd:39:bf:
d9:b4:16:89:44:f8:d8:7e:01:1e:91:00:df:39:fe:
b7:2b:3b:33:f3:83:8d:34:ab:04:c8:2b:f4:0e:5a:
2d:fc:68:88:b6:ec:26:79:b9:0d:b5:15:38:9c:fb:
f6:62:e5:b7:35:90:5b:8a:07:60:55:d2:bf:d6:8e:
cb:c1:22:2a:18:61:00:1a:ed:a4:f5:26:94:9b:45:
b4:51:40:70:1e:39:25:d4:29:fb:58:cd:72:68:71:
93:f5:1a:88:d8:b1:c5:b6:6e:dd:f0:8c:44:27:7a:
0b:de:d4:b7:1e:8e:05:a4:a5:4f:dd:20:94:6c:c1:
09:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:CA:F4:FE:37:A8:4D:49:DA:D9:03:90:51:BB:FF:3E:2E:A3:7A:E9
X509v3 Authority Key Identifier:
keyid:06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:5e:9f:c1:7d:1d:ae:2e:6e:fe:10:62:2b:34:d5:e4:ff:3c:
91:f9:35:f7:ce:0e:03:db:61:20:b7:d9:a0:48:ad:b3:0b:c3:
37:95:f9:df:e0:3d:36:55:c5:96:f4:18:e0:40:18:a0:67:35:
68:9c:c3:1a:68:21:de:39:96:08:25:81:33:a9:bd:09:4e:5a:
33:d2:63:3f:b8:88:16:d5:dd:2d:74:b6:68:32:d8:cc:7f:d3:
e2:bf:8f:d3:01:ae:18:ac:c7:cb:85:a0:34:cf:75:49:59:94:
fa:96:29:2e:84:a3:67:88:16:43:56:0e:ae:58:a7:63:2f:8b:
36:7f:ff:4c:57:7c:60:11:9e:33:56:3d:88:d8:6e:c9:17:82:
2e:b2:01:06:ff:ac:e4:68:3b:77:d9:d3:8b:b2:10:8f:36:6d:
bf:4c:07:91:66:7f:79:67:c6:49:8d:e4:cd:b4:a6:a7:5d:31:
6a:a6:93:64:bb:c0:19:82:e9:4d:ce:c6:33:d7:c1:af:69:b8:
09:1f:79:94:bd:72:a5:c3:89:ab:2f:a1:3d:bd:ef:05:f3:f1:
04:c5:e2:39:fd:e6:46:3e:e8:a2:a0:39:bb:c6:4c:32:e2:06:
a7:02:c0:2d:29:e7:0a:fc:2e:3a:e0:23:e8:a4:23:d2:76:77:
83:a4:09:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2158wVrhVYss3/b9KaffxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NjU2YzVhZDk3MzgzNzJkNTRjMDM3ZTM5N2YzNWJlOWFh
OTI0ZGIwHhcNMjUwNjI4MTQwMTEzWhcNMjUwNjI5MTQwMTEzWjAzMTEwLwYDVQQD
EygyOGNhZjRmZTM3YTg0ZDQ5ZGFkOTAzOTA1MWJiZmYzZTJlYTM3YWU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7JHucRplKIhPpqdxozHvnDaXTXdx
Qzoj0o781e0g3GoSH3l9uNorPd0cHmmSb84EPE9+Hnr6Ho12P5hR6PPRLVupoq+/
zy6ofCUufWrKESDIvGbjUITBn5nWTWvODt2pZlQqtFgAxcXGI0KPFjTSQHEGFxta
MjZbOicU32YDxpE4gZm9Ob/ZtBaJRPjYfgEekQDfOf63Kzsz84ONNKsEyCv0Dlot
/GiItuwmebkNtRU4nPv2YuW3NZBbigdgVdK/1o7LwSIqGGEAGu2k9SaUm0W0UUBw
Hjkl1Cn7WM1yaHGT9RqI2LHFtm7d8IxEJ3oL3tS3Ho4FpKVP3SCUbMEJCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCjK9P43qE1J2tkDkFG7/z4uo3rpMB8GA1UdIwQY
MBaAFAZlbFrZc4Ny1UwDfjl/Nb6aqSTbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8zYjlkMjctN2JhNC00MDllLTg4OGMt
OGIwNzYyNTZmMzlkLzEvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS8zYjlkMjctN2JhNC00MDllLTg4OGMtOGIwNzYyNTZmMzlk
LzEvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC16fwX0d
ri5u/hBiKzTV5P88kfk1984OA9thILfZoEitswvDN5X53+A9NlXFlvQY4EAYoGc1
aJzDGmgh3jmWCCWBM6m9CU5aM9JjP7iIFtXdLXS2aDLYzH/T4r+P0wGuGKzHy4Wg
NM91SVmU+pYpLoSjZ4gWQ1YOrlinYy+LNn//TFd8YBGeM1Y9iNhuyReCLrIBBv+s
5Gg7d9nTi7IQjzZtv0wHkWZ/eWfGSY3kzbSmp10xaqaTZLvAGYLpTc7GM9fBr2m4
CR95lL1ypcOJqy+hPb3vBfPxBMXiOf3mRj7ooqA5u8ZMMuIGpwLALSnnCvwuOuAj
6KQj0nZ3g6QJtA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:55:49 2025 by rpki-client