Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
File: u0OX5un46iWRVggDysuzI5Ytn64.mft (raw, json)
Hash identifier: rE2G6qPArxrxh00r40YrO/JSJHZc9UQ3PyWIAMzliHA=
Subject key identifier: C7:C4:91:BF:40:7E:DE:38:68:6A:A7:DF:12:D6:26:33:6B:A4:B4:56
Authority key identifier: BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
Certificate issuer: /CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Certificate serial: 0199239FB0661258AEBCF5369F0317FF61EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
Manifest number: 10B2
Signing time: Sun 07 Sep 2025 10:01:31 +0000
Manifest this update: Sun 07 Sep 2025 10:01:31 +0000
Manifest next update: Mon 08 Sep 2025 10:01:31 +0000
Files and hashes: 1: u0OX5un46iWRVggDysuzI5Ytn64.crl (hash: y3iv/ChAxaHE15eiE+RkDkCJ4p8DuRKtUQNU+XbxbSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:b0:66:12:58:ae:bc:f5:36:9f:03:17:ff:61:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Validity
Not Before: Sep 7 10:01:31 2025 GMT
Not After : Sep 8 10:01:31 2025 GMT
Subject: CN=c7c491bf407ede38686aa7df12d626336ba4b456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:18:5c:cb:b5:84:6f:c2:99:79:d6:b3:ef:15:
05:be:98:76:e1:1f:73:ae:d2:20:68:c2:5f:07:95:
91:f6:e9:93:0b:47:a1:04:b6:75:a2:3a:39:fb:60:
7b:e9:32:da:4b:f8:74:35:71:b8:aa:5d:e2:53:2a:
c8:88:f2:f3:cd:31:af:1f:d3:c9:33:fd:3b:ef:ab:
f2:df:3d:fa:ae:a1:88:a8:04:a7:ce:53:3f:a6:bc:
f6:52:ea:99:41:c4:e7:1b:65:a0:f9:b5:3c:66:f1:
8f:f8:69:47:1a:d0:7d:e6:67:9c:43:38:9e:e1:8c:
25:55:e0:d9:29:e5:a2:aa:8e:50:5c:8d:0d:ce:70:
1b:db:40:37:5f:9c:2d:94:ac:58:f6:6f:f8:89:56:
62:d7:c2:72:53:69:af:4a:52:0f:5e:2a:2b:fd:0d:
f7:33:0b:77:11:a9:f2:63:a8:f5:fe:0d:65:11:3a:
a2:74:a1:9c:59:ce:89:1b:d6:72:17:46:e4:36:b2:
a1:bb:2b:2e:a7:45:fe:9a:19:a1:1f:29:c8:36:f2:
65:aa:00:53:e4:ee:2c:c5:a8:58:aa:f6:1c:fd:77:
c7:6f:fa:8d:8e:e0:5e:90:85:ca:8b:0e:f5:0a:60:
5f:5b:9e:0e:92:b1:df:79:12:0d:f0:68:74:49:84:
2f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:C4:91:BF:40:7E:DE:38:68:6A:A7:DF:12:D6:26:33:6B:A4:B4:56
X509v3 Authority Key Identifier:
keyid:BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:c5:02:7e:d8:05:d2:33:aa:28:87:07:00:98:6e:d3:a0:ca:
c6:c5:b9:e1:24:72:24:c8:f1:a5:88:8b:68:55:65:b2:25:7b:
e5:f3:18:1c:1e:c4:23:61:80:26:88:e3:ac:c1:e9:93:6a:62:
39:1c:63:4b:8e:23:ad:da:88:16:f9:ac:b9:03:f2:34:3f:83:
d3:15:b8:73:05:9d:17:75:c4:4c:01:8c:f4:26:2a:02:d9:49:
fb:24:77:0a:d9:6a:3d:57:58:44:2c:84:3e:8e:bd:bd:8d:8c:
7c:15:d2:09:1c:74:9c:fd:b7:e2:dd:bf:cd:07:bd:91:e8:7a:
08:f4:57:9b:c5:47:07:a7:8f:ff:df:dc:dd:93:28:4f:91:00:
c5:83:7d:85:54:20:99:ce:d8:5a:f4:84:cb:a3:38:93:9a:fc:
b3:7d:24:f9:66:f2:41:21:ae:ff:95:5d:ed:df:8b:62:fc:6b:
f9:9d:42:2a:80:c4:6e:32:1a:a1:95:b8:83:54:c9:41:68:a8:
0a:1b:6b:74:28:28:06:97:af:ad:78:ff:5d:ac:d1:91:25:62:
93:b9:ba:da:08:49:d7:d5:d1:72:ee:0a:f2:b5:04:da:1a:10:
3a:1c:ab:9f:ab:c7:34:c2:de:27:51:e9:db:5a:ab:f9:09:d0:
aa:ff:6a:9a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjn7BmEliuvPU2nwMX/2HrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiNDM5N2U2ZTlmOGVhMjU5MTU2MDgwM2NhY2JiMzIzOTYy
ZDlmYWUwHhcNMjUwOTA3MTAwMTMxWhcNMjUwOTA4MTAwMTMxWjAzMTEwLwYDVQQD
EyhjN2M0OTFiZjQwN2VkZTM4Njg2YWE3ZGYxMmQ2MjYzMzZiYTRiNDU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRhcy7WEb8KZedaz7xUFvph24R9z
rtIgaMJfB5WR9umTC0ehBLZ1ojo5+2B76TLaS/h0NXG4ql3iUyrIiPLzzTGvH9PJ
M/0776vy3z36rqGIqASnzlM/prz2UuqZQcTnG2Wg+bU8ZvGP+GlHGtB95mecQzie
4YwlVeDZKeWiqo5QXI0NznAb20A3X5wtlKxY9m/4iVZi18JyU2mvSlIPXior/Q33
Mwt3EanyY6j1/g1lETqidKGcWc6JG9ZyF0bkNrKhuysup0X+mhmhHynINvJlqgBT
5O4sxahYqvYc/XfHb/qNjuBekIXKiw71CmBfW54OkrHfeRIN8Gh0SYQvkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMfEkb9Aft44aGqn3xLWJjNrpLRWMB8GA1UdIwQY
MBaAFLtDl+bp+OolkVYIA8rLsyOWLZ+uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdTBPWDV1bjQ2aVdSVmdnRHlzdXpJNVl0bjY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9iYzVlMmYtYTRhYi00YmRjLTlhMDct
NmZiMTBlZWFmNjI3LzEvdTBPWDV1bjQ2aVdSVmdnRHlzdXpJNVl0bjY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC9iYzVlMmYtYTRhYi00YmRjLTlhMDctNmZiMTBlZWFmNjI3
LzEvdTBPWDV1bjQ2aVdSVmdnRHlzdXpJNVl0bjY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAx8UCftgF
0jOqKIcHAJhu06DKxsW54SRyJMjxpYiLaFVlsiV75fMYHB7EI2GAJojjrMHpk2pi
ORxjS44jrdqIFvmsuQPyND+D0xW4cwWdF3XETAGM9CYqAtlJ+yR3CtlqPVdYRCyE
Po69vY2MfBXSCRx0nP234t2/zQe9keh6CPRXm8VHB6eP/9/c3ZMoT5EAxYN9hVQg
mc7YWvSEy6M4k5r8s30k+WbyQSGu/5Vd7d+LYvxr+Z1CKoDEbjIaoZW4g1TJQWio
ChtrdCgoBpevrXj/XazRkSVik7m62ghJ19XRcu4K8rUE2hoQOhyrn6vHNMLeJ1Hp
21qr+QnQqv9qmg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:33 2025 by rpki-client