Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
File: bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft (raw, json)
Hash identifier: uCK6N1cc07R8sZsigKj/rN+q0MOKvGMRcYOq/ji1rBw=
Subject key identifier: 33:86:17:8F:F4:5C:6A:1E:FB:72:97:FD:B4:AC:63:8D:04:18:0C:16
Authority key identifier: 6E:44:28:F7:F1:7B:19:C1:50:68:CA:B9:39:D3:77:94:0E:8D:4C:70
Certificate issuer: /CN=6e4428f7f17b19c15068cab939d377940e8d4c70
Certificate serial: 0199228D2557F61341EBA8DB192A4C084ACE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
Manifest number: 0422
Signing time: Sun 07 Sep 2025 05:01:39 +0000
Manifest this update: Sun 07 Sep 2025 05:01:39 +0000
Manifest next update: Mon 08 Sep 2025 05:01:39 +0000
Files and hashes: 1: bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl (hash: BeCMCrxoPLtYn/TmrqQe4pYxqKckK+y74jIePZ+pQA8=)
2: r5LfqFNzBSvkVNYj6vVDPex2eII.roa (hash: zD3Y+yhvhdTCP2LNWWBpR2SBF00RvRC4BFmgCTYqEsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:25:57:f6:13:41:eb:a8:db:19:2a:4c:08:4a:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e4428f7f17b19c15068cab939d377940e8d4c70
Validity
Not Before: Sep 7 05:01:39 2025 GMT
Not After : Sep 8 05:01:39 2025 GMT
Subject: CN=3386178ff45c6a1efb7297fdb4ac638d04180c16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f5:d4:84:51:96:c5:8a:68:bc:32:a4:13:f4:
3b:95:5f:15:33:4e:60:a0:14:fc:a8:d5:f1:85:f4:
6c:0d:48:87:db:0f:84:c1:8c:d0:3c:73:57:47:c3:
0e:ca:7e:c7:6e:dc:e1:25:55:0d:87:43:31:c5:3b:
a9:38:84:d1:39:4f:d3:8e:82:a0:87:14:e2:f0:82:
f6:7d:21:72:aa:45:17:9a:3d:99:1d:68:54:df:7f:
b0:52:be:62:93:ae:80:29:c8:c1:34:de:2c:5a:f6:
f8:8e:f0:56:c7:38:0e:29:02:45:57:7c:8f:12:72:
7b:1f:d8:7b:90:3d:90:10:93:14:e3:55:f5:25:78:
b4:34:b6:5c:08:d2:49:80:96:7f:e8:1e:ae:33:3c:
2e:9c:8b:45:94:89:c3:06:16:8d:50:1d:92:97:a9:
24:d3:d7:21:65:d7:42:04:4c:d5:40:ea:3f:d1:1f:
6c:fd:85:c5:a2:d4:b3:cc:18:d9:4c:ef:b0:75:46:
55:9b:11:55:74:8a:8a:38:ac:d9:b4:ce:24:c1:33:
46:04:53:02:05:bc:93:93:cd:17:85:a2:ac:62:67:
12:58:b5:b0:c2:9c:3a:70:c7:99:48:c0:94:b0:08:
1c:08:4a:6f:9f:b4:ab:de:d5:3b:1c:84:64:0c:56:
a3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:86:17:8F:F4:5C:6A:1E:FB:72:97:FD:B4:AC:63:8D:04:18:0C:16
X509v3 Authority Key Identifier:
keyid:6E:44:28:F7:F1:7B:19:C1:50:68:CA:B9:39:D3:77:94:0E:8D:4C:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:6e:fe:c5:e1:11:fa:aa:18:81:aa:c4:b1:07:5d:cc:f5:bb:
8e:55:c5:f6:d2:a9:90:12:49:08:17:0b:12:c8:21:26:be:e8:
eb:09:9c:4a:26:52:67:2c:6d:39:3d:76:16:79:f5:32:3d:7f:
c5:45:e3:8f:c1:d0:59:70:92:a7:ff:30:15:76:40:21:7a:05:
e8:76:b6:f5:d4:62:8c:a3:f5:52:8b:b1:e8:fb:e5:85:ad:25:
f5:4c:c2:0c:09:84:2d:b0:5b:6d:25:4d:a4:17:9a:6a:f6:8a:
19:38:b5:73:a8:a1:4a:07:4e:1d:71:c7:eb:45:23:33:69:05:
d5:64:5d:9d:12:c3:8e:ef:b8:64:1c:f4:5b:e3:22:f7:6c:74:
2f:0f:bd:26:a3:5a:43:4a:3a:43:62:f4:a5:d4:c3:e3:37:de:
3f:96:f1:64:2d:29:78:36:ca:03:ea:08:79:5d:c4:24:cc:e3:
55:04:78:a3:f5:fa:62:02:07:f3:14:13:96:20:e4:7b:ae:e1:
ef:1f:33:26:68:0a:95:bd:ee:65:ab:4f:6b:06:e1:80:f5:48:
06:f5:f4:0d:ff:e1:0e:de:e2:13:b5:4d:1e:0b:a0:87:68:8b:
c6:5f:93:84:71:94:0a:af:fe:83:25:6f:d8:eb:f1:d6:44:87:
e5:d9:df:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkijSVX9hNB66jbGSpMCErOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlNDQyOGY3ZjE3YjE5YzE1MDY4Y2FiOTM5ZDM3Nzk0MGU4
ZDRjNzAwHhcNMjUwOTA3MDUwMTM5WhcNMjUwOTA4MDUwMTM5WjAzMTEwLwYDVQQD
EygzMzg2MTc4ZmY0NWM2YTFlZmI3Mjk3ZmRiNGFjNjM4ZDA0MTgwYzE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPXUhFGWxYpovDKkE/Q7lV8VM05g
oBT8qNXxhfRsDUiH2w+EwYzQPHNXR8MOyn7HbtzhJVUNh0MxxTupOITROU/TjoKg
hxTi8IL2fSFyqkUXmj2ZHWhU33+wUr5ik66AKcjBNN4sWvb4jvBWxzgOKQJFV3yP
EnJ7H9h7kD2QEJMU41X1JXi0NLZcCNJJgJZ/6B6uMzwunItFlInDBhaNUB2Sl6kk
09chZddCBEzVQOo/0R9s/YXFotSzzBjZTO+wdUZVmxFVdIqKOKzZtM4kwTNGBFMC
BbyTk80XhaKsYmcSWLWwwpw6cMeZSMCUsAgcCEpvn7Sr3tU7HIRkDFaj4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDOGF4/0XGoe+3KX/bSsY40EGAwWMB8GA1UdIwQY
MBaAFG5EKPfxexnBUGjKuTnTd5QOjUxwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmtRbzlfRjdHY0ZRYU1xNU9kTjNsQTZOVEhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS82Y2Y1ZjQtM2Q2MC00MWQ3LWFlMWEt
Y2JjMzMxYmZjZGIyLzEvYmtRbzlfRjdHY0ZRYU1xNU9kTjNsQTZOVEhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS82Y2Y1ZjQtM2Q2MC00MWQ3LWFlMWEtY2JjMzMxYmZjZGIy
LzEvYmtRbzlfRjdHY0ZRYU1xNU9kTjNsQTZOVEhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHW7+xeER
+qoYgarEsQddzPW7jlXF9tKpkBJJCBcLEsghJr7o6wmcSiZSZyxtOT12Fnn1Mj1/
xUXjj8HQWXCSp/8wFXZAIXoF6Ha29dRijKP1Uoux6Pvlha0l9UzCDAmELbBbbSVN
pBeaavaKGTi1c6ihSgdOHXHH60UjM2kF1WRdnRLDju+4ZBz0W+Mi92x0Lw+9JqNa
Q0o6Q2L0pdTD4zfeP5bxZC0peDbKA+oIeV3EJMzjVQR4o/X6YgIH8xQTliDke67h
7x8zJmgKlb3uZatPawbhgPVIBvX0Df/hDt7iE7VNHgugh2iLxl+ThHGUCq/+gyVv
2Ovx1kSH5dnf6A==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:04:33 2025 by rpki-client