Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
File: BXEVMhUM58l6fqSMDXekLm8NX8M.mft (raw, json)
Hash identifier: 8h3gbhpluEXciw1Lau4JvLt+C2wdAeBVulExN7kwP88=
Subject key identifier: 2C:78:54:B8:C1:1C:18:F7:58:EA:75:E4:1C:12:F4:13:88:BF:36:DB
Authority key identifier: 05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
Certificate issuer: /CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Certificate serial: 0198D515E59496793C20D6BCF8D00A73E43D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
Manifest number: 06D0
Signing time: Sat 23 Aug 2025 04:00:38 +0000
Manifest this update: Sat 23 Aug 2025 04:00:38 +0000
Manifest next update: Sun 24 Aug 2025 04:00:38 +0000
Files and hashes: 1: BXEVMhUM58l6fqSMDXekLm8NX8M.crl (hash: uq6fQuBQpqixKbzG2ZUoy6aFN+2vooyOJ3e0K9iNFWs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:e5:94:96:79:3c:20:d6:bc:f8:d0:0a:73:e4:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Validity
Not Before: Aug 23 04:00:38 2025 GMT
Not After : Aug 24 04:00:38 2025 GMT
Subject: CN=2c7854b8c11c18f758ea75e41c12f41388bf36db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:32:58:b3:2a:51:1b:9f:5c:29:b2:a2:3f:4b:
93:2a:49:ed:9c:af:75:29:2d:f4:74:e4:73:38:91:
8b:f8:71:8d:82:28:8e:a5:2f:ee:66:7b:96:c9:fb:
7a:9a:f5:a5:69:fe:d1:e4:cc:37:f9:ca:e7:81:61:
55:60:12:d7:dd:a3:ec:de:b5:87:7a:96:03:fa:4a:
d6:d0:eb:c8:0b:b3:71:13:55:83:8e:a5:67:84:e3:
89:e7:ae:ad:2d:ce:11:5e:a5:ce:b9:25:52:9f:2d:
01:72:a3:80:02:6d:c8:1a:2b:f9:24:57:d4:a0:21:
9e:34:12:1c:da:5f:52:24:a2:0a:28:50:1d:3e:16:
5a:96:5e:3c:4e:b8:88:26:1b:f3:f8:f4:e7:a4:9e:
ab:3e:2d:ea:54:17:a9:7a:e3:19:24:67:2e:83:92:
13:02:c5:82:0a:40:90:2b:da:11:69:6d:b7:c6:d6:
c4:9f:90:ed:83:18:a0:ba:d2:ea:6f:1d:8e:65:27:
0d:eb:0f:ff:e1:ca:45:0e:5a:7a:17:53:c9:ed:ed:
bd:56:49:59:52:b6:b2:d8:3a:1a:af:6a:10:d3:87:
91:a3:7c:6e:89:ae:69:09:ee:97:f4:6f:09:31:26:
32:94:a8:0f:e5:c3:3b:88:1f:e4:b4:76:b5:bd:f6:
91:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:78:54:B8:C1:1C:18:F7:58:EA:75:E4:1C:12:F4:13:88:BF:36:DB
X509v3 Authority Key Identifier:
keyid:05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:97:83:f5:17:ed:e2:de:b6:67:b3:4b:65:71:d6:fb:31:e5:
89:2e:31:c4:73:ac:c5:02:1a:46:dc:38:37:04:e4:b7:de:84:
b3:2d:7d:8c:0c:de:19:de:15:29:ab:e7:eb:fb:48:b9:22:8a:
3d:da:1f:3f:6d:79:3a:68:cb:2c:74:3e:cb:65:44:b9:68:c3:
02:2b:89:ba:a4:10:47:e3:b9:ee:60:03:4e:af:8a:05:70:31:
0a:0c:fc:cb:b0:78:ec:25:e6:56:fa:c9:f1:b8:84:71:70:75:
cd:c9:a9:e1:93:af:77:14:6a:6d:62:f4:c9:d4:fb:44:fe:44:
eb:d7:3a:03:55:46:ce:4c:92:b2:a7:31:30:c2:6d:27:ac:09:
14:c6:4c:27:a4:94:ee:6f:da:61:e4:83:a6:21:dc:7c:c5:7a:
51:2f:62:47:d5:c8:5a:6c:00:3c:88:1b:08:fc:6d:61:5c:ab:
48:82:c5:fe:cb:8d:dd:e2:cd:bd:f0:9f:f8:e7:8f:3c:d6:31:
00:ca:fe:db:6c:7e:04:e0:8e:dd:e9:e6:0e:0b:31:82:a5:f0:
f4:5f:b2:03:7b:1e:87:0a:67:8e:47:a1:4e:f7:29:ab:3a:e0:
e9:fc:cd:24:ff:af:38:ec:80:78:08:66:3e:83:5c:35:56:aa:
b1:74:eb:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFeWUlnk8INa8+NAKc+Q9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NzExNTMyMTUwY2U3Yzk3YTdlYTQ4YzBkNzdhNDJlNmYw
ZDVmYzMwHhcNMjUwODIzMDQwMDM4WhcNMjUwODI0MDQwMDM4WjAzMTEwLwYDVQQD
EygyYzc4NTRiOGMxMWMxOGY3NThlYTc1ZTQxYzEyZjQxMzg4YmYzNmRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArzJYsypRG59cKbKiP0uTKkntnK91
KS30dORzOJGL+HGNgiiOpS/uZnuWyft6mvWlaf7R5Mw3+crngWFVYBLX3aPs3rWH
epYD+krW0OvIC7NxE1WDjqVnhOOJ566tLc4RXqXOuSVSny0BcqOAAm3IGiv5JFfU
oCGeNBIc2l9SJKIKKFAdPhZall48TriIJhvz+PTnpJ6rPi3qVBepeuMZJGcug5IT
AsWCCkCQK9oRaW23xtbEn5DtgxigutLqbx2OZScN6w//4cpFDlp6F1PJ7e29VklZ
Uray2Doar2oQ04eRo3xuia5pCe6X9G8JMSYylKgP5cM7iB/ktHa1vfaRPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCx4VLjBHBj3WOp15BwS9BOIvzbbMB8GA1UdIwQY
MBaAFAVxFTIVDOfJen6kjA13pC5vDV/DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlhFVk1oVU01OGw2ZnFTTURYZWtMbThOWDhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS80ZDg5ZDYtNDQ2NS00MzIxLTkyODIt
N2JjZmQ2NGUwMjg4LzEvQlhFVk1oVU01OGw2ZnFTTURYZWtMbThOWDhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS80ZDg5ZDYtNDQ2NS00MzIxLTkyODItN2JjZmQ2NGUwMjg4
LzEvQlhFVk1oVU01OGw2ZnFTTURYZWtMbThOWDhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArJeD9Rft
4t62Z7NLZXHW+zHliS4xxHOsxQIaRtw4NwTkt96Esy19jAzeGd4VKavn6/tIuSKK
PdofP215OmjLLHQ+y2VEuWjDAiuJuqQQR+O57mADTq+KBXAxCgz8y7B47CXmVvrJ
8biEcXB1zcmp4ZOvdxRqbWL0ydT7RP5E69c6A1VGzkySsqcxMMJtJ6wJFMZMJ6SU
7m/aYeSDpiHcfMV6US9iR9XIWmwAPIgbCPxtYVyrSILF/suN3eLNvfCf+OePPNYx
AMr+22x+BOCO3enmDgsxgqXw9F+yA3sehwpnjkehTvcpqzrg6fzNJP+vOOyAeAhm
PoNcNVaqsXTr1g==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:44 2025 by rpki-client