Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
File: bJSdK9ZO4X711H-WPj1depgrEq8.mft (raw, json)
Hash identifier: JKic6AbNxVtFdBguKRiFIqOr/yDbF8TZ18IqKJFprGc=
Subject key identifier: B7:36:47:88:E1:2C:95:B5:57:4D:D6:BD:06:DF:23:6B:58:A5:7F:0E
Authority key identifier: 6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
Certificate issuer: /CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Certificate serial: 0199221F2501FAB16CF76D5F0B772AA4288B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
Manifest number: 0ADD
Signing time: Sun 07 Sep 2025 03:01:30 +0000
Manifest this update: Sun 07 Sep 2025 03:01:30 +0000
Manifest next update: Mon 08 Sep 2025 03:01:30 +0000
Files and hashes: 1: OyVcB1brzSxuoeEjBo4fT0W9OFc.roa (hash: sut6tQHQTuBMJAc0/1shERZEk1RWFKSSDeDy5cd5Klo=)
2: bJSdK9ZO4X711H-WPj1depgrEq8.crl (hash: kLnOEvu0bj0SnYzNhl4UbxnP3WhIP8vsZSlFekJ4aks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:25:01:fa:b1:6c:f7:6d:5f:0b:77:2a:a4:28:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Validity
Not Before: Sep 7 03:01:30 2025 GMT
Not After : Sep 8 03:01:30 2025 GMT
Subject: CN=b7364788e12c95b5574dd6bd06df236b58a57f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2f:46:48:d7:0f:7a:99:81:41:e8:2b:f4:db:
78:77:4f:6f:f5:0b:77:50:9f:ca:f8:e1:4f:38:86:
c8:35:12:99:c9:4f:21:6e:94:9f:54:75:5f:a9:bf:
37:f8:e9:68:65:a8:b3:8a:21:e8:ec:2b:26:20:a7:
c2:4a:93:43:6a:12:a4:2c:84:fc:fe:76:35:af:f7:
58:95:2b:26:ec:d8:ee:07:1a:4a:fa:e8:32:7e:a2:
b1:7b:5f:9e:3f:11:07:09:13:82:3c:66:07:1a:8c:
52:31:3e:46:0c:55:23:41:ab:fe:99:a2:4c:12:3c:
84:e5:23:ae:35:cf:2d:fc:c7:33:43:22:c6:4a:c5:
35:a9:a6:ea:85:29:79:fc:8a:94:a7:82:ab:0a:8f:
7e:ce:d7:b7:86:8a:ca:26:af:13:10:1b:25:ae:6e:
33:bb:94:fc:33:59:0b:05:94:b0:40:8a:cb:fb:ff:
c6:c6:25:e7:a8:55:bd:98:8e:97:6a:93:25:26:89:
3b:da:a6:15:c0:03:e8:4a:06:85:7f:ed:bf:21:5f:
36:3e:5d:8f:67:3e:39:3e:a2:7e:8f:1a:4d:dd:8f:
05:57:6e:76:90:d8:c3:a6:db:53:c0:ac:84:fe:8a:
2f:aa:4a:05:e5:16:39:98:6b:02:7b:0a:b6:3e:68:
d2:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:36:47:88:E1:2C:95:B5:57:4D:D6:BD:06:DF:23:6B:58:A5:7F:0E
X509v3 Authority Key Identifier:
keyid:6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:0f:ef:3d:26:51:90:7c:68:ff:42:14:81:04:cd:ed:39:12:
42:29:7d:60:01:88:15:05:c3:d3:a4:b8:2f:a6:68:4e:a5:1a:
9a:5f:78:92:e5:f8:29:91:cb:54:c5:1a:c9:8a:77:f2:8b:0b:
fb:b5:c0:ac:49:79:33:9d:98:90:f3:55:18:31:13:38:db:03:
ef:1c:c3:04:48:c6:d5:54:f2:61:35:89:09:05:70:de:28:5c:
12:c7:d1:84:8c:07:da:b7:14:4b:7e:8d:c3:3f:d1:f2:c4:ad:
67:21:33:fb:56:e8:8b:e3:51:5a:ef:ff:c0:ad:e7:60:a2:bc:
78:ea:29:2d:91:00:92:3a:6a:0d:6b:13:b5:2a:9e:76:32:23:
56:5f:97:3e:64:cc:8f:7e:42:e4:29:70:74:66:bb:f0:f0:0b:
94:66:bd:84:2c:a9:86:2f:c0:54:82:af:a2:8b:b8:f0:6b:0e:
71:ff:7f:25:94:1a:9e:83:b8:cf:73:eb:e2:63:c4:0a:ba:7b:
be:0e:97:79:81:ee:05:98:67:85:0a:2c:f2:4f:65:72:dc:f4:
c8:5b:0a:cc:a9:7e:d3:c9:3a:0c:be:9d:dd:91:d2:ee:3f:c3:
92:ca:54:a2:f6:de:3f:a2:82:c0:70:54:dc:ef:1a:cb:fb:3c:
bb:7c:40:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiHyUB+rFs921fC3cqpCiLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjOTQ5ZDJiZDY0ZWUxN2VmNWQ0N2Y5NjNlM2Q1ZDdhOTgy
YjEyYWYwHhcNMjUwOTA3MDMwMTMwWhcNMjUwOTA4MDMwMTMwWjAzMTEwLwYDVQQD
EyhiNzM2NDc4OGUxMmM5NWI1NTc0ZGQ2YmQwNmRmMjM2YjU4YTU3ZjBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuC9GSNcPepmBQegr9Nt4d09v9Qt3
UJ/K+OFPOIbINRKZyU8hbpSfVHVfqb83+OloZaiziiHo7CsmIKfCSpNDahKkLIT8
/nY1r/dYlSsm7NjuBxpK+ugyfqKxe1+ePxEHCROCPGYHGoxSMT5GDFUjQav+maJM
EjyE5SOuNc8t/MczQyLGSsU1qabqhSl5/IqUp4KrCo9+zte3horKJq8TEBslrm4z
u5T8M1kLBZSwQIrL+//GxiXnqFW9mI6XapMlJok72qYVwAPoSgaFf+2/IV82Pl2P
Zz45PqJ+jxpN3Y8FV252kNjDpttTwKyE/oovqkoF5RY5mGsCewq2PmjS9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLc2R4jhLJW1V03WvQbfI2tYpX8OMB8GA1UdIwQY
MBaAFGyUnSvWTuF+9dR/lj49XXqYKxKvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9mODY1MWItYzEyYi00MmQ0LWFmZGEt
MjMyZjQ3MDM0OTFmLzEvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9mODY1MWItYzEyYi00MmQ0LWFmZGEtMjMyZjQ3MDM0OTFm
LzEvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAw/vPSZR
kHxo/0IUgQTN7TkSQil9YAGIFQXD06S4L6ZoTqUaml94kuX4KZHLVMUayYp38osL
+7XArEl5M52YkPNVGDETONsD7xzDBEjG1VTyYTWJCQVw3ihcEsfRhIwH2rcUS36N
wz/R8sStZyEz+1boi+NRWu//wK3nYKK8eOopLZEAkjpqDWsTtSqedjIjVl+XPmTM
j35C5ClwdGa78PALlGa9hCyphi/AVIKvoou48GsOcf9/JZQanoO4z3Pr4mPECrp7
vg6XeYHuBZhnhQos8k9lctz0yFsKzKl+08k6DL6d3ZHS7j/DkspUovbeP6KCwHBU
3O8ay/s8u3xAOA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:39:32 2025 by rpki-client