Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft
File: bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft (raw, json)
Hash identifier: 3YnxTZioeaaFBVomQK0JGKgpxSeKlBV4NkXzg5o0nZk=
Subject key identifier: 88:40:32:E5:8F:1E:98:2B:5A:45:37:40:CD:94:F6:CB:9B:8A:42:B4
Authority key identifier: 6C:95:FD:CA:36:7B:CE:19:E2:F2:53:B7:8F:36:08:FF:34:14:28:C9
Certificate issuer: /CN=6c95fdca367bce19e2f253b78f3608ff341428c9
Certificate serial: 0198D54E1ACDE68950987148272954A767C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJX9yjZ7zhni8lO3jzYI_zQUKMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft
Manifest number: 0214
Signing time: Sat 23 Aug 2025 05:02:02 +0000
Manifest this update: Sat 23 Aug 2025 05:02:02 +0000
Manifest next update: Sun 24 Aug 2025 05:02:02 +0000
Files and hashes: 1: Lf1xzTXAc6SiNDJtIVl8iWMf5b4.roa (hash: Mlu5t33KkThbOioHblpilqA5fDGAJvYvW4onNzjvD5s=)
2: bJX9yjZ7zhni8lO3jzYI_zQUKMk.crl (hash: vb09zFEw5RTEwokRq8IG52mwtlzESHWsQziZO6dp2oM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJX9yjZ7zhni8lO3jzYI_zQUKMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:1a:cd:e6:89:50:98:71:48:27:29:54:a7:67:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c95fdca367bce19e2f253b78f3608ff341428c9
Validity
Not Before: Aug 23 05:02:02 2025 GMT
Not After : Aug 24 05:02:02 2025 GMT
Subject: CN=884032e58f1e982b5a453740cd94f6cb9b8a42b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:10:08:68:c8:9a:8a:db:9c:b5:e0:fe:ca:c3:
ad:89:8a:e1:0b:43:de:84:99:55:59:60:2f:95:fb:
19:0c:e8:aa:27:d4:97:d4:8f:86:a0:61:af:50:2c:
c5:dc:7d:bd:46:ed:55:b8:29:03:36:dc:da:82:f1:
29:e3:ff:80:ad:d8:bf:67:e1:01:7f:72:52:e4:f0:
4a:19:5d:54:04:7c:df:8c:4f:8b:63:7a:67:07:ad:
91:b6:eb:2d:84:0d:8f:77:fd:3c:a2:b3:91:e5:58:
27:7d:9e:7e:b5:4c:9a:63:fc:8c:da:81:e8:bc:4b:
09:fc:d7:49:50:b7:5b:a6:b5:8f:eb:6b:d6:5b:40:
bb:86:c3:83:46:80:1c:94:3e:7a:f4:65:b6:78:08:
7e:88:02:e2:68:05:fe:29:65:08:32:76:98:eb:84:
d6:9e:6e:46:00:41:88:0f:a8:fa:1c:91:a3:6f:bc:
a7:0d:f0:cc:0c:0c:55:7a:b1:0d:7d:d3:04:d7:a0:
82:fe:1a:ed:2f:5f:06:8b:34:4d:cf:a0:d0:43:8d:
75:c8:96:64:c5:b7:8d:db:3e:ec:e5:9e:c2:cf:52:
37:e8:9f:f2:7d:94:e8:7d:0c:c5:cf:02:db:41:6b:
d3:c1:9b:84:46:57:97:b7:96:2b:39:ee:0a:5b:27:
8c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:40:32:E5:8F:1E:98:2B:5A:45:37:40:CD:94:F6:CB:9B:8A:42:B4
X509v3 Authority Key Identifier:
keyid:6C:95:FD:CA:36:7B:CE:19:E2:F2:53:B7:8F:36:08:FF:34:14:28:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJX9yjZ7zhni8lO3jzYI_zQUKMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:e4:dc:01:67:1d:c2:c9:e6:2f:61:dc:6e:f3:54:71:3e:0a:
4d:13:13:3d:c3:b9:b9:ef:11:03:3f:0c:94:d6:5b:f5:22:eb:
62:13:16:b9:6a:b2:1d:88:cc:6e:20:80:69:5a:f1:4a:50:6d:
a1:77:b3:44:be:27:48:20:5d:4e:5c:f0:1c:43:58:03:80:73:
e1:ea:c9:39:8e:a0:d2:de:21:33:c9:37:d8:33:e3:c7:18:d6:
36:ca:63:d0:95:2d:34:ed:4d:13:67:de:b8:49:d4:35:bf:8d:
c4:9f:ef:1e:12:ef:b1:52:f2:3b:da:42:9e:f2:79:e1:83:6b:
21:b9:51:ae:6d:bb:7b:d4:9d:e3:2f:02:a4:b3:43:75:43:31:
c8:48:bf:f0:e8:b3:5a:f8:6f:f6:00:dc:2f:6c:4a:d1:99:86:
2f:4f:08:06:ff:08:88:c6:ea:36:f4:be:ec:84:04:12:3c:8d:
c7:80:da:d7:57:13:e7:07:31:87:c5:9d:85:8c:f9:51:d5:be:
58:95:55:25:98:fb:c6:85:9a:66:76:56:12:db:25:d8:2b:b8:
42:d8:dd:ad:35:0a:2e:22:cd:f9:4b:3e:14:4c:2d:2e:eb:16:
ac:4b:51:b5:06:8e:11:89:76:44:6e:03:eb:ab:bc:55:fc:10:
a6:06:6d:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVThrN5olQmHFIJylUp2fGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjOTVmZGNhMzY3YmNlMTllMmYyNTNiNzhmMzYwOGZmMzQx
NDI4YzkwHhcNMjUwODIzMDUwMjAyWhcNMjUwODI0MDUwMjAyWjAzMTEwLwYDVQQD
Eyg4ODQwMzJlNThmMWU5ODJiNWE0NTM3NDBjZDk0ZjZjYjliOGE0MmI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyxAIaMiaitucteD+ysOtiYrhC0Pe
hJlVWWAvlfsZDOiqJ9SX1I+GoGGvUCzF3H29Ru1VuCkDNtzagvEp4/+Ardi/Z+EB
f3JS5PBKGV1UBHzfjE+LY3pnB62RtusthA2Pd/08orOR5VgnfZ5+tUyaY/yM2oHo
vEsJ/NdJULdbprWP62vWW0C7hsODRoAclD569GW2eAh+iALiaAX+KWUIMnaY64TW
nm5GAEGID6j6HJGjb7ynDfDMDAxVerENfdME16CC/hrtL18GizRNz6DQQ411yJZk
xbeN2z7s5Z7Cz1I36J/yfZTofQzFzwLbQWvTwZuERleXt5YrOe4KWyeMmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIhAMuWPHpgrWkU3QM2U9subikK0MB8GA1UdIwQY
MBaAFGyV/co2e84Z4vJTt482CP80FCjJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkpYOXlqWjd6aG5pOGxPM2p6WUlfelFVS01rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9mMDFhMDItNWE5ZS00NDQxLTliM2Qt
ZDVjMTg4NjJkMDI2LzEvYkpYOXlqWjd6aG5pOGxPM2p6WUlfelFVS01rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9mMDFhMDItNWE5ZS00NDQxLTliM2QtZDVjMTg4NjJkMDI2
LzEvYkpYOXlqWjd6aG5pOGxPM2p6WUlfelFVS01rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgOTcAWcd
wsnmL2HcbvNUcT4KTRMTPcO5ue8RAz8MlNZb9SLrYhMWuWqyHYjMbiCAaVrxSlBt
oXezRL4nSCBdTlzwHENYA4Bz4erJOY6g0t4hM8k32DPjxxjWNspj0JUtNO1NE2fe
uEnUNb+NxJ/vHhLvsVLyO9pCnvJ54YNrIblRrm27e9Sd4y8CpLNDdUMxyEi/8Oiz
Wvhv9gDcL2xK0ZmGL08IBv8IiMbqNvS+7IQEEjyNx4Da11cT5wcxh8WdhYz5UdW+
WJVVJZj7xoWaZnZWEtsl2Cu4QtjdrTUKLiLN+Us+FEwtLusWrEtRtQaOEYl2RG4D
66u8VfwQpgZtVw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:38:27 2025 by rpki-client