Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
File: bAlGwIGzK-hIywDY2TLowfcXlmg.mft (raw, json)
Hash identifier: iwcJ4HerIfGmlfHDHfKgL6I8kL11ahd6i5o5QUYbL6U=
Subject key identifier: B1:E4:4B:4B:83:DA:A0:CF:E4:16:F6:D0:8C:1D:49:1F:84:53:3F:08
Authority key identifier: 6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68
Certificate issuer: /CN=6c0946c081b32be848cb00d8d932e8c1f7179668
Certificate serial: 0198D85065B028A0E3B43CDA025CBABD883E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 19:03:24 +0000
Manifest this update: Sat 23 Aug 2025 19:03:24 +0000
Manifest next update: Sun 24 Aug 2025 19:03:24 +0000
Files and hashes: 1: bAlGwIGzK-hIywDY2TLowfcXlmg.crl (hash: ZsS0yjM3qm7cjTuxToiE+FLl1IA5geMn2L3Dyn+2gDg=)
2: zcbK2VYAm9mMFJWXJQ7evncTyKY.roa (hash: IlkFU9F+u30MyRO9adAYRJd3agbOfEkk4M3dko//XTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 17:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:50:65:b0:28:a0:e3:b4:3c:da:02:5c:ba:bd:88:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c0946c081b32be848cb00d8d932e8c1f7179668
Validity
Not Before: Aug 23 19:03:24 2025 GMT
Not After : Aug 24 19:03:24 2025 GMT
Subject: CN=b1e44b4b83daa0cfe416f6d08c1d491f84533f08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3c:d6:15:d5:d9:fb:03:4d:39:a1:bf:55:4e:
c2:62:e0:e4:89:37:d5:61:ec:26:a4:7d:15:c2:30:
c6:6b:8e:4b:c9:e8:74:59:8d:65:78:d6:2d:75:1a:
ac:8c:27:e4:b3:ba:0d:ed:d7:e4:bd:76:a4:09:4b:
e4:a6:c5:73:a2:c0:b0:64:50:15:41:04:e0:9f:2e:
0d:95:8f:97:7d:c0:b7:d2:38:53:1a:51:e0:cb:6d:
c1:40:a4:e2:54:a1:a7:b3:90:6c:30:63:6d:13:95:
8f:f0:d4:b4:3a:36:2d:63:8b:07:44:0d:17:14:61:
24:d3:45:97:ef:6a:aa:65:3c:cc:de:aa:c4:4c:29:
2f:72:2e:2a:1a:1f:85:f4:45:db:bc:37:2c:e0:f2:
de:6e:52:dc:8a:61:30:d9:7d:9c:82:ed:71:3a:aa:
ca:f3:4a:bf:0e:7a:ca:46:c2:3d:78:e9:5b:41:d1:
bb:96:36:e6:94:6c:2e:15:f3:43:cc:b5:fd:7a:62:
a6:d5:71:a5:52:4e:90:57:79:84:7c:71:a6:27:56:
72:38:f4:ec:21:22:ef:d5:f7:1f:99:b1:b8:70:36:
d6:65:8d:03:d5:3c:44:85:22:ff:83:7b:f8:8f:3e:
f2:24:aa:1c:06:43:fd:94:fa:52:09:de:7d:74:15:
29:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E4:4B:4B:83:DA:A0:CF:E4:16:F6:D0:8C:1D:49:1F:84:53:3F:08
X509v3 Authority Key Identifier:
keyid:6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:ef:60:84:ee:70:46:d7:6d:4e:b3:bb:48:bb:2a:e8:90:a0:
a5:57:4c:7b:31:99:92:0d:1e:1a:c1:28:3f:cb:a9:d6:eb:9c:
cd:2c:1e:ce:49:38:11:2c:de:1e:44:01:7f:9d:63:f2:65:b3:
3d:dd:60:41:b4:d3:e2:db:b7:44:f9:25:d3:85:8d:34:79:78:
a8:bf:a0:96:2b:07:46:18:dd:e6:b7:d2:4b:e3:b1:8f:a2:35:
3e:c0:23:01:c6:e5:9d:87:48:ec:4b:cb:c1:89:96:33:72:7c:
ca:c9:cb:3a:45:f1:91:bf:75:06:6c:4b:e8:78:4e:07:12:2a:
fb:aa:55:8c:2a:a1:1d:41:e2:ac:6f:c5:ee:a9:36:56:4b:18:
4d:60:c1:92:5b:71:f6:17:e5:e1:1a:20:df:a4:0f:57:b8:64:
f1:b3:c5:79:03:0e:34:73:69:eb:0a:88:36:4c:e6:c0:4b:8b:
b9:80:c0:f9:89:23:5c:e7:72:d2:8f:a1:38:ee:08:a8:f3:c0:
47:0c:e3:12:b3:91:a6:2f:8c:a5:22:8c:5f:19:31:8d:af:0d:
5a:41:de:d5:d7:07:db:36:c6:1e:62:87:08:ab:31:0d:09:2b:
1e:5c:58:00:9b:47:56:f5:98:25:99:f7:46:f7:ce:2b:8e:e4:
ad:3d:2c:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjYUGWwKKDjtDzaAly6vYg+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjMDk0NmMwODFiMzJiZTg0OGNiMDBkOGQ5MzJlOGMxZjcx
Nzk2NjgwHhcNMjUwODIzMTkwMzI0WhcNMjUwODI0MTkwMzI0WjAzMTEwLwYDVQQD
EyhiMWU0NGI0YjgzZGFhMGNmZTQxNmY2ZDA4YzFkNDkxZjg0NTMzZjA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAszzWFdXZ+wNNOaG/VU7CYuDkiTfV
YewmpH0VwjDGa45Lyeh0WY1leNYtdRqsjCfks7oN7dfkvXakCUvkpsVzosCwZFAV
QQTgny4NlY+XfcC30jhTGlHgy23BQKTiVKGns5BsMGNtE5WP8NS0OjYtY4sHRA0X
FGEk00WX72qqZTzM3qrETCkvci4qGh+F9EXbvDcs4PLeblLcimEw2X2cgu1xOqrK
80q/DnrKRsI9eOlbQdG7ljbmlGwuFfNDzLX9emKm1XGlUk6QV3mEfHGmJ1ZyOPTs
ISLv1fcfmbG4cDbWZY0D1TxEhSL/g3v4jz7yJKocBkP9lPpSCd59dBUphwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLHkS0uD2qDP5Bb20IwdSR+EUz8IMB8GA1UdIwQY
MBaAFGwJRsCBsyvoSMsA2Nky6MH3F5ZoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkFsR3dJR3pLLWhJeXdEWTJUTG93ZmNYbG1nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9jOGRjMTEtOTBlZi00ODdlLWEwNzMt
ZGYyYmJjOWQwNDczLzEvYkFsR3dJR3pLLWhJeXdEWTJUTG93ZmNYbG1nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC9jOGRjMTEtOTBlZi00ODdlLWEwNzMtZGYyYmJjOWQwNDcz
LzEvYkFsR3dJR3pLLWhJeXdEWTJUTG93ZmNYbG1nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfO9ghO5w
RtdtTrO7SLsq6JCgpVdMezGZkg0eGsEoP8up1uuczSwezkk4ESzeHkQBf51j8mWz
Pd1gQbTT4tu3RPkl04WNNHl4qL+glisHRhjd5rfSS+Oxj6I1PsAjAcblnYdI7EvL
wYmWM3J8ysnLOkXxkb91BmxL6HhOBxIq+6pVjCqhHUHirG/F7qk2VksYTWDBkltx
9hfl4Rog36QPV7hk8bPFeQMONHNp6wqINkzmwEuLuYDA+YkjXOdy0o+hOO4IqPPA
RwzjErORpi+MpSKMXxkxja8NWkHe1dcH2zbGHmKHCKsxDQkrHlxYAJtHVvWYJZn3
RvfOK47krT0s5w==
-----END CERTIFICATE-----
Generated at Sun Aug 24 01:33:04 2025 by rpki-client