Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
File: bws2ahNvj8xd9SPI1G95B5HBs7s.mft (raw, json)
Hash identifier: SLeqbT779wZZCUccpUsA9pvmRe9e0qnQQ/+fFG5lPsM=
Subject key identifier: 68:E5:B7:6B:A8:ED:B7:FF:BB:04:8B:6B:E0:81:5D:92:18:7F:A2:16
Authority key identifier: 6F:0B:36:6A:13:6F:8F:CC:5D:F5:23:C8:D4:6F:79:07:91:C1:B3:BB
Certificate issuer: /CN=6f0b366a136f8fcc5df523c8d46f790791c1b3bb
Certificate serial: 019A2D4410681AF1ED85EE3CD091C5422E05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
Manifest number: 0F6F
Signing time: Wed 29 Oct 2025 00:00:26 +0000
Manifest this update: Wed 29 Oct 2025 00:00:26 +0000
Manifest next update: Thu 30 Oct 2025 00:00:26 +0000
Files and hashes: 1: 6DyFjxNuZaydS9bKmS0-lDimCWA.roa (hash: w+hli8OO0LCrT1s2As2YzA6/he3KpN8v/KtHkMIY6+4=)
2: bws2ahNvj8xd9SPI1G95B5HBs7s.crl (hash: pWM8iZfaMjVIoAMIKtT0qHyCbLaIQwOYQ0oT29IXWPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2d:44:10:68:1a:f1:ed:85:ee:3c:d0:91:c5:42:2e:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f0b366a136f8fcc5df523c8d46f790791c1b3bb
Validity
Not Before: Oct 29 00:00:26 2025 GMT
Not After : Oct 30 00:00:26 2025 GMT
Subject: CN=68e5b76ba8edb7ffbb048b6be0815d92187fa216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5e:01:38:7d:d9:8f:87:fd:e5:2f:8d:14:e6:
56:26:d3:0a:28:7a:6d:bd:a6:9f:8f:a9:5e:ef:13:
03:07:a3:a3:9d:d6:b0:51:da:e5:a1:92:42:37:46:
b3:55:a2:af:6a:d9:93:67:c2:cf:81:14:7c:f7:89:
8b:b1:ee:cd:e7:a6:7f:00:92:53:21:e2:1f:b9:1e:
e1:37:13:24:cb:ce:0d:b8:bd:5e:d6:cd:b6:9c:03:
86:dc:24:07:0b:71:de:14:cb:58:cd:b1:b7:4e:6a:
56:ef:df:59:9e:6e:b8:30:52:39:a3:b2:dc:cf:31:
98:fe:6c:90:bf:6b:53:12:d8:ab:f7:ca:a2:e7:89:
7e:a9:d8:81:c9:86:27:f1:3b:3e:44:ce:4d:00:f2:
dd:e4:f4:26:5f:73:62:7a:07:92:05:47:03:79:53:
49:d8:d6:ff:33:58:1b:60:3c:be:2b:a8:6a:47:2d:
86:98:cf:7c:b3:c2:7d:bc:f4:0d:4f:34:cc:0a:12:
19:d4:42:57:be:34:b1:30:5d:b7:f7:5b:80:de:87:
b4:da:fa:de:2b:9a:b6:af:d7:57:6b:9e:12:77:9c:
c0:6f:75:18:ae:fb:b5:00:d2:99:8d:9f:fb:7e:64:
32:ab:31:7a:5d:c4:39:f1:2b:d0:6c:84:31:59:95:
9b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E5:B7:6B:A8:ED:B7:FF:BB:04:8B:6B:E0:81:5D:92:18:7F:A2:16
X509v3 Authority Key Identifier:
keyid:6F:0B:36:6A:13:6F:8F:CC:5D:F5:23:C8:D4:6F:79:07:91:C1:B3:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:35:cb:3a:87:ad:8b:fc:fa:08:ad:9c:73:24:3d:6d:58:fb:
5c:11:b7:b3:b0:66:5a:52:6a:84:95:9f:ee:63:f1:6b:7d:9a:
d2:5f:a7:eb:86:99:66:03:64:6a:00:47:2e:9e:60:d0:e9:56:
4b:bb:23:9d:11:05:11:6c:5b:d3:94:87:82:08:5c:f9:ad:b1:
dd:0d:65:f6:ce:23:33:fd:24:e0:62:35:bd:8f:d8:cf:b9:06:
df:f5:14:27:52:ea:74:2a:99:2f:fc:6d:a1:70:fc:ff:34:67:
a5:be:c6:26:c6:72:ba:10:9c:17:12:76:f0:b0:74:33:a5:51:
74:62:6d:00:1e:87:9a:f6:29:a5:a1:f7:ec:9a:90:d3:7f:da:
ad:14:97:be:63:81:e4:d6:db:9d:50:33:12:7b:c9:58:0e:4d:
e7:0c:d1:2b:86:70:cb:e1:d9:87:64:80:74:2e:49:be:fe:8a:
51:ca:ae:a9:6d:44:c0:db:8b:49:33:c3:03:15:84:52:c3:78:
d4:6f:10:d8:ba:d3:67:ee:a4:5b:b8:05:31:20:a2:c5:06:6d:
ef:77:1d:d8:bc:9d:7d:06:e0:23:83:78:45:2c:cb:c3:5d:04:
ed:90:74:ac:57:20:40:bd:28:19:7d:57:a1:74:ff:26:fb:53:
2d:0a:02:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZotRBBoGvHthe480JHFQi4FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMGIzNjZhMTM2ZjhmY2M1ZGY1MjNjOGQ0NmY3OTA3OTFj
MWIzYmIwHhcNMjUxMDI5MDAwMDI2WhcNMjUxMDMwMDAwMDI2WjAzMTEwLwYDVQQD
Eyg2OGU1Yjc2YmE4ZWRiN2ZmYmIwNDhiNmJlMDgxNWQ5MjE4N2ZhMjE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp14BOH3Zj4f95S+NFOZWJtMKKHpt
vaafj6le7xMDB6OjndawUdrloZJCN0azVaKvatmTZ8LPgRR894mLse7N56Z/AJJT
IeIfuR7hNxMky84NuL1e1s22nAOG3CQHC3HeFMtYzbG3TmpW799Znm64MFI5o7Lc
zzGY/myQv2tTEtir98qi54l+qdiByYYn8Ts+RM5NAPLd5PQmX3NiegeSBUcDeVNJ
2Nb/M1gbYDy+K6hqRy2GmM98s8J9vPQNTzTMChIZ1EJXvjSxMF2391uA3oe02vre
K5q2r9dXa54Sd5zAb3UYrvu1ANKZjZ/7fmQyqzF6XcQ58SvQbIQxWZWbsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGjlt2uo7bf/uwSLa+CBXZIYf6IWMB8GA1UdIwQY
MBaAFG8LNmoTb4/MXfUjyNRveQeRwbO7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYndzMmFoTnZqOHhkOVNQSTFHOTVCNUhCczdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kMjNkZGUtZTI0Zi00MjU4LWE3Y2Ut
ZWVmNmMyZjQ1MTc2LzEvYndzMmFoTnZqOHhkOVNQSTFHOTVCNUhCczdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9kMjNkZGUtZTI0Zi00MjU4LWE3Y2UtZWVmNmMyZjQ1MTc2
LzEvYndzMmFoTnZqOHhkOVNQSTFHOTVCNUhCczdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYTXLOoet
i/z6CK2ccyQ9bVj7XBG3s7BmWlJqhJWf7mPxa32a0l+n64aZZgNkagBHLp5g0OlW
S7sjnREFEWxb05SHgghc+a2x3Q1l9s4jM/0k4GI1vY/Yz7kG3/UUJ1LqdCqZL/xt
oXD8/zRnpb7GJsZyuhCcFxJ28LB0M6VRdGJtAB6HmvYppaH37JqQ03/arRSXvmOB
5NbbnVAzEnvJWA5N5wzRK4Zwy+HZh2SAdC5Jvv6KUcquqW1EwNuLSTPDAxWEUsN4
1G8Q2LrTZ+6kW7gFMSCixQZt73cd2LydfQbgI4N4RSzLw10E7ZB0rFcgQL0oGX1X
oXT/JvtTLQoCHA==
-----END CERTIFICATE-----
Generated at Wed Oct 29 09:10:50 2025 by rpki-client