Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft
File: bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft (raw, json)
Hash identifier: 0Gq1emgiWI0kBNnJFgCyswlG8PAolKmvnbB0nBs+3G8=
Subject key identifier: EF:E5:25:59:E9:EF:45:7F:B6:2A:85:45:A5:47:41:E4:09:AD:BF:9B
Authority key identifier: 6C:E3:FB:86:78:61:DA:AF:D7:81:27:98:97:FE:25:A8:EB:37:14:68
Certificate issuer: /CN=6ce3fb867861daafd781279897fe25a8eb371468
Certificate serial: 0199FB7CBEAC1B14B7CBE649F06FDAF26EF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft
Manifest number: 0335
Signing time: Sun 19 Oct 2025 08:01:20 +0000
Manifest this update: Sun 19 Oct 2025 08:01:20 +0000
Manifest next update: Mon 20 Oct 2025 08:01:20 +0000
Files and hashes: 1: EH31K6AeAlTxuZgsWC0CP6nqgCw.roa (hash: 5F10SKVR7MZweS+vgHdYbBmQMLKWeQTvpJE6zRYHQ8A=)
2: bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl (hash: AVs6MTahQjgWm7dnyCorvFF7SeIfwSBQc6w8w5svlQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:be:ac:1b:14:b7:cb:e6:49:f0:6f:da:f2:6e:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce3fb867861daafd781279897fe25a8eb371468
Validity
Not Before: Oct 19 08:01:20 2025 GMT
Not After : Oct 20 08:01:20 2025 GMT
Subject: CN=efe52559e9ef457fb62a8545a54741e409adbf9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:49:49:3c:a1:03:2b:ff:3c:ac:76:85:9e:50:
65:80:4a:6a:db:0e:90:af:8c:a6:32:77:3e:b5:e5:
14:2a:4d:ea:c6:a1:c6:8f:bf:1d:21:6a:2f:a0:05:
c2:71:a4:a9:f7:a5:f0:69:51:cc:ac:1b:c0:6f:5e:
e2:b1:32:2c:30:28:68:3e:fb:c4:71:f3:fc:59:81:
c4:6c:0e:7f:02:db:f1:9a:66:08:2a:db:54:7d:1f:
96:35:f1:23:b1:c2:7a:43:8a:f2:33:4b:91:47:47:
c8:06:a9:84:e9:ab:be:40:23:ec:73:33:7d:6a:a0:
95:46:81:d3:da:50:6e:a8:49:84:9d:f3:b4:ff:11:
3b:42:e5:f0:bf:9d:30:49:70:4c:11:a6:1c:fc:97:
0b:6d:a4:ee:80:34:c8:fe:61:c8:06:36:45:3a:73:
20:50:55:3c:75:cf:29:4e:47:dc:e1:c5:d2:c5:30:
00:e4:5f:40:fa:a7:12:67:a0:d8:f2:8e:99:26:47:
1d:fb:03:90:90:6b:6f:dd:13:ae:8b:25:77:b5:bc:
8f:af:fb:0c:ba:32:15:76:77:4e:dd:c5:da:00:24:
02:b1:bc:9a:73:75:20:db:71:88:04:1b:6c:cd:a9:
de:89:91:6b:03:16:c0:98:b0:24:e7:01:2b:e9:56:
8e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:E5:25:59:E9:EF:45:7F:B6:2A:85:45:A5:47:41:E4:09:AD:BF:9B
X509v3 Authority Key Identifier:
keyid:6C:E3:FB:86:78:61:DA:AF:D7:81:27:98:97:FE:25:A8:EB:37:14:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:53:59:c1:d3:72:61:14:25:c9:88:b4:94:e6:20:fd:c4:27:
7c:2b:45:37:b9:d1:7e:39:85:cd:23:20:cd:a0:7d:5c:f0:f1:
b0:82:61:92:9e:b1:19:f3:9b:b2:45:15:a0:71:f7:41:df:8a:
a2:6c:17:b5:73:2f:bc:f0:d7:25:f0:4b:dc:41:67:f1:2a:6a:
d6:ae:1c:f5:8b:fc:2a:e1:41:5d:81:49:b7:c0:b7:f8:0f:7e:
f9:f2:1a:d1:50:96:0f:9a:5b:06:f9:de:86:b4:cc:49:a7:b1:
a7:7b:4c:1e:27:8b:73:80:88:9b:ac:05:90:5b:58:b1:08:f8:
ab:2a:50:99:fc:b7:05:e0:ee:1b:19:52:96:41:75:84:18:0e:
04:fe:3e:58:41:db:1c:aa:88:14:6d:50:9b:03:ed:ee:ba:1e:
6d:db:6f:67:23:ad:5c:88:51:31:5b:d1:25:90:dc:39:04:16:
d0:02:ef:3a:66:d5:21:68:44:4f:cf:01:b0:9f:91:d9:9d:45:
a8:f2:17:f6:97:4c:b9:e4:33:55:1d:ba:0f:81:44:44:fc:0b:
e9:a5:c8:71:cf:ab:44:47:98:ae:e2:2e:4a:a2:e8:1d:b2:65:
74:41:1d:d5:3f:67:5e:90:11:3d:8e:3a:5e:a9:4d:b8:78:59:
0e:ca:93:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7fL6sGxS3y+ZJ8G/a8m7xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjZTNmYjg2Nzg2MWRhYWZkNzgxMjc5ODk3ZmUyNWE4ZWIz
NzE0NjgwHhcNMjUxMDE5MDgwMTIwWhcNMjUxMDIwMDgwMTIwWjAzMTEwLwYDVQQD
EyhlZmU1MjU1OWU5ZWY0NTdmYjYyYTg1NDVhNTQ3NDFlNDA5YWRiZjliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvElJPKEDK/88rHaFnlBlgEpq2w6Q
r4ymMnc+teUUKk3qxqHGj78dIWovoAXCcaSp96XwaVHMrBvAb17isTIsMChoPvvE
cfP8WYHEbA5/AtvxmmYIKttUfR+WNfEjscJ6Q4ryM0uRR0fIBqmE6au+QCPsczN9
aqCVRoHT2lBuqEmEnfO0/xE7QuXwv50wSXBMEaYc/JcLbaTugDTI/mHIBjZFOnMg
UFU8dc8pTkfc4cXSxTAA5F9A+qcSZ6DY8o6ZJkcd+wOQkGtv3ROuiyV3tbyPr/sM
ujIVdndO3cXaACQCsbyac3Ug23GIBBtszaneiZFrAxbAmLAk5wEr6VaOQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO/lJVnp70V/tiqFRaVHQeQJrb+bMB8GA1UdIwQY
MBaAFGzj+4Z4Ydqv14EnmJf+JajrNxRoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk9QN2huaGgycV9YZ1NlWWxfNGxxT3MzRkdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9jM2Y5OTUtODZlZi00YTY3LWFjYWMt
ZTQzOTFmYmNhZjE0LzEvYk9QN2huaGgycV9YZ1NlWWxfNGxxT3MzRkdnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9jM2Y5OTUtODZlZi00YTY3LWFjYWMtZTQzOTFmYmNhZjE0
LzEvYk9QN2huaGgycV9YZ1NlWWxfNGxxT3MzRkdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqlNZwdNy
YRQlyYi0lOYg/cQnfCtFN7nRfjmFzSMgzaB9XPDxsIJhkp6xGfObskUVoHH3Qd+K
omwXtXMvvPDXJfBL3EFn8Spq1q4c9Yv8KuFBXYFJt8C3+A9++fIa0VCWD5pbBvne
hrTMSaexp3tMHieLc4CIm6wFkFtYsQj4qypQmfy3BeDuGxlSlkF1hBgOBP4+WEHb
HKqIFG1QmwPt7roebdtvZyOtXIhRMVvRJZDcOQQW0ALvOmbVIWhET88BsJ+R2Z1F
qPIX9pdMueQzVR26D4FERPwL6aXIcc+rREeYruIuSqLoHbJldEEd1T9nXpARPY46
XqlNuHhZDsqTfw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:50 2025 by rpki-client