Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.mft
File: bxfKsp3wkGVUwRzpqynGDR56Z1w.mft (raw, json)
Hash identifier: NT+srKYXm1bfTGTewghReiZOiuQNsI/xeQA0GBxrUNc=
Subject key identifier: 7A:94:70:28:75:A3:A0:E7:92:49:85:87:3A:77:83:E2:9F:3C:4B:38
Authority key identifier: 6F:17:CA:B2:9D:F0:90:65:54:C1:1C:E9:AB:29:C6:0D:1E:7A:67:5C
Certificate issuer: /CN=6f17cab29df0906554c11ce9ab29c60d1e7a675c
Certificate serial: 01992255723368908A1D0E3280811FC3F80E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxfKsp3wkGVUwRzpqynGDR56Z1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.mft
Manifest number: 0548
Signing time: Sun 07 Sep 2025 04:00:49 +0000
Manifest this update: Sun 07 Sep 2025 04:00:49 +0000
Manifest next update: Mon 08 Sep 2025 04:00:49 +0000
Files and hashes: 1: bxfKsp3wkGVUwRzpqynGDR56Z1w.crl (hash: DLkg6OI8gW4V82dcuVP5QcBcFevIsSGmfNlF7eIEaE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/bxfKsp3wkGVUwRzpqynGDR56Z1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:72:33:68:90:8a:1d:0e:32:80:81:1f:c3:f8:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f17cab29df0906554c11ce9ab29c60d1e7a675c
Validity
Not Before: Sep 7 04:00:49 2025 GMT
Not After : Sep 8 04:00:49 2025 GMT
Subject: CN=7a94702875a3a0e7924985873a7783e29f3c4b38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:66:78:29:94:cd:d6:38:86:bf:77:04:a8:82:
f7:69:f5:b7:5f:ed:2d:4f:ea:0e:b0:6a:79:6d:3f:
19:dd:54:63:8f:1e:af:d8:a5:69:1a:d7:bb:37:3a:
f7:4f:8c:f5:cd:43:83:ec:1a:6d:2c:b8:d8:0f:34:
26:f2:35:95:a8:3b:bc:87:4a:13:30:b6:eb:f0:39:
eb:a2:0c:bd:29:72:23:7e:cd:78:95:f8:0c:83:e5:
2b:36:ac:45:e4:d5:9d:5d:13:1c:c3:04:8b:8b:6a:
e7:df:d9:ed:9d:13:ff:7b:0c:36:09:95:cd:92:0d:
17:9d:de:cb:58:85:eb:e3:52:f5:97:bc:87:e6:59:
a6:84:ba:dd:11:3b:2d:82:f7:c7:e8:6b:d6:3d:af:
cf:0f:96:54:b9:b4:ee:23:d3:d3:12:e1:0c:03:71:
e0:5e:ad:72:62:fb:34:f8:32:42:17:c0:2e:9f:64:
62:b3:fb:ce:3b:f8:ff:de:14:82:58:87:11:19:26:
e6:26:e8:33:fc:28:bc:78:e1:2f:04:81:46:a3:8d:
15:9a:6d:61:74:ac:5d:44:a6:be:cc:9f:7b:69:73:
cb:70:38:17:84:1e:16:89:58:63:9c:fc:e1:0a:79:
81:ce:6c:27:15:35:f6:9b:93:ae:f6:5e:5a:02:41:
72:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:94:70:28:75:A3:A0:E7:92:49:85:87:3A:77:83:E2:9F:3C:4B:38
X509v3 Authority Key Identifier:
keyid:6F:17:CA:B2:9D:F0:90:65:54:C1:1C:E9:AB:29:C6:0D:1E:7A:67:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxfKsp3wkGVUwRzpqynGDR56Z1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:64:3b:bd:33:a7:cf:30:64:3e:9a:47:3c:7d:6a:59:42:69:
8e:c8:3e:e2:6b:99:a1:7e:b7:b1:9d:b0:ea:87:9c:12:ae:39:
c3:d0:35:88:d7:f6:83:b3:37:c8:71:07:3c:a9:f2:b1:4a:d7:
bb:1a:f2:fb:82:30:46:d7:a3:b5:2d:5a:0e:6b:01:59:17:fc:
6c:19:4b:5c:d0:f3:b6:f4:f1:34:2f:5f:d0:5c:ce:8a:3c:85:
95:8e:2b:0c:3c:96:9f:6b:f5:d8:b1:71:f0:9d:49:99:aa:bc:
48:bd:e1:68:5a:ed:4e:08:e9:c0:ae:f9:fb:e5:a2:a2:08:f4:
78:5a:c0:34:d9:91:6c:a7:ce:4a:b8:6f:d6:62:5c:59:e5:e5:
4b:6c:1c:5d:53:ca:9f:72:2a:13:15:6b:e2:8a:a6:2b:b4:cf:
d6:24:b8:62:3b:75:20:af:53:30:e4:0e:92:ef:97:0e:5e:fc:
a5:a0:cf:7f:46:eb:e5:94:0f:f6:68:74:4f:ff:b7:ce:1b:a1:
43:ae:9a:56:a0:b4:26:78:04:51:67:b4:02:64:4d:d4:87:b4:
fe:7c:29:65:6a:b2:c4:ff:e8:f5:58:b9:b2:f7:4a:ae:cd:b6:
3c:8a:0a:10:f1:31:f8:de:f0:7a:c2:96:71:21:64:c5:84:98:
28:87:87:0c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiVXIzaJCKHQ4ygIEfw/gOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMTdjYWIyOWRmMDkwNjU1NGMxMWNlOWFiMjljNjBkMWU3
YTY3NWMwHhcNMjUwOTA3MDQwMDQ5WhcNMjUwOTA4MDQwMDQ5WjAzMTEwLwYDVQQD
Eyg3YTk0NzAyODc1YTNhMGU3OTI0OTg1ODczYTc3ODNlMjlmM2M0YjM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3mZ4KZTN1jiGv3cEqIL3afW3X+0t
T+oOsGp5bT8Z3VRjjx6v2KVpGte7Nzr3T4z1zUOD7BptLLjYDzQm8jWVqDu8h0oT
MLbr8Dnrogy9KXIjfs14lfgMg+UrNqxF5NWdXRMcwwSLi2rn39ntnRP/eww2CZXN
kg0Xnd7LWIXr41L1l7yH5lmmhLrdETstgvfH6GvWPa/PD5ZUubTuI9PTEuEMA3Hg
Xq1yYvs0+DJCF8Aun2Ris/vOO/j/3hSCWIcRGSbmJugz/Ci8eOEvBIFGo40Vmm1h
dKxdRKa+zJ97aXPLcDgXhB4WiVhjnPzhCnmBzmwnFTX2m5Ou9l5aAkFyoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHqUcCh1o6DnkkmFhzp3g+KfPEs4MB8GA1UdIwQY
MBaAFG8XyrKd8JBlVMEc6aspxg0eemdcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnhmS3NwM3drR1ZVd1J6cHF5bkdEUjU2WjF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8zMTEzZTEtNDIzMC00MzgwLTk3MWUt
Njc4MmE3M2MyYjQ3LzEvYnhmS3NwM3drR1ZVd1J6cHF5bkdEUjU2WjF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni8zMTEzZTEtNDIzMC00MzgwLTk3MWUtNjc4MmE3M2MyYjQ3
LzEvYnhmS3NwM3drR1ZVd1J6cHF5bkdEUjU2WjF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE2Q7vTOn
zzBkPppHPH1qWUJpjsg+4muZoX63sZ2w6oecEq45w9A1iNf2g7M3yHEHPKnysUrX
uxry+4IwRtejtS1aDmsBWRf8bBlLXNDztvTxNC9f0FzOijyFlY4rDDyWn2v12LFx
8J1Jmaq8SL3haFrtTgjpwK75++Wiogj0eFrANNmRbKfOSrhv1mJcWeXlS2wcXVPK
n3IqExVr4oqmK7TP1iS4Yjt1IK9TMOQOku+XDl78paDPf0br5ZQP9mh0T/+3zhuh
Q66aVqC0JngEUWe0AmRN1Ie0/nwpZWqyxP/o9Vi5svdKrs22PIoKEPEx+N7wesKW
cSFkxYSYKIeHDA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:50:59 2025 by rpki-client