Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft
File: BLHnVu2xw70vV2afWCv2qVG4P0g.mft (raw, json)
Hash identifier: H6pPOEYAjlthCOaps4IOU91OyF5rjH0Edrqq+lWOSdQ=
Subject key identifier: D6:A2:D5:28:9D:DD:19:23:CB:08:02:B9:0C:BC:9A:13:C1:88:E5:70
Authority key identifier: 04:B1:E7:56:ED:B1:C3:BD:2F:57:66:9F:58:2B:F6:A9:51:B8:3F:48
Certificate issuer: /CN=04b1e756edb1c3bd2f57669f582bf6a951b83f48
Certificate serial: 0197B6A207DA5B46C93B5943199AD4587FFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BLHnVu2xw70vV2afWCv2qVG4P0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 13:02:41 +0000
Manifest this update: Sat 28 Jun 2025 13:02:41 +0000
Manifest next update: Sun 29 Jun 2025 13:02:41 +0000
Files and hashes: 1: BLHnVu2xw70vV2afWCv2qVG4P0g.crl (hash: skW2Kuy6l+y7v9ZJ/jB3oEdg0dvMNYMbzHeXLmK5TVM=)
2: RK9xACY5XxzSQaeBbJjDwmPGdFw.roa (hash: Z9/aIdSLDIxdeAqdfXn6u/SeZl9dpZ2YPR093LrIQCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/BLHnVu2xw70vV2afWCv2qVG4P0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:07:da:5b:46:c9:3b:59:43:19:9a:d4:58:7f:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04b1e756edb1c3bd2f57669f582bf6a951b83f48
Validity
Not Before: Jun 28 13:02:41 2025 GMT
Not After : Jun 29 13:02:41 2025 GMT
Subject: CN=d6a2d5289ddd1923cb0802b90cbc9a13c188e570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a6:91:b7:26:1b:b5:78:01:bb:4e:93:23:f1:
9a:cb:a8:3b:ea:71:12:fb:54:8d:30:14:be:fb:b5:
b5:6e:d5:33:dd:86:b6:f4:af:a3:67:2c:7c:ca:2d:
b2:ff:71:51:b5:0a:81:8f:64:00:68:7e:5a:ec:2f:
05:fa:73:ad:ea:2d:7e:9b:6e:7a:25:19:2d:e1:66:
e2:62:b5:d8:da:9a:4d:92:72:cb:5f:e3:b7:7c:ef:
91:8f:50:b0:de:a4:e9:e0:cb:2f:18:8b:14:e8:02:
35:8b:9b:f8:4d:b9:c4:cb:16:ba:5d:d0:a0:fd:00:
96:af:07:8b:2c:d3:be:1f:1b:a5:0f:01:35:2d:ed:
c1:fb:d6:64:69:0b:d7:89:dc:10:0b:09:70:e5:bc:
fa:ae:fe:f3:81:62:b0:8c:6f:53:5e:bd:42:12:7e:
0f:9a:ff:d6:ff:32:44:b8:a1:b7:14:9b:6a:b4:9f:
fc:ed:47:7d:8c:cc:ae:af:ad:5e:3f:59:f2:bc:ac:
29:3c:cf:59:66:cd:9e:72:8e:37:74:6a:ed:ad:31:
a3:50:9e:29:c6:d1:68:d1:41:13:bb:41:ca:92:99:
10:69:c9:a8:31:ba:17:39:14:f6:a3:7c:7b:85:0c:
af:8a:06:4d:e2:d5:98:0a:53:cb:85:e8:96:96:23:
6d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:A2:D5:28:9D:DD:19:23:CB:08:02:B9:0C:BC:9A:13:C1:88:E5:70
X509v3 Authority Key Identifier:
keyid:04:B1:E7:56:ED:B1:C3:BD:2F:57:66:9F:58:2B:F6:A9:51:B8:3F:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BLHnVu2xw70vV2afWCv2qVG4P0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:10:a5:93:8e:c8:87:56:6a:e0:19:28:0c:52:f7:ba:67:1d:
5a:e4:31:18:b0:5f:12:4f:e9:4f:f7:9f:aa:7e:34:34:94:b1:
27:bd:4a:15:3b:f1:5c:0f:d7:47:19:e8:7a:8d:69:b3:06:11:
5e:75:1a:cd:8e:ae:e3:14:e1:dc:cf:e7:24:a0:8d:20:63:56:
b4:68:f7:10:d5:c2:c9:28:97:8d:f0:14:71:9e:77:e0:19:5a:
d3:2b:c7:9b:dc:22:55:89:7f:cb:df:10:29:df:9f:0e:3a:76:
17:55:0b:f9:4d:c6:4f:f8:99:6a:4e:d5:d6:24:4f:7e:47:02:
94:1e:5a:ff:e7:c2:7d:be:02:68:6a:f4:d6:69:c4:1f:8a:c6:
cf:27:54:74:4a:76:dc:be:44:54:ac:04:83:e4:10:5c:31:e8:
69:60:5c:73:96:0d:38:37:d5:23:32:30:bb:5c:3d:44:ee:99:
ca:9c:0f:77:31:17:53:4d:6a:53:b4:88:d1:94:0a:68:46:36:
f1:d2:3e:9a:84:64:9c:75:44:d2:85:b5:e4:e8:98:57:5d:bf:
66:4d:10:8f:16:a9:19:93:18:d5:27:6a:c4:cb:a5:5a:a9:59:
4b:88:48:02:73:3b:b3:85:00:be:5b:34:38:e9:b7:5a:a5:d6:
5c:5d:c2:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2ogfaW0bJO1lDGZrUWH/8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0YjFlNzU2ZWRiMWMzYmQyZjU3NjY5ZjU4MmJmNmE5NTFi
ODNmNDgwHhcNMjUwNjI4MTMwMjQxWhcNMjUwNjI5MTMwMjQxWjAzMTEwLwYDVQQD
EyhkNmEyZDUyODlkZGQxOTIzY2IwODAyYjkwY2JjOWExM2MxODhlNTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmKaRtyYbtXgBu06TI/Gay6g76nES
+1SNMBS++7W1btUz3Ya29K+jZyx8yi2y/3FRtQqBj2QAaH5a7C8F+nOt6i1+m256
JRkt4WbiYrXY2ppNknLLX+O3fO+Rj1Cw3qTp4MsvGIsU6AI1i5v4TbnEyxa6XdCg
/QCWrweLLNO+HxulDwE1Le3B+9ZkaQvXidwQCwlw5bz6rv7zgWKwjG9TXr1CEn4P
mv/W/zJEuKG3FJtqtJ/87Ud9jMyur61eP1nyvKwpPM9ZZs2eco43dGrtrTGjUJ4p
xtFo0UETu0HKkpkQacmoMboXORT2o3x7hQyvigZN4tWYClPLheiWliNtowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNai1Sid3RkjywgCuQy8mhPBiOVwMB8GA1UdIwQY
MBaAFASx51btscO9L1dmn1gr9qlRuD9IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQkxIblZ1Mnh3NzB2VjJhZldDdjJxVkc0UDBnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi9hNWIzNjgtMzMxMy00MTMyLTk4OTct
ZDAxNzk1N2VhMzllLzEvQkxIblZ1Mnh3NzB2VjJhZldDdjJxVkc0UDBnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi9hNWIzNjgtMzMxMy00MTMyLTk4OTctZDAxNzk1N2VhMzll
LzEvQkxIblZ1Mnh3NzB2VjJhZldDdjJxVkc0UDBnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADhClk47I
h1Zq4BkoDFL3umcdWuQxGLBfEk/pT/efqn40NJSxJ71KFTvxXA/XRxnoeo1pswYR
XnUazY6u4xTh3M/nJKCNIGNWtGj3ENXCySiXjfAUcZ534Bla0yvHm9wiVYl/y98Q
Kd+fDjp2F1UL+U3GT/iZak7V1iRPfkcClB5a/+fCfb4CaGr01mnEH4rGzydUdEp2
3L5EVKwEg+QQXDHoaWBcc5YNODfVIzIwu1w9RO6ZypwPdzEXU01qU7SI0ZQKaEY2
8dI+moRknHVE0oW15OiYV12/Zk0QjxapGZMY1SdqxMulWqlZS4hIAnM7s4UAvls0
OOm3WqXWXF3C6Q==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:26:39 2025 by rpki-client