Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
File: BmVsWtlzg3LVTAN-OX81vpqpJNs.mft (raw, json)
Hash identifier: 7/UcH5NX+HF+kOGEkuwF+GG8VXEz8A0ghWIWkny8Dow=
Subject key identifier: 13:50:23:A7:FE:37:4D:9B:52:E3:2B:97:B7:3B:C5:8C:0E:25:C2:D5
Authority key identifier: 06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
Certificate issuer: /CN=06656c5ad9738372d54c037e397f35be9aa924db
Certificate serial: 019A24AEB875BB536AF389DC193A0EFF50BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
Manifest number: 02C5
Signing time: Mon 27 Oct 2025 08:00:21 +0000
Manifest this update: Mon 27 Oct 2025 08:00:21 +0000
Manifest next update: Tue 28 Oct 2025 08:00:21 +0000
Files and hashes: 1: BOJlFcCNxlleMHUbR9TjmHCDeZc.roa (hash: ujITDNQNM0fpryFmlYjLZ0Q/wbil/+me/IAh88EFBg8=)
2: BmVsWtlzg3LVTAN-OX81vpqpJNs.crl (hash: L8ZG1ohk7u64F9rRbl5xC6r69VJ8rh0K4d1CEX0i77w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 07:27:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:ae:b8:75:bb:53:6a:f3:89:dc:19:3a:0e:ff:50:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06656c5ad9738372d54c037e397f35be9aa924db
Validity
Not Before: Oct 27 08:00:21 2025 GMT
Not After : Oct 28 08:00:21 2025 GMT
Subject: CN=135023a7fe374d9b52e32b97b73bc58c0e25c2d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:26:e8:0f:e3:5f:da:57:6c:4e:ab:61:c7:33:
a2:ae:c9:dd:ef:dc:ca:2d:c4:8d:76:76:a1:eb:ff:
1c:bc:48:79:4c:94:e3:01:c5:dd:31:53:e3:91:e1:
fa:c3:f3:6c:e5:7f:eb:33:04:bd:dc:58:ba:68:1e:
4c:fd:97:7f:2c:b1:ab:6b:c6:2d:f8:d9:1d:87:0c:
9e:a1:a4:30:f6:57:95:e2:83:63:84:49:79:a3:25:
e8:ff:af:91:8a:7d:58:ad:b3:2c:4f:ff:ce:bf:2a:
73:b2:46:48:3a:06:c7:06:89:f2:92:45:47:2a:eb:
03:32:4b:a0:7c:f4:8e:bb:13:61:91:83:61:e0:76:
51:3a:09:66:8d:19:bc:9a:42:e0:bd:e7:3a:b1:b6:
a1:8a:4e:4f:7f:c1:d9:6a:8b:83:86:50:61:a9:fc:
ef:f2:b9:18:e6:df:8d:a2:71:c4:11:ec:e8:d2:bf:
58:2f:86:f6:0d:8a:77:76:f5:72:43:35:7b:02:b1:
a5:1e:bc:68:a4:f9:8e:60:a4:0e:51:69:70:96:bb:
a1:1e:a2:d5:9e:32:ab:c5:5c:dd:31:38:84:09:b6:
07:71:1b:66:64:56:a2:48:64:af:8c:22:76:d7:57:
79:ac:4c:e7:53:4a:13:fc:5c:c9:0d:3b:7c:3f:4a:
ec:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:50:23:A7:FE:37:4D:9B:52:E3:2B:97:B7:3B:C5:8C:0E:25:C2:D5
X509v3 Authority Key Identifier:
keyid:06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:f5:56:5d:12:69:c0:9a:ac:c2:41:d9:44:99:33:76:71:10:
12:a7:da:7f:19:2f:00:92:06:28:48:67:6f:3f:69:37:b5:00:
cb:dc:f2:ce:ed:1b:37:9a:91:b9:4d:29:6d:bf:a2:d5:f9:34:
30:e7:86:9a:41:6d:b2:c9:76:2c:d9:9b:2a:ac:15:2a:e3:24:
f1:18:50:1f:38:17:cc:5a:1e:2c:a6:46:ac:9f:61:ac:53:ce:
f1:1e:95:4d:e9:57:50:e0:1c:0e:3d:aa:6b:7a:69:39:1b:48:
84:23:e4:94:92:97:0d:ba:5a:04:67:7a:9f:bf:75:5b:2f:4d:
db:2b:3f:88:af:d7:7d:12:10:91:40:c6:77:6e:af:b1:35:ad:
d6:18:8d:dd:e5:3c:3b:8e:83:f0:3a:ee:e1:b2:b7:9e:aa:32:
75:50:99:c0:f7:d5:47:df:ab:c1:e4:81:ae:c2:71:6f:39:e1:
f5:dc:61:64:66:30:c0:c4:f3:29:9c:0d:35:7d:fd:22:bf:5b:
ba:f6:d5:d6:1e:4c:97:13:41:5d:14:b7:30:9e:0d:2d:70:f1:
0a:7c:75:38:4e:d3:ab:56:0e:68:a9:7d:8f:41:52:a1:fd:6d:
44:b7:dc:a5:c8:d8:a0:81:d5:ee:38:12:bc:77:46:ca:d9:46:
23:b7:07:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZokrrh1u1Nq84ncGToO/1C7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NjU2YzVhZDk3MzgzNzJkNTRjMDM3ZTM5N2YzNWJlOWFh
OTI0ZGIwHhcNMjUxMDI3MDgwMDIxWhcNMjUxMDI4MDgwMDIxWjAzMTEwLwYDVQQD
EygxMzUwMjNhN2ZlMzc0ZDliNTJlMzJiOTdiNzNiYzU4YzBlMjVjMmQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0iboD+Nf2ldsTqthxzOirsnd79zK
LcSNdnah6/8cvEh5TJTjAcXdMVPjkeH6w/Ns5X/rMwS93Fi6aB5M/Zd/LLGra8Yt
+NkdhwyeoaQw9leV4oNjhEl5oyXo/6+Rin1YrbMsT//OvypzskZIOgbHBonykkVH
KusDMkugfPSOuxNhkYNh4HZROglmjRm8mkLgvec6sbahik5Pf8HZaouDhlBhqfzv
8rkY5t+NonHEEezo0r9YL4b2DYp3dvVyQzV7ArGlHrxopPmOYKQOUWlwlruhHqLV
njKrxVzdMTiECbYHcRtmZFaiSGSvjCJ211d5rEznU0oT/FzJDTt8P0rsowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBNQI6f+N02bUuMrl7c7xYwOJcLVMB8GA1UdIwQY
MBaAFAZlbFrZc4Ny1UwDfjl/Nb6aqSTbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8zYjlkMjctN2JhNC00MDllLTg4OGMt
OGIwNzYyNTZmMzlkLzEvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS8zYjlkMjctN2JhNC00MDllLTg4OGMtOGIwNzYyNTZmMzlk
LzEvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH/VWXRJp
wJqswkHZRJkzdnEQEqfafxkvAJIGKEhnbz9pN7UAy9zyzu0bN5qRuU0pbb+i1fk0
MOeGmkFtssl2LNmbKqwVKuMk8RhQHzgXzFoeLKZGrJ9hrFPO8R6VTelXUOAcDj2q
a3ppORtIhCPklJKXDbpaBGd6n791Wy9N2ys/iK/XfRIQkUDGd26vsTWt1hiN3eU8
O46D8Dru4bK3nqoydVCZwPfVR9+rweSBrsJxbznh9dxhZGYwwMTzKZwNNX39Ir9b
uvbV1h5MlxNBXRS3MJ4NLXDxCnx1OE7Tq1YOaKl9j0FSof1tRLfcpcjYoIHV7jgS
vHdGytlGI7cHdw==
-----END CERTIFICATE-----
Generated at Mon Oct 27 09:39:28 2025 by rpki-client