Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
File: BmVsWtlzg3LVTAN-OX81vpqpJNs.mft (raw, json)
Hash identifier: DXd2UxpAO+jguGgP/ebxijOo4nYYrHrcKVaFDDsJaOk=
Subject key identifier: C5:D1:5B:DB:AF:EC:8F:9D:6E:69:FE:EB:B0:0E:0F:B2:B1:C9:FC:7D
Authority key identifier: 06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
Certificate issuer: /CN=06656c5ad9738372d54c037e397f35be9aa924db
Certificate serial: 0198D4A848BE5EA91164B70C96123C6B042A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
Manifest number: 0217
Signing time: Sat 23 Aug 2025 02:00:55 +0000
Manifest this update: Sat 23 Aug 2025 02:00:55 +0000
Manifest next update: Sun 24 Aug 2025 02:00:55 +0000
Files and hashes: 1: BOJlFcCNxlleMHUbR9TjmHCDeZc.roa (hash: ujITDNQNM0fpryFmlYjLZ0Q/wbil/+me/IAh88EFBg8=)
2: BmVsWtlzg3LVTAN-OX81vpqpJNs.crl (hash: sAMLRhR/FmhOzrHwK8EZWYIO9DFWGh2uCz3r6Cgokig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:48:be:5e:a9:11:64:b7:0c:96:12:3c:6b:04:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06656c5ad9738372d54c037e397f35be9aa924db
Validity
Not Before: Aug 23 02:00:55 2025 GMT
Not After : Aug 24 02:00:55 2025 GMT
Subject: CN=c5d15bdbafec8f9d6e69feebb00e0fb2b1c9fc7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:17:8e:3d:f6:43:f7:60:84:bc:2a:7b:4f:e4:
d3:6f:2d:83:10:ff:88:cf:5d:91:86:1f:b7:18:c2:
d7:11:0b:f2:66:8b:be:80:d4:df:37:b4:84:be:93:
40:a6:a4:f6:44:93:78:fa:54:18:23:f5:49:31:45:
e7:80:b2:0a:07:20:6d:d5:65:fc:44:1e:0b:f6:9a:
9e:63:37:9f:a3:a3:39:9a:d6:ed:f4:87:13:cb:c2:
2c:bd:41:05:cc:17:66:e4:71:56:94:e3:24:6d:ba:
a8:4b:e8:69:d5:80:97:6c:de:da:7e:16:7a:96:a8:
ae:82:75:f1:8c:e4:86:f0:32:43:87:ab:f0:1d:50:
29:25:e0:39:90:47:32:67:94:fc:e0:34:c1:8e:ca:
72:85:03:bd:5e:15:bb:6f:2c:0f:11:81:4b:62:bc:
32:c3:77:67:5f:ee:a1:56:2a:3e:66:8b:1a:27:92:
e1:03:60:f9:bf:4a:f9:8d:97:c0:dd:4f:81:ca:09:
91:3c:63:a5:38:fe:65:c4:c4:df:64:eb:55:c4:f1:
72:a4:3a:52:52:b2:c9:69:ed:93:a8:6c:d4:29:db:
ca:b9:3d:8e:1e:6c:97:59:1d:7e:c4:b8:ea:d4:d8:
89:8a:97:03:95:0b:4a:25:a4:d7:03:5a:17:e6:3e:
04:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:D1:5B:DB:AF:EC:8F:9D:6E:69:FE:EB:B0:0E:0F:B2:B1:C9:FC:7D
X509v3 Authority Key Identifier:
keyid:06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:b2:32:ba:a1:5a:2a:d0:6d:9f:e1:25:02:ab:63:f2:e7:41:
fb:08:05:d9:cb:c3:85:5b:92:65:01:8c:1d:cc:7b:52:37:c0:
2b:6f:f2:b3:83:34:3c:13:9a:6f:49:1b:21:d0:03:f4:3a:f0:
4f:91:7f:e3:79:c2:12:93:79:ad:e2:57:38:01:5a:07:a8:4e:
9a:f3:52:9b:0c:60:ec:cf:01:fd:51:19:e8:61:4f:20:ce:95:
24:d8:12:61:8a:32:3b:17:51:eb:88:85:67:2b:65:1e:d1:d4:
b2:6c:0b:ec:af:a2:98:53:96:53:84:90:f9:f8:8b:48:b0:d3:
51:fd:e6:8b:06:d4:8a:8a:9b:f2:80:47:62:55:d7:28:2a:3a:
85:1f:c2:07:2d:8e:db:ac:1c:e9:d5:40:e1:a3:17:9b:43:72:
1a:b7:3a:82:f6:85:12:d5:06:8b:86:ec:a7:89:7e:85:88:06:
4a:85:f1:a2:5d:33:82:58:4a:5d:67:01:7a:71:c2:ea:5c:a4:
17:63:20:8a:1b:54:f2:94:b1:b4:81:65:3a:33:dd:b6:47:c4:
fc:43:71:8c:c6:06:6d:5d:5c:83:3b:ab:ce:2d:1d:35:8b:8c:
3f:86:80:13:34:ce:f9:56:ad:7b:0a:ac:18:fb:2c:8a:f7:3c:
6e:fe:56:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUqEi+XqkRZLcMlhI8awQqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NjU2YzVhZDk3MzgzNzJkNTRjMDM3ZTM5N2YzNWJlOWFh
OTI0ZGIwHhcNMjUwODIzMDIwMDU1WhcNMjUwODI0MDIwMDU1WjAzMTEwLwYDVQQD
EyhjNWQxNWJkYmFmZWM4ZjlkNmU2OWZlZWJiMDBlMGZiMmIxYzlmYzdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhReOPfZD92CEvCp7T+TTby2DEP+I
z12Rhh+3GMLXEQvyZou+gNTfN7SEvpNApqT2RJN4+lQYI/VJMUXngLIKByBt1WX8
RB4L9pqeYzefo6M5mtbt9IcTy8IsvUEFzBdm5HFWlOMkbbqoS+hp1YCXbN7afhZ6
lqiugnXxjOSG8DJDh6vwHVApJeA5kEcyZ5T84DTBjspyhQO9XhW7bywPEYFLYrwy
w3dnX+6hVio+ZosaJ5LhA2D5v0r5jZfA3U+BygmRPGOlOP5lxMTfZOtVxPFypDpS
UrLJae2TqGzUKdvKuT2OHmyXWR1+xLjq1NiJipcDlQtKJaTXA1oX5j4E4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMXRW9uv7I+dbmn+67AOD7Kxyfx9MB8GA1UdIwQY
MBaAFAZlbFrZc4Ny1UwDfjl/Nb6aqSTbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8zYjlkMjctN2JhNC00MDllLTg4OGMt
OGIwNzYyNTZmMzlkLzEvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS8zYjlkMjctN2JhNC00MDllLTg4OGMtOGIwNzYyNTZmMzlk
LzEvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW7IyuqFa
KtBtn+ElAqtj8udB+wgF2cvDhVuSZQGMHcx7UjfAK2/ys4M0PBOab0kbIdAD9Drw
T5F/43nCEpN5reJXOAFaB6hOmvNSmwxg7M8B/VEZ6GFPIM6VJNgSYYoyOxdR64iF
ZytlHtHUsmwL7K+imFOWU4SQ+fiLSLDTUf3miwbUioqb8oBHYlXXKCo6hR/CBy2O
26wc6dVA4aMXm0NyGrc6gvaFEtUGi4bsp4l+hYgGSoXxol0zglhKXWcBenHC6lyk
F2MgihtU8pSxtIFlOjPdtkfE/ENxjMYGbV1cgzurzi0dNYuMP4aAEzTO+Vatewqs
GPssivc8bv5Wlw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:22:59 2025 by rpki-client