Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
File: BYmfOXZIcDij-mNDlSsUtNBysz0.mft (raw, json)
Hash identifier: BN/K25oGVFoc5ObmmsZiKY+tmHdE2zCzZP4r4LaSBrM=
Subject key identifier: 36:BC:06:F1:E1:43:9B:04:1C:31:33:36:7A:91:4C:AA:BA:D5:6D:00
Authority key identifier: 05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D
Certificate issuer: /CN=05899f3976487038a3fa6343952b14b4d072b33d
Certificate serial: 0198D850F5FF1F6051E5DC36526BD40C3556
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
Manifest number: 137F
Signing time: Sat 23 Aug 2025 19:04:01 +0000
Manifest this update: Sat 23 Aug 2025 19:04:01 +0000
Manifest next update: Sun 24 Aug 2025 19:04:01 +0000
Files and hashes: 1: 0FPPBtsN210U9TcyUOoD4vT2QPY.roa (hash: fG8Q0h59H0I6+//7X6/ScKzAsNXNuiLvMcAt229Ohto=)
2: BYmfOXZIcDij-mNDlSsUtNBysz0.crl (hash: 8kLdhC4n47q0iuBjk7c7fuwrUWKun55Q9JD4ov0jAZw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 19:04:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:50:f5:ff:1f:60:51:e5:dc:36:52:6b:d4:0c:35:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05899f3976487038a3fa6343952b14b4d072b33d
Validity
Not Before: Aug 23 19:04:01 2025 GMT
Not After : Aug 24 19:04:01 2025 GMT
Subject: CN=36bc06f1e1439b041c3133367a914caabad56d00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c1:d1:c3:25:5c:b8:ea:3d:03:d2:99:db:97:
7a:42:ed:d8:56:f3:4a:a2:97:53:53:de:1b:d3:28:
cd:25:ee:bb:a0:c7:36:ce:ae:5e:e0:37:a8:a7:7e:
a9:62:b2:04:e6:99:cc:eb:9d:cd:84:b7:18:8d:96:
86:5e:d1:eb:cc:1e:a6:93:8c:bd:f1:44:e7:b5:3b:
91:b8:42:44:89:49:3b:c1:1d:52:24:df:d8:d0:b1:
47:1b:fb:cc:7d:a8:52:e5:1d:33:56:cb:ce:ab:f9:
01:52:a3:76:3a:b6:18:48:2e:d4:29:a6:c0:2c:e3:
29:79:88:ba:e7:91:35:e7:d1:0a:2c:89:f0:77:a8:
ac:63:94:14:da:68:55:06:a9:22:61:e2:f2:77:a7:
cc:05:4a:6b:41:25:ca:b1:81:16:c5:f0:ca:02:3d:
62:eb:3c:d9:c4:00:1c:b4:ed:40:b7:16:0b:85:cd:
3e:28:0f:16:7a:6c:3b:ee:2f:da:90:0a:62:3c:f3:
8e:0b:57:04:36:aa:12:04:44:61:43:1d:bf:c4:78:
47:47:da:d9:89:bc:78:5c:6c:6c:47:72:07:c4:39:
b0:c4:61:eb:f3:18:6e:19:ed:5b:c3:5f:a4:72:79:
9e:92:55:9f:9d:17:66:66:fd:d0:a1:b2:ee:87:e8:
0d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:BC:06:F1:E1:43:9B:04:1C:31:33:36:7A:91:4C:AA:BA:D5:6D:00
X509v3 Authority Key Identifier:
keyid:05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:c7:4a:80:69:9c:db:74:57:5d:f2:b1:82:47:6a:9a:fa:14:
e2:7b:56:e5:b9:f7:99:fc:f9:3f:3e:39:42:e1:54:f7:af:a5:
ee:13:75:d9:c5:f7:8f:61:5c:f0:a3:5a:ea:cb:54:c2:9b:f6:
99:c6:df:29:d3:ef:0d:7d:19:36:85:d0:5c:37:33:de:95:1d:
df:56:92:f7:9c:7d:53:8f:d9:98:7c:fb:5b:fd:51:3a:51:14:
2b:40:db:36:ea:a5:24:8d:43:a3:5f:70:dc:a5:5f:20:b2:4c:
00:f4:76:36:e9:cf:a0:3d:4b:04:ff:b8:83:3c:5d:3a:c9:f2:
20:9f:2d:54:36:28:35:24:27:7e:33:7e:cd:68:5b:cc:23:a7:
c9:03:b1:7a:3f:9f:df:aa:d6:5a:88:5b:e7:36:4c:5c:06:b5:
ed:5d:97:38:cd:eb:c5:d6:a4:f3:f8:f4:ec:54:04:70:03:d0:
e4:44:41:db:e5:c9:fc:e8:6b:7c:ea:a1:8a:f9:39:67:86:2e:
d3:47:e1:47:dd:fa:75:27:9a:c8:a8:df:97:c0:e8:7c:a3:8f:
ee:04:05:de:7c:f7:40:0c:5a:62:49:4e:cb:08:4b:2f:da:3f:
cc:3a:ab:84:dc:00:71:81:f9:04:c3:d2:c7:2d:b6:51:b1:04:
9c:f5:9b:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjYUPX/H2BR5dw2UmvUDDVWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1ODk5ZjM5NzY0ODcwMzhhM2ZhNjM0Mzk1MmIxNGI0ZDA3
MmIzM2QwHhcNMjUwODIzMTkwNDAxWhcNMjUwODI0MTkwNDAxWjAzMTEwLwYDVQQD
EygzNmJjMDZmMWUxNDM5YjA0MWMzMTMzMzY3YTkxNGNhYWJhZDU2ZDAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnMHRwyVcuOo9A9KZ25d6Qu3YVvNK
opdTU94b0yjNJe67oMc2zq5e4Deop36pYrIE5pnM653NhLcYjZaGXtHrzB6mk4y9
8UTntTuRuEJEiUk7wR1SJN/Y0LFHG/vMfahS5R0zVsvOq/kBUqN2OrYYSC7UKabA
LOMpeYi655E159EKLInwd6isY5QU2mhVBqkiYeLyd6fMBUprQSXKsYEWxfDKAj1i
6zzZxAActO1AtxYLhc0+KA8Wemw77i/akApiPPOOC1cENqoSBERhQx2/xHhHR9rZ
ibx4XGxsR3IHxDmwxGHr8xhuGe1bw1+kcnmeklWfnRdmZv3QobLuh+gNHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDa8BvHhQ5sEHDEzNnqRTKq61W0AMB8GA1UdIwQY
MBaAFAWJnzl2SHA4o/pjQ5UrFLTQcrM9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlltZk9YWkljRGlqLW1ORGxTc1V0TkJ5c3owLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS8xZmNlOTMtMDJlYS00Zjk5LTk5YzIt
MDhjMjEyMzU4MGVkLzEvQlltZk9YWkljRGlqLW1ORGxTc1V0TkJ5c3owLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS8xZmNlOTMtMDJlYS00Zjk5LTk5YzItMDhjMjEyMzU4MGVk
LzEvQlltZk9YWkljRGlqLW1ORGxTc1V0TkJ5c3owLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPsdKgGmc
23RXXfKxgkdqmvoU4ntW5bn3mfz5Pz45QuFU96+l7hN12cX3j2Fc8KNa6stUwpv2
mcbfKdPvDX0ZNoXQXDcz3pUd31aS95x9U4/ZmHz7W/1ROlEUK0DbNuqlJI1Do19w
3KVfILJMAPR2NunPoD1LBP+4gzxdOsnyIJ8tVDYoNSQnfjN+zWhbzCOnyQOxej+f
36rWWohb5zZMXAa17V2XOM3rxdak8/j07FQEcAPQ5ERB2+XJ/OhrfOqhivk5Z4Yu
00fhR936dSeayKjfl8DofKOP7gQF3nz3QAxaYklOywhLL9o/zDqrhNwAcYH5BMPS
xy22UbEEnPWbEg==
-----END CERTIFICATE-----
Generated at Sun Aug 24 04:25:31 2025 by rpki-client