Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.mft
File: u-BbYYon9sEO-Zm8ltmqDL0UraU.mft (raw, json)
Hash identifier: hBvT71nzr59OY99jYNIBB32xK60VZBh29OQDplp4CvQ=
Subject key identifier: B4:B0:58:AF:8E:16:9F:B1:14:E6:83:7E:CC:4A:E5:61:D0:FB:F9:E3
Authority key identifier: BB:E0:5B:61:8A:27:F6:C1:0E:F9:99:BC:96:D9:AA:0C:BD:14:AD:A5
Certificate issuer: /CN=bbe05b618a27f6c10ef999bc96d9aa0cbd14ada5
Certificate serial: 0198D54EAA3AE0DFFD94797A08E91E0C02FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u-BbYYon9sEO-Zm8ltmqDL0UraU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.mft
Manifest number: 01CB
Signing time: Sat 23 Aug 2025 05:02:39 +0000
Manifest this update: Sat 23 Aug 2025 05:02:39 +0000
Manifest next update: Sun 24 Aug 2025 05:02:39 +0000
Files and hashes: 1: u-BbYYon9sEO-Zm8ltmqDL0UraU.crl (hash: vYjfJycaMt1OrdbdVEQUBPjmSg6rIGsTT8WzuO4MVlE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.mft
rsync://rpki.ripe.net/repository/DEFAULT/u-BbYYon9sEO-Zm8ltmqDL0UraU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:aa:3a:e0:df:fd:94:79:7a:08:e9:1e:0c:02:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbe05b618a27f6c10ef999bc96d9aa0cbd14ada5
Validity
Not Before: Aug 23 05:02:39 2025 GMT
Not After : Aug 24 05:02:39 2025 GMT
Subject: CN=b4b058af8e169fb114e6837ecc4ae561d0fbf9e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:eb:fb:ca:6a:97:1a:8d:a2:ae:ec:28:31:88:
ec:d8:a7:ab:df:a8:52:d2:4d:2e:16:3e:d1:46:45:
78:f1:d6:e2:cb:dc:2a:c9:55:fc:7e:69:c8:90:66:
03:1d:d5:f9:d6:c9:d8:af:9d:d8:94:cc:b9:94:8b:
f0:5b:81:24:72:7c:90:38:24:e1:7d:58:6a:2c:59:
bd:e1:0c:01:81:2d:ca:51:b9:7a:c7:6a:bf:75:ef:
1d:ac:4d:f0:e4:2c:bc:1b:cc:66:8c:b3:1b:ac:40:
89:c8:c9:7a:72:54:b7:50:7b:7e:88:0f:47:d0:50:
88:14:a7:09:5d:b7:ce:ad:2d:0a:36:85:8e:8e:79:
58:75:b3:8a:2b:b5:a8:e7:9b:d9:e8:05:0f:02:71:
39:11:e2:3f:e2:e1:b9:88:5b:0f:4c:64:4a:f0:7b:
eb:5e:45:1c:8c:20:2e:c0:54:64:86:61:d2:07:45:
5e:9a:d1:44:d0:d4:e6:dc:ef:91:38:ff:6f:43:a8:
b0:6a:f1:12:94:25:07:f6:5c:11:19:4b:df:95:5a:
5b:ab:87:5e:c2:35:23:57:57:5a:2a:20:ab:ed:6f:
91:50:bf:69:0d:6b:c5:8f:4d:b0:fa:2d:7b:c2:af:
75:8d:fd:82:bf:45:34:5b:b6:10:e6:f9:ac:f6:41:
0e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:B0:58:AF:8E:16:9F:B1:14:E6:83:7E:CC:4A:E5:61:D0:FB:F9:E3
X509v3 Authority Key Identifier:
keyid:BB:E0:5B:61:8A:27:F6:C1:0E:F9:99:BC:96:D9:AA:0C:BD:14:AD:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u-BbYYon9sEO-Zm8ltmqDL0UraU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:92:65:71:bc:79:8e:7d:90:6b:9a:83:45:b0:f6:b3:dd:45:
8f:c7:50:bc:6e:67:55:eb:94:ff:29:25:4d:b2:1f:6c:7f:84:
54:7c:4c:61:c6:b4:2a:ed:0f:6f:dc:8f:a0:cd:cb:10:1a:73:
16:02:a2:d8:5e:0c:fc:79:89:f5:ee:1a:25:12:f7:84:9a:cf:
51:25:93:77:d6:84:98:6a:d1:fb:ab:ca:fd:57:6b:c1:96:1b:
a2:1d:5e:ac:98:3b:e3:89:c0:33:ef:e4:4a:be:3c:87:80:82:
bd:0f:21:ff:39:39:ff:ef:18:4f:c5:87:7d:89:e9:39:cc:07:
30:b2:64:d8:f3:55:05:eb:4b:df:e8:16:c9:8a:ae:dd:d5:60:
e5:f8:4d:b3:fa:b7:7d:34:bc:c7:d5:50:b5:21:c4:77:77:75:
d0:f8:5f:04:39:7e:25:e9:61:f0:05:f8:6a:c5:42:76:c3:0e:
ea:17:1f:e6:ab:bb:36:ed:be:30:31:56:db:7f:67:5e:a6:c6:
1b:98:b6:49:46:75:c3:8e:2c:95:98:cf:95:5d:68:b7:ac:a9:
90:2a:0b:65:3d:c9:65:95:8b:e8:6b:c4:a2:b1:a3:49:f5:3f:
de:51:38:a7:52:5e:84:2c:0f:42:9e:c0:2f:13:bf:e4:02:9b:
94:7c:de:32
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTqo64N/9lHl6COkeDAL/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiZTA1YjYxOGEyN2Y2YzEwZWY5OTliYzk2ZDlhYTBjYmQx
NGFkYTUwHhcNMjUwODIzMDUwMjM5WhcNMjUwODI0MDUwMjM5WjAzMTEwLwYDVQQD
EyhiNGIwNThhZjhlMTY5ZmIxMTRlNjgzN2VjYzRhZTU2MWQwZmJmOWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuv7ymqXGo2iruwoMYjs2Ker36hS
0k0uFj7RRkV48dbiy9wqyVX8fmnIkGYDHdX51snYr53YlMy5lIvwW4EkcnyQOCTh
fVhqLFm94QwBgS3KUbl6x2q/de8drE3w5Cy8G8xmjLMbrECJyMl6clS3UHt+iA9H
0FCIFKcJXbfOrS0KNoWOjnlYdbOKK7Wo55vZ6AUPAnE5EeI/4uG5iFsPTGRK8Hvr
XkUcjCAuwFRkhmHSB0VemtFE0NTm3O+ROP9vQ6iwavESlCUH9lwRGUvflVpbq4de
wjUjV1daKiCr7W+RUL9pDWvFj02w+i17wq91jf2Cv0U0W7YQ5vms9kEOgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLSwWK+OFp+xFOaDfsxK5WHQ+/njMB8GA1UdIwQY
MBaAFLvgW2GKJ/bBDvmZvJbZqgy9FK2lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdS1CYllZb245c0VPLVptOGx0bXFETDBVcmFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS82ZTAyYTktMDhhZC00NzQzLWI1Mzgt
ZjMwMjljMzliNjZlLzEvdS1CYllZb245c0VPLVptOGx0bXFETDBVcmFVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS82ZTAyYTktMDhhZC00NzQzLWI1MzgtZjMwMjljMzliNjZl
LzEvdS1CYllZb245c0VPLVptOGx0bXFETDBVcmFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJpJlcbx5
jn2Qa5qDRbD2s91Fj8dQvG5nVeuU/yklTbIfbH+EVHxMYca0Ku0Pb9yPoM3LEBpz
FgKi2F4M/HmJ9e4aJRL3hJrPUSWTd9aEmGrR+6vK/VdrwZYboh1erJg744nAM+/k
Sr48h4CCvQ8h/zk5/+8YT8WHfYnpOcwHMLJk2PNVBetL3+gWyYqu3dVg5fhNs/q3
fTS8x9VQtSHEd3d10PhfBDl+Jelh8AX4asVCdsMO6hcf5qu7Nu2+MDFW239nXqbG
G5i2SUZ1w44slZjPlV1ot6ypkCoLZT3JZZWL6GvEorGjSfU/3lE4p1JehCwPQp7A
LxO/5AKblHzeMg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:40:51 2025 by rpki-client