Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
File: bSID7B5abCZsyjm5rxq-LLILGVo.mft (raw, json)
Hash identifier: nhBbispuAQK4OdyL2watuqi52Qx3Qf/So7FgVNYaDC4=
Subject key identifier: 06:1E:05:28:AC:1F:A1:F8:AC:CD:04:1E:F8:39:0E:6E:6B:89:F2:63
Authority key identifier: 6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
Certificate issuer: /CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Certificate serial: 0198D65F91D3867316CEED618619E0176857
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 10:00:43 +0000
Manifest this update: Sat 23 Aug 2025 10:00:43 +0000
Manifest next update: Sun 24 Aug 2025 10:00:43 +0000
Files and hashes: 1: bSID7B5abCZsyjm5rxq-LLILGVo.crl (hash: YyR1CliRzbTCCCMrONDxPdcB7+W/f4rivLvqwheF6BY=)
2: h9zvvPI2dBY4jNWQKpPxUoE047A.roa (hash: PkWglafHXDxF9KIzM61BgLg1omYPGots3ZThAKgjHP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:91:d3:86:73:16:ce:ed:61:86:19:e0:17:68:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Validity
Not Before: Aug 23 10:00:43 2025 GMT
Not After : Aug 24 10:00:43 2025 GMT
Subject: CN=061e0528ac1fa1f8accd041ef8390e6e6b89f263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:18:52:60:46:4e:90:af:ef:cd:b7:c9:18:90:
46:ec:ed:aa:50:d9:3e:17:49:7f:c4:32:35:29:e6:
f6:40:2c:62:cc:7a:07:fb:4f:bb:ae:47:a2:32:65:
79:2d:50:e1:58:9d:bb:98:b4:80:53:af:87:90:38:
01:88:f3:b4:2b:a5:fc:50:52:89:1a:fe:39:c1:a4:
90:aa:4a:c6:fb:0b:7c:62:57:3c:2c:85:12:ba:6f:
a5:b6:5c:b0:90:17:a5:15:3d:d1:36:ce:7e:a2:b8:
8e:c9:0d:8f:12:c9:7f:fa:90:7a:40:ca:7e:08:dc:
8d:c0:5e:13:55:6d:16:84:d7:32:c6:6f:f1:47:85:
d3:b9:14:40:12:b5:2d:02:ba:26:69:8b:00:0b:a3:
b4:db:52:d3:ff:4c:1c:a6:95:17:cd:46:26:9a:21:
5b:57:6b:65:63:28:39:05:f4:37:4d:54:12:54:93:
9c:a3:28:62:d1:c1:10:1f:64:1f:9b:8a:27:27:d5:
be:be:d1:88:7f:4a:72:f7:03:7c:7f:24:a6:1f:75:
ee:d1:69:c1:13:10:38:57:25:19:4f:e4:75:0c:21:
6f:ac:c7:52:d8:3b:7c:e9:69:b2:09:64:a0:61:d4:
7c:c4:10:ad:d2:9c:fe:ec:07:6f:a3:de:27:de:d0:
6f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:1E:05:28:AC:1F:A1:F8:AC:CD:04:1E:F8:39:0E:6E:6B:89:F2:63
X509v3 Authority Key Identifier:
keyid:6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:8e:2c:79:95:23:ca:dd:35:e4:49:ab:e1:ca:6b:b4:66:90:
23:53:99:ed:5b:a7:fa:1f:83:c6:c9:18:6e:58:d1:71:52:72:
f2:ae:91:de:7f:3d:eb:24:17:b4:8d:b0:d4:bb:3b:33:8c:49:
f7:b9:55:26:bd:7b:bc:c3:cd:58:84:ed:7e:be:bf:f7:1a:2d:
41:d3:07:a4:46:26:d5:7b:22:27:58:c4:20:cf:d8:65:b2:79:
f9:0a:23:eb:fb:82:fb:5f:d8:cc:de:95:41:ed:1e:20:ac:7b:
a8:6a:87:b4:45:70:a5:c3:ea:d9:37:0c:65:8a:e4:3f:f5:c6:
bf:68:df:20:8c:4e:d5:fb:d2:e2:1f:f3:2d:32:0c:7d:62:e8:
d9:05:32:6a:55:4f:31:2d:ae:b0:52:fe:15:7e:10:75:0a:2b:
43:69:1e:50:86:2b:d1:d8:0a:c6:3b:a3:bc:98:35:32:84:8b:
e0:7c:b4:cf:54:8c:ea:36:2b:29:82:54:2d:29:d6:1f:a9:45:
84:54:ff:cc:3c:82:b7:12:da:6e:3e:48:da:ba:40:22:d5:3f:
35:87:14:c3:2f:24:5a:1c:27:32:54:c7:14:0e:8b:25:ef:b1:
3d:47:bc:aa:8a:fd:9d:13:30:b4:a6:27:d8:30:30:18:a1:fe:
6a:b2:13:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX5HThnMWzu1hhhngF2hXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMjIwM2VjMWU1YTZjMjY2Y2NhMzliOWFmMWFiZTJjYjIw
YjE5NWEwHhcNMjUwODIzMTAwMDQzWhcNMjUwODI0MTAwMDQzWjAzMTEwLwYDVQQD
EygwNjFlMDUyOGFjMWZhMWY4YWNjZDA0MWVmODM5MGU2ZTZiODlmMjYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApBhSYEZOkK/vzbfJGJBG7O2qUNk+
F0l/xDI1Keb2QCxizHoH+0+7rkeiMmV5LVDhWJ27mLSAU6+HkDgBiPO0K6X8UFKJ
Gv45waSQqkrG+wt8Ylc8LIUSum+ltlywkBelFT3RNs5+oriOyQ2PEsl/+pB6QMp+
CNyNwF4TVW0WhNcyxm/xR4XTuRRAErUtAromaYsAC6O021LT/0wcppUXzUYmmiFb
V2tlYyg5BfQ3TVQSVJOcoyhi0cEQH2Qfm4onJ9W+vtGIf0py9wN8fySmH3Xu0WnB
ExA4VyUZT+R1DCFvrMdS2Dt86WmyCWSgYdR8xBCt0pz+7Advo94n3tBv+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAYeBSisH6H4rM0EHvg5Dm5rifJjMB8GA1UdIwQY
MBaAFG0iA+weWmwmbMo5ua8aviyyCxlaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9mYzUyMmYtYjIwZi00N2FmLTgwYzYt
MWE5Nzk0NGM5MWNhLzEvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9mYzUyMmYtYjIwZi00N2FmLTgwYzYtMWE5Nzk0NGM5MWNh
LzEvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAI4seZUj
yt015Emr4cprtGaQI1OZ7Vun+h+DxskYbljRcVJy8q6R3n896yQXtI2w1Ls7M4xJ
97lVJr17vMPNWITtfr6/9xotQdMHpEYm1XsiJ1jEIM/YZbJ5+Qoj6/uC+1/YzN6V
Qe0eIKx7qGqHtEVwpcPq2TcMZYrkP/XGv2jfIIxO1fvS4h/zLTIMfWLo2QUyalVP
MS2usFL+FX4QdQorQ2keUIYr0dgKxjujvJg1MoSL4Hy0z1SM6jYrKYJULSnWH6lF
hFT/zDyCtxLabj5I2rpAItU/NYcUwy8kWhwnMlTHFA6LJe+xPUe8qor9nRMwtKYn
2DAwGKH+arITkA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:58:15 2025 by rpki-client