Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
File: BGelYhGyHprHzcj7Y58xCpLCEEw.mft (raw, json)
Hash identifier: PDg8XsGgfcDfUf6wbgvgmOZSlCQQr2ZGT332YylvZ/c=
Subject key identifier: 32:E6:75:08:10:95:E4:0F:81:26:49:D7:E0:4E:00:10:1E:3A:58:2C
Authority key identifier: 04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C
Certificate issuer: /CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c
Certificate serial: 0199FC21678FB5595E4DE61A9C05AC0DAA73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
Manifest number: 0DC3
Signing time: Sun 19 Oct 2025 11:01:11 +0000
Manifest this update: Sun 19 Oct 2025 11:01:11 +0000
Manifest next update: Mon 20 Oct 2025 11:01:11 +0000
Files and hashes: 1: BGelYhGyHprHzcj7Y58xCpLCEEw.crl (hash: Sbkkd932ICF3loMC3ErHxHFSgqILDkU3r9dNdR9UJSo=)
2: vBbw-4MxcReP3ao6MqHjBCu3GcI.roa (hash: W28uSnDMlGVkrCQsXwIvXwkvC/TrS+441MfK9XqL5Zo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:67:8f:b5:59:5e:4d:e6:1a:9c:05:ac:0d:aa:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c
Validity
Not Before: Oct 19 11:01:11 2025 GMT
Not After : Oct 20 11:01:11 2025 GMT
Subject: CN=32e675081095e40f812649d7e04e00101e3a582c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c3:65:91:d2:e3:ab:2d:3a:eb:d4:da:ce:79:
ca:9a:a2:92:28:3c:de:94:d1:44:9f:bb:fd:ac:09:
ab:fe:a3:2b:7c:f4:9f:cc:ed:74:7e:e1:3b:5f:97:
ff:35:03:41:63:bd:33:a3:00:0b:d4:ef:83:77:51:
33:00:e6:95:69:3a:83:a0:d4:3e:de:43:92:be:4d:
59:a4:59:26:1a:40:f4:53:27:72:e3:ba:dc:b1:84:
f7:16:1c:6b:f3:f7:64:c3:57:47:e6:46:41:ad:d0:
08:2b:5b:89:f5:0f:72:11:4c:d2:2d:80:00:77:d8:
ce:43:be:cf:aa:67:43:7a:74:f2:fb:39:85:b4:04:
6c:82:ae:04:1d:f2:6e:63:71:26:33:cb:21:d0:39:
99:b1:72:83:dc:20:84:82:13:cd:37:25:64:9f:ce:
d3:4a:7c:91:a4:e8:91:ac:4b:55:77:31:4b:b5:f0:
98:c2:4a:35:bb:da:39:46:30:90:73:8d:89:07:ab:
e6:2b:92:0a:32:b4:85:a3:ca:3f:d5:93:2a:9e:8a:
69:eb:c4:6b:bb:2f:eb:f0:a6:03:ae:fc:a6:a2:06:
27:bd:0f:18:31:92:0b:ed:2c:f2:02:10:cf:5e:89:
2d:89:4f:af:b1:76:00:d9:cc:03:ef:d8:b9:c8:f7:
21:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:E6:75:08:10:95:E4:0F:81:26:49:D7:E0:4E:00:10:1E:3A:58:2C
X509v3 Authority Key Identifier:
keyid:04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:80:ce:98:49:71:32:4e:93:c4:f2:be:cd:30:9e:22:42:9e:
d5:c1:74:ba:4e:43:0d:19:08:9c:92:80:28:0c:ba:f4:5f:44:
3a:c9:1d:d8:71:63:a3:d4:aa:3b:2f:8a:5d:5d:37:10:37:31:
8a:8a:48:85:ed:8a:c1:6e:15:e2:27:4b:7f:cf:bc:b8:9d:42:
c0:1f:7f:a1:02:b9:1c:63:32:e8:a2:ec:ad:52:0f:f5:01:b2:
cf:32:c6:07:22:7b:ba:d4:ea:a8:ac:c0:f9:ae:9a:21:a1:a7:
7c:b9:7d:d0:79:2c:ad:a0:f2:dc:4d:0f:e3:c8:44:1f:2c:e5:
9f:76:4f:8f:ff:ca:f5:9b:94:f2:ea:5b:30:94:48:9e:c4:26:
78:26:f8:db:e7:fa:87:1d:6e:24:1e:8d:d7:76:a1:37:02:c3:
75:46:04:7d:20:8d:dc:50:78:c6:fe:fd:2e:d4:26:a9:64:e2:
95:79:c2:38:4b:5a:4a:ce:34:ca:64:ca:01:ae:e0:cf:dc:f3:
0a:28:0a:2f:7d:23:00:76:31:df:2b:c5:ae:58:ca:38:68:c1:
df:8f:91:84:d0:c8:f7:65:3e:e9:dc:28:5a:49:81:e6:b7:44:
3c:de:c5:15:1b:18:36:e5:e5:9c:2d:be:73:dd:3b:5c:9f:07:
46:35:6b:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8IWePtVleTeYanAWsDapzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0NjdhNTYyMTFiMjFlOWFjN2NkYzhmYjYzOWYzMTBhOTJj
MjEwNGMwHhcNMjUxMDE5MTEwMTExWhcNMjUxMDIwMTEwMTExWjAzMTEwLwYDVQQD
EygzMmU2NzUwODEwOTVlNDBmODEyNjQ5ZDdlMDRlMDAxMDFlM2E1ODJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk8NlkdLjqy0669TaznnKmqKSKDze
lNFEn7v9rAmr/qMrfPSfzO10fuE7X5f/NQNBY70zowAL1O+Dd1EzAOaVaTqDoNQ+
3kOSvk1ZpFkmGkD0Uydy47rcsYT3Fhxr8/dkw1dH5kZBrdAIK1uJ9Q9yEUzSLYAA
d9jOQ77PqmdDenTy+zmFtARsgq4EHfJuY3EmM8sh0DmZsXKD3CCEghPNNyVkn87T
SnyRpOiRrEtVdzFLtfCYwko1u9o5RjCQc42JB6vmK5IKMrSFo8o/1ZMqnopp68Rr
uy/r8KYDrvymogYnvQ8YMZIL7SzyAhDPXoktiU+vsXYA2cwD79i5yPchVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDLmdQgQleQPgSZJ1+BOABAeOlgsMB8GA1UdIwQY
MBaAFARnpWIRsh6ax83I+2OfMQqSwhBMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8wNDVjNGItYzBkNy00Nzc4LTlmNDQt
ODIzYWQyYzJmNWYxLzEvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC8wNDVjNGItYzBkNy00Nzc4LTlmNDQtODIzYWQyYzJmNWYx
LzEvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqYDOmElx
Mk6TxPK+zTCeIkKe1cF0uk5DDRkInJKAKAy69F9EOskd2HFjo9SqOy+KXV03EDcx
iopIhe2KwW4V4idLf8+8uJ1CwB9/oQK5HGMy6KLsrVIP9QGyzzLGByJ7utTqqKzA
+a6aIaGnfLl90HksraDy3E0P48hEHyzln3ZPj//K9ZuU8upbMJRInsQmeCb42+f6
hx1uJB6N13ahNwLDdUYEfSCN3FB4xv79LtQmqWTilXnCOEtaSs40ymTKAa7gz9zz
CigKL30jAHYx3yvFrljKOGjB34+RhNDI92U+6dwoWkmB5rdEPN7FFRsYNuXlnC2+
c907XJ8HRjVrew==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:45 2025 by rpki-client