Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.mft
File: bTi1QIMcnNXfSAhRpygGZ-181kc.mft (raw, json)
Hash identifier: GzjKc2ASVtGL0PxxdSre+Rn0zjzd+Evel1ZXCVINsGo=
Subject key identifier: 69:5D:6A:82:A0:CB:8A:27:B9:11:8F:E4:D4:8E:D9:8F:B0:39:E0:5A
Authority key identifier: 6D:38:B5:40:83:1C:9C:D5:DF:48:08:51:A7:28:06:67:ED:7C:D6:47
Certificate issuer: /CN=6d38b540831c9cd5df480851a7280667ed7cd647
Certificate serial: 0199228CF8AC90A9629366506A82551F4929
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bTi1QIMcnNXfSAhRpygGZ-181kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.mft
Manifest number: 0A91
Signing time: Sun 07 Sep 2025 05:01:27 +0000
Manifest this update: Sun 07 Sep 2025 05:01:27 +0000
Manifest next update: Mon 08 Sep 2025 05:01:27 +0000
Files and hashes: 1: bTi1QIMcnNXfSAhRpygGZ-181kc.crl (hash: 1fl0sws3ye2IF6qGPkBhnoKoMOojgzel8cbGWxqDjcs=)
2: okBQ3HYZQrL6ORKAHfJHyIzTOqU.roa (hash: 8hx35QaymOBGYmgY5QQuJWW8cF+INO74gqLHBnenUT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bTi1QIMcnNXfSAhRpygGZ-181kc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:f8:ac:90:a9:62:93:66:50:6a:82:55:1f:49:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d38b540831c9cd5df480851a7280667ed7cd647
Validity
Not Before: Sep 7 05:01:27 2025 GMT
Not After : Sep 8 05:01:27 2025 GMT
Subject: CN=695d6a82a0cb8a27b9118fe4d48ed98fb039e05a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:97:e0:84:9e:7d:f2:06:0a:12:71:69:c5:4a:
90:52:7c:7d:09:f0:03:2f:f7:7a:42:f7:87:95:38:
29:21:32:07:c6:72:f8:62:0d:42:0d:b7:32:f2:f0:
3d:1c:16:13:b8:7a:3f:ae:b8:13:cf:bf:8e:b7:bf:
57:f5:7f:8d:08:cd:a2:95:3e:27:da:a7:e4:29:98:
ae:27:d4:47:c3:18:03:dc:1f:78:fe:56:23:61:7d:
4d:f4:4c:fc:74:28:30:b8:f7:44:fa:32:da:7b:65:
b3:a0:bc:30:a1:0a:00:e6:3f:b9:6a:75:82:4a:e9:
0e:54:18:2d:96:e6:5d:2c:08:1f:1b:d1:2e:65:c5:
07:e7:72:db:dc:52:03:a8:f0:e7:eb:d1:62:f7:25:
a9:4d:ff:57:5e:da:1b:b6:76:e6:3d:7d:43:18:36:
28:67:66:7a:75:a3:71:40:ac:cc:63:b4:90:58:37:
7f:ff:79:b6:6a:9e:52:99:43:b6:96:0b:a6:16:f4:
2d:e2:fb:f6:f0:90:c2:16:34:4d:47:10:28:46:97:
c9:03:4c:37:c1:b6:19:05:43:a5:be:37:e1:d1:b1:
f8:ad:ef:99:33:fb:44:75:33:27:f8:d6:c6:9b:a9:
ad:fe:98:e1:16:5f:05:37:6c:65:78:13:5f:1a:17:
29:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:5D:6A:82:A0:CB:8A:27:B9:11:8F:E4:D4:8E:D9:8F:B0:39:E0:5A
X509v3 Authority Key Identifier:
keyid:6D:38:B5:40:83:1C:9C:D5:DF:48:08:51:A7:28:06:67:ED:7C:D6:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bTi1QIMcnNXfSAhRpygGZ-181kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:1d:f6:fc:19:0e:33:70:f0:27:4a:67:20:ed:6f:7a:ec:4b:
e0:54:93:ea:e1:dd:8d:b0:81:8c:15:28:89:df:14:96:93:51:
be:8c:02:1c:89:93:49:e6:f7:9e:77:c3:be:4d:1f:ec:ca:9c:
a6:60:ee:1c:1a:c8:16:70:0b:fa:b8:2a:20:75:2b:58:7f:b6:
52:3d:ac:25:2a:6c:ae:b7:c2:db:3e:d2:d1:1d:30:71:dd:ed:
58:36:32:87:41:00:33:28:09:21:4a:50:9e:8c:f4:b5:d4:39:
01:87:8d:21:78:88:a7:99:a0:89:7b:c1:71:7f:40:d7:63:e9:
a5:85:7c:0d:24:64:19:75:d4:15:5e:d0:9e:d4:0e:f4:e1:81:
2c:a4:52:48:b1:7a:75:65:66:4d:75:89:17:a8:84:7a:1f:1c:
16:f9:b9:47:25:8a:9d:46:2b:81:a3:75:25:4b:38:73:17:94:
ec:96:9a:b7:71:eb:ae:20:06:41:2b:36:21:7d:00:c9:6c:3d:
f7:bb:59:de:10:dc:5b:00:a3:3e:58:e5:2b:df:f0:d1:c1:2e:
36:31:60:2e:a1:19:51:2d:6d:f8:9a:4c:70:6b:d9:de:e0:b4:
8a:80:8c:e7:02:27:d8:c1:a9:50:7b:40:9e:92:34:80:7b:3c:
7b:03:24:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkijPiskKlik2ZQaoJVH0kpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMzhiNTQwODMxYzljZDVkZjQ4MDg1MWE3MjgwNjY3ZWQ3
Y2Q2NDcwHhcNMjUwOTA3MDUwMTI3WhcNMjUwOTA4MDUwMTI3WjAzMTEwLwYDVQQD
Eyg2OTVkNmE4MmEwY2I4YTI3YjkxMThmZTRkNDhlZDk4ZmIwMzllMDVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA75fghJ598gYKEnFpxUqQUnx9CfAD
L/d6QveHlTgpITIHxnL4Yg1CDbcy8vA9HBYTuHo/rrgTz7+Ot79X9X+NCM2ilT4n
2qfkKZiuJ9RHwxgD3B94/lYjYX1N9Ez8dCgwuPdE+jLae2WzoLwwoQoA5j+5anWC
SukOVBgtluZdLAgfG9EuZcUH53Lb3FIDqPDn69Fi9yWpTf9XXtobtnbmPX1DGDYo
Z2Z6daNxQKzMY7SQWDd//3m2ap5SmUO2lgumFvQt4vv28JDCFjRNRxAoRpfJA0w3
wbYZBUOlvjfh0bH4re+ZM/tEdTMn+NbGm6mt/pjhFl8FN2xleBNfGhcpQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGldaoKgy4onuRGP5NSO2Y+wOeBaMB8GA1UdIwQY
MBaAFG04tUCDHJzV30gIUacoBmftfNZHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlRpMVFJTWNuTlhmU0FoUnB5Z0daLTE4MWtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS9mNzMwOGEtNDEwOC00YWNjLWI2MDAt
MzYzMDU0M2I1MjFiLzEvYlRpMVFJTWNuTlhmU0FoUnB5Z0daLTE4MWtjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS9mNzMwOGEtNDEwOC00YWNjLWI2MDAtMzYzMDU0M2I1MjFi
LzEvYlRpMVFJTWNuTlhmU0FoUnB5Z0daLTE4MWtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVR32/BkO
M3DwJ0pnIO1veuxL4FST6uHdjbCBjBUoid8UlpNRvowCHImTSeb3nnfDvk0f7Mqc
pmDuHBrIFnAL+rgqIHUrWH+2Uj2sJSpsrrfC2z7S0R0wcd3tWDYyh0EAMygJIUpQ
noz0tdQ5AYeNIXiIp5mgiXvBcX9A12PppYV8DSRkGXXUFV7QntQO9OGBLKRSSLF6
dWVmTXWJF6iEeh8cFvm5RyWKnUYrgaN1JUs4cxeU7Jaat3HrriAGQSs2IX0AyWw9
97tZ3hDcWwCjPljlK9/w0cEuNjFgLqEZUS1t+JpMcGvZ3uC0ioCM5wIn2MGpUHtA
npI0gHs8ewMkHA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:45 2025 by rpki-client