Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft
File: Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft (raw, json)
Hash identifier: vMOl4V0v7MPH5VZ3puVaAr6Lz0o+ONwQMCoj+bBlv68=
Subject key identifier: 55:FA:9F:AB:B6:A1:51:4A:08:30:92:83:69:1B:82:44:EA:60:7F:96
Authority key identifier: 06:09:7A:72:E4:AE:40:B6:B9:92:9B:72:F8:1E:FD:71:C5:17:DD:98
Certificate issuer: /CN=06097a72e4ae40b6b9929b72f81efd71c517dd98
Certificate serial: 01992C6B3228ACCB7A2CEC67EB008F873079
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft
Manifest number: 0299
Signing time: Tue 09 Sep 2025 03:00:46 +0000
Manifest this update: Tue 09 Sep 2025 03:00:46 +0000
Manifest next update: Wed 10 Sep 2025 03:00:46 +0000
Files and hashes: 1: Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl (hash: g0Dq7U+7cl2SZ1ArrfmaSnzsKvFGVIVLoWhjRhz350M=)
2: aTqNBiMtHyqY4sjo2vUby0yJMKk.roa (hash: 8tR80jRMgENDFDI+mB0B/a9/v+rAAXYdo53Fd7KchX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 03:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2c:6b:32:28:ac:cb:7a:2c:ec:67:eb:00:8f:87:30:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06097a72e4ae40b6b9929b72f81efd71c517dd98
Validity
Not Before: Sep 9 03:00:46 2025 GMT
Not After : Sep 10 03:00:46 2025 GMT
Subject: CN=55fa9fabb6a1514a08309283691b8244ea607f96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:cc:5b:4a:08:18:a6:7d:2f:32:ec:dc:b6:9e:
8f:4f:19:d5:ed:c3:22:00:2a:3c:0c:a5:b9:24:45:
48:8c:21:25:16:ae:0b:a3:a2:37:79:20:46:52:77:
1a:b3:b6:2c:52:8a:b6:c9:ce:98:9a:03:1a:34:04:
4b:7c:95:b3:d2:1e:b4:14:a2:c7:95:4a:7e:f1:52:
1d:46:89:f3:e1:bb:31:27:fd:39:09:b4:1b:40:b5:
f5:23:e2:e8:1c:6f:0d:f2:b6:4e:8f:86:1d:17:2b:
c0:22:a0:43:ea:6f:32:bd:c6:cb:89:b3:d1:09:47:
31:c6:cc:ea:85:be:3f:78:ea:ac:0b:03:81:8c:80:
96:58:d0:d9:48:d0:27:61:d5:03:9c:1e:9b:92:bf:
58:94:1d:19:bb:d3:e6:26:34:6e:dc:f5:f5:c7:4b:
ac:7a:00:b1:69:cf:e0:f0:d6:8b:84:da:67:9d:ca:
91:75:b7:60:d3:ca:c3:21:fe:f3:a4:a8:bc:d6:cb:
aa:d3:9a:d0:60:7d:e2:03:83:47:ae:df:b4:34:78:
69:d5:f8:d5:7c:f4:8a:d0:1d:2c:16:f3:83:15:fb:
9e:54:9d:e9:3a:70:e5:1c:f4:ae:4c:e0:44:4f:bc:
e2:17:0e:b6:8a:57:30:e9:b2:27:af:70:99:c2:20:
5a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:FA:9F:AB:B6:A1:51:4A:08:30:92:83:69:1B:82:44:EA:60:7F:96
X509v3 Authority Key Identifier:
keyid:06:09:7A:72:E4:AE:40:B6:B9:92:9B:72:F8:1E:FD:71:C5:17:DD:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:ab:c1:78:e2:99:fb:15:ed:0e:a3:72:24:5b:69:97:4e:6f:
98:69:a6:f6:95:1a:7f:24:48:3e:16:53:12:62:c2:a6:99:e5:
d8:f3:51:7a:fb:1f:78:46:9b:32:84:ff:fa:37:4e:51:4e:f6:
e1:d7:2f:68:43:b1:22:ef:bb:2f:59:5f:f2:fd:95:0b:de:27:
8a:7e:f4:75:56:f4:ca:64:cb:c5:06:d7:e9:c8:da:a9:f8:70:
33:81:1e:64:4b:68:68:f5:61:c5:be:49:c7:6c:c7:13:f6:06:
fb:59:c3:25:a3:f7:01:1c:26:38:03:41:30:63:00:65:88:59:
11:1a:16:84:12:1f:20:7b:e8:3d:bb:db:91:6d:7b:ba:9d:7f:
8c:6f:dd:99:f9:21:81:23:04:a3:f8:2b:a8:3d:1d:f1:f2:2e:
c0:6c:8c:6e:f0:ce:50:99:4a:f9:8a:ed:e8:d0:2c:f5:50:df:
4d:09:78:ea:ec:ea:15:61:51:b4:4b:cb:98:82:c5:0e:c6:6a:
58:d0:9e:36:d6:bb:2b:c5:89:aa:3d:ad:50:9b:bb:95:20:aa:
bd:6a:9c:e2:e7:50:52:ea:bd:6e:7a:99:86:1b:08:56:f5:0e:
63:1c:fe:12:07:0f:13:52:53:c3:ad:dc:70:7f:e7:82:ed:04:
a3:25:27:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZksazIorMt6LOxn6wCPhzB5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2MDk3YTcyZTRhZTQwYjZiOTkyOWI3MmY4MWVmZDcxYzUx
N2RkOTgwHhcNMjUwOTA5MDMwMDQ2WhcNMjUwOTEwMDMwMDQ2WjAzMTEwLwYDVQQD
Eyg1NWZhOWZhYmI2YTE1MTRhMDgzMDkyODM2OTFiODI0NGVhNjA3Zjk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4MxbSggYpn0vMuzctp6PTxnV7cMi
ACo8DKW5JEVIjCElFq4Lo6I3eSBGUncas7YsUoq2yc6YmgMaNARLfJWz0h60FKLH
lUp+8VIdRonz4bsxJ/05CbQbQLX1I+LoHG8N8rZOj4YdFyvAIqBD6m8yvcbLibPR
CUcxxszqhb4/eOqsCwOBjICWWNDZSNAnYdUDnB6bkr9YlB0Zu9PmJjRu3PX1x0us
egCxac/g8NaLhNpnncqRdbdg08rDIf7zpKi81suq05rQYH3iA4NHrt+0NHhp1fjV
fPSK0B0sFvODFfueVJ3pOnDlHPSuTOBET7ziFw62ilcw6bInr3CZwiBaOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFX6n6u2oVFKCDCSg2kbgkTqYH+WMB8GA1UdIwQY
MBaAFAYJenLkrkC2uZKbcvge/XHFF92YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zYTEwOWEtOWIzMi00NWE4LTliMGMt
N2EwMjUxN2ZkOWQyLzEvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi8zYTEwOWEtOWIzMi00NWE4LTliMGMtN2EwMjUxN2ZkOWQy
LzEvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApqvBeOKZ
+xXtDqNyJFtpl05vmGmm9pUafyRIPhZTEmLCppnl2PNRevsfeEabMoT/+jdOUU72
4dcvaEOxIu+7L1lf8v2VC94nin70dVb0ymTLxQbX6cjaqfhwM4EeZEtoaPVhxb5J
x2zHE/YG+1nDJaP3ARwmOANBMGMAZYhZERoWhBIfIHvoPbvbkW17up1/jG/dmfkh
gSMEo/grqD0d8fIuwGyMbvDOUJlK+Yrt6NAs9VDfTQl46uzqFWFRtEvLmILFDsZq
WNCeNta7K8WJqj2tUJu7lSCqvWqc4udQUuq9bnqZhhsIVvUOYxz+EgcPE1JTw63c
cH/ngu0EoyUntQ==
-----END CERTIFICATE-----
Generated at Tue Sep 9 13:16:28 2025 by rpki-client