Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft
File: BLHnVu2xw70vV2afWCv2qVG4P0g.mft (raw, json)
Hash identifier: SkEirQzmfp+nIr9BpkhT0irAcrlHRhNrgqXsiWFmUdw=
Subject key identifier: 34:77:A0:42:A1:12:DE:8F:45:E9:31:86:5C:E5:2D:D7:B7:40:62:DF
Authority key identifier: 04:B1:E7:56:ED:B1:C3:BD:2F:57:66:9F:58:2B:F6:A9:51:B8:3F:48
Certificate issuer: /CN=04b1e756edb1c3bd2f57669f582bf6a951b83f48
Certificate serial: 0199FFC898FF472A82D037ED248BB379F7F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BLHnVu2xw70vV2afWCv2qVG4P0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft
Manifest number: 16E4
Signing time: Mon 20 Oct 2025 04:02:40 +0000
Manifest this update: Mon 20 Oct 2025 04:02:40 +0000
Manifest next update: Tue 21 Oct 2025 04:02:40 +0000
Files and hashes: 1: BLHnVu2xw70vV2afWCv2qVG4P0g.crl (hash: edGar92I58wuApre0/nA4w+XH3++CSVSkPOZV4W3SLM=)
2: RK9xACY5XxzSQaeBbJjDwmPGdFw.roa (hash: Z9/aIdSLDIxdeAqdfXn6u/SeZl9dpZ2YPR093LrIQCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/BLHnVu2xw70vV2afWCv2qVG4P0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c8:98:ff:47:2a:82:d0:37:ed:24:8b:b3:79:f7:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04b1e756edb1c3bd2f57669f582bf6a951b83f48
Validity
Not Before: Oct 20 04:02:40 2025 GMT
Not After : Oct 21 04:02:40 2025 GMT
Subject: CN=3477a042a112de8f45e931865ce52dd7b74062df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:42:fd:83:9f:40:d2:b0:da:7e:1a:96:13:9a:
f6:b3:b5:f3:4d:c2:20:e1:ed:84:d9:6a:cd:ca:5d:
4c:55:a5:ff:8f:82:3f:44:1f:a9:63:16:49:85:95:
a9:f1:e3:a4:35:b7:24:8a:1c:24:70:12:af:0f:fe:
4f:ea:3a:27:54:ae:35:24:31:81:13:95:0d:da:14:
5a:a5:61:e3:af:c8:6a:03:e3:9c:11:1a:39:4c:6e:
4c:8b:d8:df:56:66:db:43:6f:ed:94:58:cf:b2:8c:
12:0f:1b:d4:70:63:2c:0e:4c:a5:e5:1a:94:af:4b:
2d:0a:96:79:54:32:f7:08:c0:fd:88:56:fd:cf:be:
5d:5a:01:6a:3e:93:b6:e9:bc:9d:45:0f:ea:ed:f6:
7f:3e:b4:8b:64:a8:48:20:a6:2d:a8:f7:51:85:09:
39:98:58:e6:42:77:77:2b:74:53:ee:d7:9c:b8:7c:
aa:97:58:35:fa:cd:76:14:9c:49:61:42:6f:c8:99:
6c:00:22:df:a3:41:c6:2d:62:e6:8e:f3:8e:21:7f:
39:f9:20:81:61:fc:da:4c:90:2d:14:91:25:dc:7c:
45:e9:5d:9b:c2:ad:08:e7:bc:e0:63:40:c8:d7:97:
e1:da:01:39:94:e7:96:4e:81:e8:a3:95:83:69:04:
a5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:77:A0:42:A1:12:DE:8F:45:E9:31:86:5C:E5:2D:D7:B7:40:62:DF
X509v3 Authority Key Identifier:
keyid:04:B1:E7:56:ED:B1:C3:BD:2F:57:66:9F:58:2B:F6:A9:51:B8:3F:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BLHnVu2xw70vV2afWCv2qVG4P0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:32:f4:3a:58:85:70:52:12:c2:bf:0b:b8:01:2c:36:90:66:
99:7f:20:69:f1:4f:14:d8:7a:b1:50:bd:71:6f:b4:87:b8:bc:
1b:55:0e:ae:2e:77:ef:88:99:a8:a8:e9:e1:25:4f:f5:2f:6c:
77:a4:60:7e:b6:e7:c3:ee:be:d1:12:b3:55:9d:df:da:88:da:
68:86:ef:c7:f7:a8:44:f9:40:a8:44:b8:68:15:7a:04:c8:d2:
6e:d9:dd:4a:cf:ca:1d:e7:43:e7:b4:f7:9c:34:15:8a:3d:bc:
87:1f:7e:a3:95:8d:fd:3b:33:c9:f0:8c:aa:85:32:40:31:a9:
d4:45:02:22:ee:ab:ac:b1:1f:53:bc:8a:37:7d:df:6a:81:13:
99:23:a6:f6:dd:6f:f5:fc:a7:5a:62:95:ec:28:bb:23:dc:b7:
99:89:68:a7:19:d9:ad:22:d7:66:9b:54:6e:63:d4:66:16:0f:
10:c3:cc:a9:57:dc:fb:0e:60:2a:82:59:0d:a0:ae:3f:e3:65:
bc:0a:ba:62:31:3f:c8:c0:1b:5b:00:c9:4c:3e:1b:d7:72:61:
5b:a8:2c:35:55:fc:fb:27:70:65:d3:e5:b1:0a:32:2e:b2:1a:
e6:3d:14:15:f5:f5:a4:07:71:b9:d0:87:7a:67:8b:ef:57:52:
89:76:04:26
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn/yJj/RyqC0DftJIuzeffxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0YjFlNzU2ZWRiMWMzYmQyZjU3NjY5ZjU4MmJmNmE5NTFi
ODNmNDgwHhcNMjUxMDIwMDQwMjQwWhcNMjUxMDIxMDQwMjQwWjAzMTEwLwYDVQQD
EygzNDc3YTA0MmExMTJkZThmNDVlOTMxODY1Y2U1MmRkN2I3NDA2MmRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApEL9g59A0rDafhqWE5r2s7XzTcIg
4e2E2WrNyl1MVaX/j4I/RB+pYxZJhZWp8eOkNbckihwkcBKvD/5P6jonVK41JDGB
E5UN2hRapWHjr8hqA+OcERo5TG5Mi9jfVmbbQ2/tlFjPsowSDxvUcGMsDkyl5RqU
r0stCpZ5VDL3CMD9iFb9z75dWgFqPpO26bydRQ/q7fZ/PrSLZKhIIKYtqPdRhQk5
mFjmQnd3K3RT7tecuHyql1g1+s12FJxJYUJvyJlsACLfo0HGLWLmjvOOIX85+SCB
YfzaTJAtFJEl3HxF6V2bwq0I57zgY0DI15fh2gE5lOeWToHoo5WDaQSl+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDR3oEKhEt6PRekxhlzlLde3QGLfMB8GA1UdIwQY
MBaAFASx51btscO9L1dmn1gr9qlRuD9IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQkxIblZ1Mnh3NzB2VjJhZldDdjJxVkc0UDBnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi9hNWIzNjgtMzMxMy00MTMyLTk4OTct
ZDAxNzk1N2VhMzllLzEvQkxIblZ1Mnh3NzB2VjJhZldDdjJxVkc0UDBnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi9hNWIzNjgtMzMxMy00MTMyLTk4OTctZDAxNzk1N2VhMzll
LzEvQkxIblZ1Mnh3NzB2VjJhZldDdjJxVkc0UDBnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApDL0OliF
cFISwr8LuAEsNpBmmX8gafFPFNh6sVC9cW+0h7i8G1UOri5374iZqKjp4SVP9S9s
d6Rgfrbnw+6+0RKzVZ3f2ojaaIbvx/eoRPlAqES4aBV6BMjSbtndSs/KHedD57T3
nDQVij28hx9+o5WN/TszyfCMqoUyQDGp1EUCIu6rrLEfU7yKN33faoETmSOm9t1v
9fynWmKV7Ci7I9y3mYlopxnZrSLXZptUbmPUZhYPEMPMqVfc+w5gKoJZDaCuP+Nl
vAq6YjE/yMAbWwDJTD4b13JhW6gsNVX8+ydwZdPlsQoyLrIa5j0UFfX1pAdxudCH
emeL71dSiXYEJg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 09:24:05 2025 by rpki-client