Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.mft
File: bcXjzvXaXn_fw2TF1aBALTpnhtw.mft (raw, json)
Hash identifier: E4n/tdNm52nDsZmC83dsOytuHKzXi5WFTdaADQmxeVU=
Subject key identifier: 4A:B6:61:25:1F:AA:46:F1:9F:83:62:E4:7B:CC:64:0B:E7:79:1D:AC
Authority key identifier: 6D:C5:E3:CE:F5:DA:5E:7F:DF:C3:64:C5:D5:A0:40:2D:3A:67:86:DC
Certificate issuer: /CN=6dc5e3cef5da5e7fdfc364c5d5a0402d3a6786dc
Certificate serial: 0198D5F16C319EB6914309A7B74B2219C223
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bcXjzvXaXn_fw2TF1aBALTpnhtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.mft
Manifest number: 0EE4
Signing time: Sat 23 Aug 2025 08:00:25 +0000
Manifest this update: Sat 23 Aug 2025 08:00:25 +0000
Manifest next update: Sun 24 Aug 2025 08:00:25 +0000
Files and hashes: 1: DoUsi8lBp24xgpF7Cj5k0M8Xf1k.roa (hash: 8DoQ+UjZ0y3DouoJyhRBNdxsuMKM8IPBGox8SgTwz/M=)
2: bcXjzvXaXn_fw2TF1aBALTpnhtw.crl (hash: u7PjhOx5+22swMuMHimZxKjUV43RcTAY0yWMWhi9R3U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.mft
rsync://rpki.ripe.net/repository/DEFAULT/bcXjzvXaXn_fw2TF1aBALTpnhtw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:6c:31:9e:b6:91:43:09:a7:b7:4b:22:19:c2:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dc5e3cef5da5e7fdfc364c5d5a0402d3a6786dc
Validity
Not Before: Aug 23 08:00:25 2025 GMT
Not After : Aug 24 08:00:25 2025 GMT
Subject: CN=4ab661251faa46f19f8362e47bcc640be7791dac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b3:3f:c0:af:b3:d5:69:54:ab:20:3b:00:7d:
ba:8c:6d:23:86:01:9e:58:ff:81:97:66:45:01:c9:
13:8c:f4:c2:f7:6d:76:d6:8d:67:c5:09:e9:74:ed:
a9:97:ef:7c:18:3f:86:b6:d2:60:e1:37:d6:1a:bb:
25:47:af:46:7e:ca:69:d4:bc:ae:fa:fe:bd:e0:eb:
48:f8:38:1b:ce:8e:e3:23:e5:36:3f:01:06:9b:a7:
0a:32:76:b4:b1:e0:ca:09:d8:9f:4a:7e:0c:63:c5:
1f:50:00:59:1a:ec:ab:0f:c1:3a:ad:6f:b0:0e:4a:
5f:ca:e6:af:8e:49:a6:83:40:7c:a1:51:9e:fa:2f:
68:e0:70:68:e4:1c:8e:22:90:5a:00:ff:7b:76:31:
4d:f7:34:81:1f:e0:15:56:f9:37:14:b0:ee:cc:1b:
db:7e:45:f0:4a:be:f2:08:f0:8a:8a:1d:07:ea:ef:
6b:ac:58:d9:19:f3:b2:b5:32:3e:a2:e6:d1:d3:23:
10:80:7a:3e:0b:51:b9:42:ee:e7:66:d9:b5:0e:9f:
22:90:52:69:d7:52:e1:d3:e8:fe:b1:eb:91:ff:8a:
5f:f6:c5:3f:91:39:50:71:b1:2c:70:0f:e8:c4:ae:
f1:cb:8d:f2:61:da:7f:09:86:b9:8e:98:53:22:67:
39:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B6:61:25:1F:AA:46:F1:9F:83:62:E4:7B:CC:64:0B:E7:79:1D:AC
X509v3 Authority Key Identifier:
keyid:6D:C5:E3:CE:F5:DA:5E:7F:DF:C3:64:C5:D5:A0:40:2D:3A:67:86:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bcXjzvXaXn_fw2TF1aBALTpnhtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:81:36:24:7b:52:87:00:4d:2e:80:fb:ed:11:a8:fc:a2:0c:
69:e1:20:cc:ef:0a:cc:e3:8f:83:25:b9:c6:62:00:7d:80:2e:
e2:bd:ba:1e:c4:8b:a7:78:05:cb:2a:6f:09:d3:73:71:19:1d:
6f:51:40:a5:e5:0a:2d:0d:16:0a:bb:09:9b:5f:29:c7:55:61:
f3:f1:a1:e3:4c:ee:d0:42:f5:67:36:7f:a7:87:5b:ab:37:5f:
ef:79:c1:69:2d:cb:ec:3a:cc:00:d5:e3:a2:29:a8:60:44:cd:
83:76:6c:82:e1:99:5c:fe:56:48:9a:ac:1c:ac:c6:4c:da:87:
aa:fe:15:17:69:ea:b6:e9:a3:0d:e3:6e:df:87:ea:24:cb:eb:
89:96:ad:17:2d:dc:05:b1:55:c7:48:4d:ef:26:44:43:53:1a:
c5:ec:f3:10:27:e6:4a:e1:fd:65:f6:65:f8:35:b2:73:67:8b:
28:f5:80:1d:71:fc:e1:98:31:59:ea:68:46:3d:44:55:d7:9f:
94:1c:91:29:48:dd:7b:ee:7d:32:72:e1:76:68:72:71:d6:e7:
94:eb:f0:19:2a:2d:98:c9:82:60:81:6e:57:b0:bb:f1:9a:24:
27:71:58:77:f9:26:b5:78:93:86:27:da:81:69:41:4f:c2:ab:
55:5c:d5:c8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjV8WwxnraRQwmnt0siGcIjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkYzVlM2NlZjVkYTVlN2ZkZmMzNjRjNWQ1YTA0MDJkM2E2
Nzg2ZGMwHhcNMjUwODIzMDgwMDI1WhcNMjUwODI0MDgwMDI1WjAzMTEwLwYDVQQD
Eyg0YWI2NjEyNTFmYWE0NmYxOWY4MzYyZTQ3YmNjNjQwYmU3NzkxZGFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxrM/wK+z1WlUqyA7AH26jG0jhgGe
WP+Bl2ZFAckTjPTC92121o1nxQnpdO2pl+98GD+GttJg4TfWGrslR69Gfspp1Lyu
+v694OtI+Dgbzo7jI+U2PwEGm6cKMna0seDKCdifSn4MY8UfUABZGuyrD8E6rW+w
Dkpfyuavjkmmg0B8oVGe+i9o4HBo5ByOIpBaAP97djFN9zSBH+AVVvk3FLDuzBvb
fkXwSr7yCPCKih0H6u9rrFjZGfOytTI+oubR0yMQgHo+C1G5Qu7nZtm1Dp8ikFJp
11Lh0+j+seuR/4pf9sU/kTlQcbEscA/oxK7xy43yYdp/CYa5jphTImc5RwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEq2YSUfqkbxn4Ni5HvMZAvneR2sMB8GA1UdIwQY
MBaAFG3F48712l5/38NkxdWgQC06Z4bcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmNYanp2WGFYbl9mdzJURjFhQkFMVHBuaHR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9jYzc3YTYtMmIwZS00Y2RkLTg4MjYt
Y2RjYzk2NjA3YjlhLzEvYmNYanp2WGFYbl9mdzJURjFhQkFMVHBuaHR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9jYzc3YTYtMmIwZS00Y2RkLTg4MjYtY2RjYzk2NjA3Yjlh
LzEvYmNYanp2WGFYbl9mdzJURjFhQkFMVHBuaHR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO4E2JHtS
hwBNLoD77RGo/KIMaeEgzO8KzOOPgyW5xmIAfYAu4r26HsSLp3gFyypvCdNzcRkd
b1FApeUKLQ0WCrsJm18px1Vh8/Gh40zu0EL1ZzZ/p4dbqzdf73nBaS3L7DrMANXj
oimoYETNg3ZsguGZXP5WSJqsHKzGTNqHqv4VF2nqtumjDeNu34fqJMvriZatFy3c
BbFVx0hN7yZEQ1MaxezzECfmSuH9ZfZl+DWyc2eLKPWAHXH84ZgxWepoRj1EVdef
lByRKUjde+59MnLhdmhycdbnlOvwGSotmMmCYIFuV7C78ZokJ3FYd/kmtXiThifa
gWlBT8KrVVzVyA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:30:57 2025 by rpki-client