Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft
File: b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft (raw, json)
Hash identifier: SOpsqNa4gR6fMwQfqbJZ++6IE+VbkgjWVLaHboQyBU0=
Subject key identifier: A4:6E:43:92:1E:29:76:B3:53:1D:8A:9E:62:4E:0E:05:63:02:CC:40
Authority key identifier: 6F:A4:8E:96:19:74:26:E4:C5:EE:B4:23:E0:FD:9C:2E:95:2C:41:77
Certificate issuer: /CN=6fa48e96197426e4c5eeb423e0fd9c2e952c4177
Certificate serial: 019922FA5F4FC25EB1E6087F43B154D98D0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft
Manifest number: 15B5
Signing time: Sun 07 Sep 2025 07:00:57 +0000
Manifest this update: Sun 07 Sep 2025 07:00:57 +0000
Manifest next update: Mon 08 Sep 2025 07:00:57 +0000
Files and hashes: 1: 9eMR4FNJDVauWkWIUPQVpbQ5CXg.roa (hash: u33y8H6nVy03TdakAVCKdnmWlusbHupRimP8Gevy98g=)
2: b6SOlhl0JuTF7rQj4P2cLpUsQXc.crl (hash: pYm5+oavM74dCc5ttK4bbtpfl7pwhRwPM2JcmzLzK5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:5f:4f:c2:5e:b1:e6:08:7f:43:b1:54:d9:8d:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fa48e96197426e4c5eeb423e0fd9c2e952c4177
Validity
Not Before: Sep 7 07:00:57 2025 GMT
Not After : Sep 8 07:00:57 2025 GMT
Subject: CN=a46e43921e2976b3531d8a9e624e0e056302cc40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bf:e2:fd:65:30:eb:05:e9:d1:ee:75:e9:bf:
ae:7b:5f:7e:27:9c:5c:70:02:80:50:85:81:e9:0a:
7c:c7:94:af:20:5d:e1:b4:e6:ea:1d:80:6c:3f:af:
eb:89:55:60:c5:1c:bb:4f:90:29:58:3c:cb:b4:4c:
0c:ed:3d:39:e4:36:76:8b:3e:26:2a:37:f3:68:ea:
14:3d:27:b0:a8:a2:9b:99:fe:55:6d:4c:43:1c:b1:
9f:a0:ab:86:7c:5d:cf:0c:91:ae:be:80:c7:7e:fa:
c0:f8:37:26:ef:f9:50:5c:d3:5f:08:f4:1c:47:d9:
75:d5:29:32:d0:22:59:fa:6d:e1:6f:3c:71:75:64:
68:d2:7d:04:a9:8f:74:d3:9b:19:60:0e:b1:43:7b:
1c:b3:db:a5:1b:fc:ca:61:4a:02:ec:d5:18:22:f2:
a7:89:76:86:b3:19:9d:db:4d:a1:4d:8d:24:d3:74:
34:71:b9:07:fd:55:97:9e:32:2c:4b:71:0e:58:2e:
8e:40:39:b5:11:8d:50:de:74:c6:0f:d1:2c:12:d1:
54:04:26:94:d0:6e:2f:f8:60:44:2b:d7:0b:bd:96:
62:f9:ec:7e:de:d4:16:a5:b5:b3:09:ab:39:3d:10:
a7:81:ed:7b:0e:0a:4a:5f:f1:6a:20:a7:a8:85:b5:
b3:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:6E:43:92:1E:29:76:B3:53:1D:8A:9E:62:4E:0E:05:63:02:CC:40
X509v3 Authority Key Identifier:
keyid:6F:A4:8E:96:19:74:26:E4:C5:EE:B4:23:E0:FD:9C:2E:95:2C:41:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:5b:47:68:2c:05:79:e0:9f:6c:45:31:0c:b2:4d:89:9a:c0:
b3:26:11:2b:00:70:8d:90:21:90:46:91:ce:d3:74:1d:3d:3f:
bb:9f:89:e9:2c:b0:ac:f5:2d:17:fc:16:26:97:60:d8:a4:bf:
ba:ae:bf:15:a0:46:39:e3:95:8c:d1:e0:b4:bc:54:3a:b6:e9:
6b:17:19:c9:ed:f3:3b:e6:2f:2a:6f:14:06:0f:6f:b9:6d:ff:
9d:29:08:ab:81:7e:4a:67:86:30:a2:83:59:e6:1f:e9:bd:08:
55:cb:19:18:c1:5a:8c:28:c5:f9:d1:08:79:0b:63:49:d2:1c:
49:37:36:3a:e2:a2:49:1f:95:a1:75:24:b4:d3:2e:c7:f4:fb:
bf:47:e5:9c:86:7f:f7:a7:d9:30:44:06:32:33:61:0c:8b:84:
60:64:49:f0:6e:82:00:b0:d0:25:2d:fa:82:8f:51:13:24:ef:
15:5e:32:43:95:c2:56:3f:c8:99:9b:af:a7:18:24:6b:5d:76:
96:b6:c4:52:ce:5c:f5:06:d4:db:c0:42:fe:4a:fa:af:d7:a6:
08:7a:10:dc:40:fe:90:8d:60:19:67:28:16:48:95:f6:2a:46:
e2:21:ef:62:29:fb:3c:bd:17:ac:ff:02:a4:4d:86:90:c7:8f:
d4:9d:a2:c8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+l9Pwl6x5gh/Q7FU2Y0OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmYTQ4ZTk2MTk3NDI2ZTRjNWVlYjQyM2UwZmQ5YzJlOTUy
YzQxNzcwHhcNMjUwOTA3MDcwMDU3WhcNMjUwOTA4MDcwMDU3WjAzMTEwLwYDVQQD
EyhhNDZlNDM5MjFlMjk3NmIzNTMxZDhhOWU2MjRlMGUwNTYzMDJjYzQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyb/i/WUw6wXp0e516b+ue19+J5xc
cAKAUIWB6Qp8x5SvIF3htObqHYBsP6/riVVgxRy7T5ApWDzLtEwM7T055DZ2iz4m
KjfzaOoUPSewqKKbmf5VbUxDHLGfoKuGfF3PDJGuvoDHfvrA+Dcm7/lQXNNfCPQc
R9l11Sky0CJZ+m3hbzxxdWRo0n0EqY9005sZYA6xQ3scs9ulG/zKYUoC7NUYIvKn
iXaGsxmd202hTY0k03Q0cbkH/VWXnjIsS3EOWC6OQDm1EY1Q3nTGD9EsEtFUBCaU
0G4v+GBEK9cLvZZi+ex+3tQWpbWzCas5PRCnge17DgpKX/FqIKeohbWzfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKRuQ5IeKXazUx2KnmJODgVjAsxAMB8GA1UdIwQY
MBaAFG+kjpYZdCbkxe60I+D9nC6VLEF3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjZTT2xobDBKdVRGN3JRajRQMmNMcFVzUVhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC84YzViYzctNTVmYS00MDQ0LTg4ZGEt
NjgxODVmZGI5MDAzLzEvYjZTT2xobDBKdVRGN3JRajRQMmNMcFVzUVhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC84YzViYzctNTVmYS00MDQ0LTg4ZGEtNjgxODVmZGI5MDAz
LzEvYjZTT2xobDBKdVRGN3JRajRQMmNMcFVzUVhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN1tHaCwF
eeCfbEUxDLJNiZrAsyYRKwBwjZAhkEaRztN0HT0/u5+J6SywrPUtF/wWJpdg2KS/
uq6/FaBGOeOVjNHgtLxUOrbpaxcZye3zO+YvKm8UBg9vuW3/nSkIq4F+SmeGMKKD
WeYf6b0IVcsZGMFajCjF+dEIeQtjSdIcSTc2OuKiSR+VoXUktNMux/T7v0flnIZ/
96fZMEQGMjNhDIuEYGRJ8G6CALDQJS36go9REyTvFV4yQ5XCVj/ImZuvpxgka112
lrbEUs5c9QbU28BC/kr6r9emCHoQ3ED+kI1gGWcoFkiV9ipG4iHvYin7PL0XrP8C
pE2GkMeP1J2iyA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:22:54 2025 by rpki-client