Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
File: BmVsWtlzg3LVTAN-OX81vpqpJNs.mft (raw, json)
Hash identifier: 7Nn1ecL3ci43oRfAjzwH1+6E2b3bRp932biH+ZNS+7Y=
Subject key identifier: 85:ED:BE:B4:61:4B:D9:00:9F:85:1D:98:15:92:2D:C7:ED:A6:D2:0E
Authority key identifier: 06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
Certificate issuer: /CN=06656c5ad9738372d54c037e397f35be9aa924db
Certificate serial: 0199FE103293A32E028208A24291D220BC20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
Manifest number: 02B1
Signing time: Sun 19 Oct 2025 20:01:38 +0000
Manifest this update: Sun 19 Oct 2025 20:01:38 +0000
Manifest next update: Mon 20 Oct 2025 20:01:38 +0000
Files and hashes: 1: BOJlFcCNxlleMHUbR9TjmHCDeZc.roa (hash: ujITDNQNM0fpryFmlYjLZ0Q/wbil/+me/IAh88EFBg8=)
2: BmVsWtlzg3LVTAN-OX81vpqpJNs.crl (hash: QTuJ/pW6jXEMpN/CBxak6rFkGmupQ88HdRR2l8OFUxY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:10:32:93:a3:2e:02:82:08:a2:42:91:d2:20:bc:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06656c5ad9738372d54c037e397f35be9aa924db
Validity
Not Before: Oct 19 20:01:38 2025 GMT
Not After : Oct 20 20:01:38 2025 GMT
Subject: CN=85edbeb4614bd9009f851d9815922dc7eda6d20e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d9:77:f3:1d:e4:a7:29:90:d8:a0:bf:e1:60:
0f:c7:a6:04:41:c5:cf:84:25:f4:dc:79:3b:73:1d:
83:10:bd:1f:f1:8e:0d:25:d2:cc:2e:a8:68:ef:e5:
31:73:f2:3e:a7:1a:c0:2b:a6:54:ac:94:32:34:53:
84:a1:05:24:20:14:2a:1c:ec:92:f1:81:13:4d:da:
f8:60:0b:05:77:17:16:09:6f:86:5c:fb:3d:29:e8:
a2:81:3c:34:ab:bd:1e:6e:d2:83:1c:4b:2f:d4:68:
d5:b9:5f:77:33:66:55:7f:34:90:2c:76:62:34:96:
4b:7f:0e:71:54:3b:55:03:b4:b0:3f:1c:cb:c1:44:
92:37:24:81:97:cd:78:cb:85:74:68:7c:4d:82:31:
29:84:07:fd:55:d0:78:9c:88:bf:34:d1:30:2a:73:
40:e3:c6:e2:a5:74:37:f3:ef:37:b2:de:15:65:13:
7e:30:02:3d:d8:31:9d:43:08:09:81:56:c9:0c:a0:
a9:ca:9b:25:8e:06:10:75:a2:c7:10:4d:14:fc:db:
cc:f6:4b:00:1c:86:57:4b:c4:9d:a0:32:1c:48:5a:
cd:f0:51:59:ba:0c:43:ca:90:17:9f:18:50:14:b7:
51:b5:0e:d2:53:b0:4d:1f:92:0e:82:7b:61:17:e0:
0a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:ED:BE:B4:61:4B:D9:00:9F:85:1D:98:15:92:2D:C7:ED:A6:D2:0E
X509v3 Authority Key Identifier:
keyid:06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:1b:96:ad:4d:dd:a8:7a:b1:83:71:b3:d4:93:d7:d7:09:49:
93:4c:df:97:16:bc:59:21:11:02:a3:c5:8a:54:b2:2b:7e:ac:
f5:15:4e:74:df:09:26:b8:28:9c:3d:3b:30:d4:30:6c:ad:54:
d3:a5:8c:21:31:bc:8f:c0:97:f0:d1:d9:3e:0e:67:5f:33:f2:
e5:e8:9b:a4:20:18:a1:65:2b:c8:8b:61:60:4b:14:70:d0:0e:
45:2c:58:8a:58:b1:1d:cd:4d:c4:b9:70:e9:06:a0:d6:a4:24:
59:c8:52:c8:8c:81:69:4e:ba:89:83:c9:14:ae:17:87:8c:0c:
9e:7c:b1:f8:f7:4d:40:db:55:98:87:63:9c:ec:f0:b3:2b:67:
9a:ec:36:30:93:ae:b8:b6:15:10:2d:4a:1f:ad:d0:aa:61:49:
e7:77:0c:4e:f5:ed:5f:a3:7c:85:04:b1:0d:73:d9:f1:b8:8c:
4f:3b:77:41:f4:ff:e7:b7:81:ba:23:86:3e:da:88:a7:8a:48:
d9:ca:77:28:f4:92:5c:1c:e1:24:24:54:a1:18:ea:62:42:95:
92:47:b4:38:71:ae:33:e9:16:89:3a:03:51:c8:a9:89:7d:e7:
97:94:27:7d:fa:9e:1b:e2:d5:58:09:bf:22:8e:0a:c2:57:cb:
4a:1c:35:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+EDKToy4CggiiQpHSILwgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NjU2YzVhZDk3MzgzNzJkNTRjMDM3ZTM5N2YzNWJlOWFh
OTI0ZGIwHhcNMjUxMDE5MjAwMTM4WhcNMjUxMDIwMjAwMTM4WjAzMTEwLwYDVQQD
Eyg4NWVkYmViNDYxNGJkOTAwOWY4NTFkOTgxNTkyMmRjN2VkYTZkMjBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsdl38x3kpymQ2KC/4WAPx6YEQcXP
hCX03Hk7cx2DEL0f8Y4NJdLMLqho7+Uxc/I+pxrAK6ZUrJQyNFOEoQUkIBQqHOyS
8YETTdr4YAsFdxcWCW+GXPs9KeiigTw0q70ebtKDHEsv1GjVuV93M2ZVfzSQLHZi
NJZLfw5xVDtVA7SwPxzLwUSSNySBl814y4V0aHxNgjEphAf9VdB4nIi/NNEwKnNA
48bipXQ38+83st4VZRN+MAI92DGdQwgJgVbJDKCpypsljgYQdaLHEE0U/NvM9ksA
HIZXS8SdoDIcSFrN8FFZugxDypAXnxhQFLdRtQ7SU7BNH5IOgnthF+AKJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIXtvrRhS9kAn4UdmBWSLcftptIOMB8GA1UdIwQY
MBaAFAZlbFrZc4Ny1UwDfjl/Nb6aqSTbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8zYjlkMjctN2JhNC00MDllLTg4OGMt
OGIwNzYyNTZmMzlkLzEvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS8zYjlkMjctN2JhNC00MDllLTg4OGMtOGIwNzYyNTZmMzlk
LzEvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfBuWrU3d
qHqxg3Gz1JPX1wlJk0zflxa8WSERAqPFilSyK36s9RVOdN8JJrgonD07MNQwbK1U
06WMITG8j8CX8NHZPg5nXzPy5eibpCAYoWUryIthYEsUcNAORSxYilixHc1NxLlw
6Qag1qQkWchSyIyBaU66iYPJFK4Xh4wMnnyx+PdNQNtVmIdjnOzwsytnmuw2MJOu
uLYVEC1KH63QqmFJ53cMTvXtX6N8hQSxDXPZ8biMTzt3QfT/57eBuiOGPtqIp4pI
2cp3KPSSXBzhJCRUoRjqYkKVkke0OHGuM+kWiToDUcipiX3nl5QnffqeG+LVWAm/
Io4KwlfLShw1Bw==
-----END CERTIFICATE-----
Generated at Mon Oct 20 02:16:40 2025 by rpki-client