Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
File: bSID7B5abCZsyjm5rxq-LLILGVo.mft (raw, json)
Hash identifier: p6XsD4NZjM0JKz4HgoEXInDRSqSq2r6koh5w3Gn9F2Q=
Subject key identifier: 40:4F:BA:49:72:D8:5F:01:B4:DE:6D:EB:B8:1F:50:D9:C5:38:DD:6A
Authority key identifier: 6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
Certificate issuer: /CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Certificate serial: 0199FBEAB93197451F2017DE3EDCFF8AC47D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 10:01:28 +0000
Manifest this update: Sun 19 Oct 2025 10:01:28 +0000
Manifest next update: Mon 20 Oct 2025 10:01:28 +0000
Files and hashes: 1: bSID7B5abCZsyjm5rxq-LLILGVo.crl (hash: BRY8k7vD9TnKqDWENT0Vve70qId3vufNjr7qCCayu/o=)
2: h9zvvPI2dBY4jNWQKpPxUoE047A.roa (hash: PkWglafHXDxF9KIzM61BgLg1omYPGots3ZThAKgjHP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:b9:31:97:45:1f:20:17:de:3e:dc:ff:8a:c4:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Validity
Not Before: Oct 19 10:01:28 2025 GMT
Not After : Oct 20 10:01:28 2025 GMT
Subject: CN=404fba4972d85f01b4de6debb81f50d9c538dd6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e2:5a:23:9b:9a:cb:d1:09:08:6f:64:10:d5:
ae:5f:82:a1:48:aa:46:73:18:98:f2:0f:bf:71:72:
26:f0:eb:f7:01:5f:5d:44:8d:3c:36:4a:24:15:06:
95:ed:38:45:e0:4e:e6:99:7e:2f:0c:bb:72:7e:81:
70:98:41:6f:0b:3b:df:f8:9a:51:1e:57:1a:f8:95:
ab:ee:98:92:ba:9d:9f:1a:9a:b3:21:93:25:32:03:
d7:cf:8d:b1:8b:a9:93:e8:52:3c:03:fa:28:ca:5f:
fb:84:74:8f:5a:0b:5d:f4:69:ed:27:3c:7d:20:e5:
39:36:47:db:60:98:ee:a0:4b:26:0a:ea:0b:5a:4f:
5c:11:2f:ef:51:f6:7d:00:d1:0d:e2:1a:9b:ee:76:
e8:3f:2d:0b:cf:ec:cd:ef:b6:c0:98:f1:85:8a:92:
6d:cd:95:13:a2:98:f6:11:3f:5a:b8:62:11:c1:12:
48:ff:f8:7d:4e:a4:ab:d7:57:14:e9:2f:c1:d4:21:
5b:ca:00:cc:a9:58:2d:72:86:1c:cc:a2:95:54:18:
54:85:6e:b9:6a:fa:f0:eb:d5:04:d2:42:b2:73:81:
db:bf:a5:58:f5:5a:c3:74:64:73:d7:2a:11:11:97:
fc:9a:98:43:f3:df:49:2f:b9:3e:0d:d7:52:ed:76:
c0:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:4F:BA:49:72:D8:5F:01:B4:DE:6D:EB:B8:1F:50:D9:C5:38:DD:6A
X509v3 Authority Key Identifier:
keyid:6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:c9:8a:e1:6d:59:43:00:61:f6:e8:26:40:ad:7f:fb:47:90:
3c:1f:97:ab:bc:8c:0d:8c:3b:67:5c:13:1c:8b:09:b3:ca:5e:
fe:5e:89:31:d4:98:13:e5:f4:b4:e1:c0:db:a5:98:13:bc:c3:
74:b2:36:13:87:8d:c2:1d:1c:6d:3c:a0:5f:81:44:72:b5:d7:
36:e7:06:07:75:57:c4:26:4b:8b:6c:3c:2e:a1:fd:e8:93:3d:
db:7f:ac:62:c2:64:3e:ef:fc:8d:2f:8d:15:53:a2:88:a2:55:
a4:79:9f:3f:e8:b7:66:cb:9a:57:af:73:60:e3:e2:f9:70:70:
f9:02:3f:37:93:50:a9:4d:eb:1a:9d:73:47:b1:60:f6:ab:0b:
10:a7:66:b2:f0:b1:89:7f:31:5e:67:d0:b2:12:6c:58:ca:ce:
48:9e:65:a7:5b:84:a6:8c:dc:41:0a:0b:ee:e1:15:2a:a9:6a:
6a:e9:19:95:22:ac:63:37:4a:7a:cf:8f:02:aa:f8:a6:7d:a0:
51:be:38:f6:c4:8e:34:be:07:03:a1:24:04:1a:92:93:81:61:
6e:36:fc:10:83:09:c6:64:25:09:c8:b1:a4:21:f9:5e:73:94:
ab:d8:f0:14:22:ed:cd:2f:6b:41:6f:3f:01:2f:bd:df:11:ea:
9b:85:da:1f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76rkxl0UfIBfePtz/isR9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMjIwM2VjMWU1YTZjMjY2Y2NhMzliOWFmMWFiZTJjYjIw
YjE5NWEwHhcNMjUxMDE5MTAwMTI4WhcNMjUxMDIwMTAwMTI4WjAzMTEwLwYDVQQD
Eyg0MDRmYmE0OTcyZDg1ZjAxYjRkZTZkZWJiODFmNTBkOWM1MzhkZDZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsOJaI5uay9EJCG9kENWuX4KhSKpG
cxiY8g+/cXIm8Ov3AV9dRI08NkokFQaV7ThF4E7mmX4vDLtyfoFwmEFvCzvf+JpR
Hlca+JWr7piSup2fGpqzIZMlMgPXz42xi6mT6FI8A/ooyl/7hHSPWgtd9GntJzx9
IOU5NkfbYJjuoEsmCuoLWk9cES/vUfZ9ANEN4hqb7nboPy0Lz+zN77bAmPGFipJt
zZUTopj2ET9auGIRwRJI//h9TqSr11cU6S/B1CFbygDMqVgtcoYczKKVVBhUhW65
avrw69UE0kKyc4Hbv6VY9VrDdGRz1yoREZf8mphD899JL7k+DddS7XbAXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEBPukly2F8BtN5t67gfUNnFON1qMB8GA1UdIwQY
MBaAFG0iA+weWmwmbMo5ua8aviyyCxlaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9mYzUyMmYtYjIwZi00N2FmLTgwYzYt
MWE5Nzk0NGM5MWNhLzEvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9mYzUyMmYtYjIwZi00N2FmLTgwYzYtMWE5Nzk0NGM5MWNh
LzEvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAysmK4W1Z
QwBh9ugmQK1/+0eQPB+Xq7yMDYw7Z1wTHIsJs8pe/l6JMdSYE+X0tOHA26WYE7zD
dLI2E4eNwh0cbTygX4FEcrXXNucGB3VXxCZLi2w8LqH96JM923+sYsJkPu/8jS+N
FVOiiKJVpHmfP+i3ZsuaV69zYOPi+XBw+QI/N5NQqU3rGp1zR7Fg9qsLEKdmsvCx
iX8xXmfQshJsWMrOSJ5lp1uEpozcQQoL7uEVKqlqaukZlSKsYzdKes+PAqr4pn2g
Ub449sSONL4HA6EkBBqSk4Fhbjb8EIMJxmQlCcixpCH5XnOUq9jwFCLtzS9rQW8/
AS+93xHqm4XaHw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:08 2025 by rpki-client