Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft
File: Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft (raw, json)
Hash identifier: fvHdAuoRrmkIyTHLTEHiJWT/jivWak/YgGL8yjhpfBI=
Subject key identifier: 16:38:6D:9B:6A:C2:04:19:EF:87:02:05:82:01:20:D8:E7:6E:ED:CB
Authority key identifier: 06:09:7A:72:E4:AE:40:B6:B9:92:9B:72:F8:1E:FD:71:C5:17:DD:98
Certificate issuer: /CN=06097a72e4ae40b6b9929b72f81efd71c517dd98
Certificate serial: 019A239BF14D142E9BC8FAC5160933C96DF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft
Manifest number: 0319
Signing time: Mon 27 Oct 2025 03:00:13 +0000
Manifest this update: Mon 27 Oct 2025 03:00:13 +0000
Manifest next update: Tue 28 Oct 2025 03:00:13 +0000
Files and hashes: 1: Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl (hash: GmEHtepSX+IKO8sZTY7/LI4OcXzXkCnyx3sd/CKX1o4=)
2: aTqNBiMtHyqY4sjo2vUby0yJMKk.roa (hash: 8tR80jRMgENDFDI+mB0B/a9/v+rAAXYdo53Fd7KchX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:9b:f1:4d:14:2e:9b:c8:fa:c5:16:09:33:c9:6d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06097a72e4ae40b6b9929b72f81efd71c517dd98
Validity
Not Before: Oct 27 03:00:13 2025 GMT
Not After : Oct 28 03:00:13 2025 GMT
Subject: CN=16386d9b6ac20419ef870205820120d8e76eedcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:26:93:0b:40:20:81:5d:29:ad:f4:ef:0b:b3:
bd:ab:10:f6:85:81:7c:85:0f:87:f4:b6:68:07:75:
a0:2c:34:4b:81:7d:75:b9:ba:35:2f:3b:a6:79:ed:
76:32:dd:52:5f:2d:64:06:b4:6c:3f:4e:6b:3a:04:
52:02:15:c9:99:f2:cb:00:dc:89:85:15:5f:b3:5d:
14:89:fc:40:b9:44:34:ec:3e:56:bb:fa:c7:7e:44:
a0:7f:89:ae:38:c7:7b:0a:40:47:cf:4a:27:4f:b7:
4c:e0:69:0b:d8:53:59:8b:33:26:0e:db:4d:c0:2f:
f9:8e:f4:79:8e:15:a7:4c:19:7b:39:e9:2f:9a:4f:
14:dc:96:a7:9c:a4:56:48:28:c0:16:41:8a:d8:18:
87:48:78:da:15:9c:ae:f6:e5:c6:00:d5:1a:99:42:
81:4f:c4:5c:8a:fa:20:42:d5:82:b9:3a:a4:8f:8f:
93:53:41:ce:a2:62:f4:9c:17:76:fb:08:ce:a1:43:
81:cf:09:fb:3d:65:88:af:69:18:ff:a6:f7:36:bf:
2a:7a:af:ac:20:0e:a1:48:32:8b:7f:7b:20:35:c5:
89:3e:22:29:31:49:45:49:f1:c4:c2:59:d2:b3:fa:
c3:ec:12:ba:7c:02:e7:8c:23:18:d4:96:0e:b8:05:
a9:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:38:6D:9B:6A:C2:04:19:EF:87:02:05:82:01:20:D8:E7:6E:ED:CB
X509v3 Authority Key Identifier:
keyid:06:09:7A:72:E4:AE:40:B6:B9:92:9B:72:F8:1E:FD:71:C5:17:DD:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:f1:86:b0:19:7f:c5:e0:94:c8:5f:95:c9:b1:5a:6f:a6:38:
ca:f9:ae:af:34:59:4b:92:cd:33:34:d4:5e:ea:85:93:af:c7:
45:a1:15:c0:1b:b5:99:b5:c5:fb:39:95:a7:9d:8d:6a:ef:cf:
04:5b:45:3b:14:c7:cb:3d:c6:a7:70:1c:c9:9e:d9:ff:33:23:
1d:9b:f6:0d:88:32:d5:f6:fd:23:91:30:ba:4f:b4:8a:af:a6:
2e:8d:ab:81:ea:1c:87:9b:59:b2:33:4e:cd:25:45:44:eb:f4:
a7:2d:93:1a:a6:73:c0:d6:96:cc:ce:e2:3d:51:aa:3b:09:ce:
b0:5a:ab:38:6e:ef:a6:e5:94:33:ee:ff:2d:07:c2:e9:50:b5:
28:c0:41:00:ba:c4:ee:16:7d:3e:f1:67:ea:1b:8c:16:70:0f:
b8:76:b6:09:d7:ab:9a:67:37:02:d8:b2:76:a1:5e:6e:10:f2:
cc:67:f0:f2:ea:3b:15:a1:b3:3a:ba:7c:6b:9b:08:ea:a5:44:
ca:c0:72:b7:4e:e3:c0:36:45:87:aa:76:23:d1:be:46:d6:e9:
61:61:a4:cb:6a:24:c2:e1:83:30:93:6d:6f:58:6b:d5:77:a7:
11:05:d6:45:5e:46:2d:ee:f8:8b:25:77:f6:c3:4b:ac:a9:0a:
a5:6e:5f:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZojm/FNFC6byPrFFgkzyW30MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2MDk3YTcyZTRhZTQwYjZiOTkyOWI3MmY4MWVmZDcxYzUx
N2RkOTgwHhcNMjUxMDI3MDMwMDEzWhcNMjUxMDI4MDMwMDEzWjAzMTEwLwYDVQQD
EygxNjM4NmQ5YjZhYzIwNDE5ZWY4NzAyMDU4MjAxMjBkOGU3NmVlZGNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmSaTC0AggV0prfTvC7O9qxD2hYF8
hQ+H9LZoB3WgLDRLgX11ubo1Lzumee12Mt1SXy1kBrRsP05rOgRSAhXJmfLLANyJ
hRVfs10UifxAuUQ07D5Wu/rHfkSgf4muOMd7CkBHz0onT7dM4GkL2FNZizMmDttN
wC/5jvR5jhWnTBl7Oekvmk8U3JannKRWSCjAFkGK2BiHSHjaFZyu9uXGANUamUKB
T8RcivogQtWCuTqkj4+TU0HOomL0nBd2+wjOoUOBzwn7PWWIr2kY/6b3Nr8qeq+s
IA6hSDKLf3sgNcWJPiIpMUlFSfHEwlnSs/rD7BK6fALnjCMY1JYOuAWp5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBY4bZtqwgQZ74cCBYIBINjnbu3LMB8GA1UdIwQY
MBaAFAYJenLkrkC2uZKbcvge/XHFF92YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zYTEwOWEtOWIzMi00NWE4LTliMGMt
N2EwMjUxN2ZkOWQyLzEvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi8zYTEwOWEtOWIzMi00NWE4LTliMGMtN2EwMjUxN2ZkOWQy
LzEvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYPGGsBl/
xeCUyF+VybFab6Y4yvmurzRZS5LNMzTUXuqFk6/HRaEVwBu1mbXF+zmVp52Nau/P
BFtFOxTHyz3Gp3AcyZ7Z/zMjHZv2DYgy1fb9I5Ewuk+0iq+mLo2rgeoch5tZsjNO
zSVFROv0py2TGqZzwNaWzM7iPVGqOwnOsFqrOG7vpuWUM+7/LQfC6VC1KMBBALrE
7hZ9PvFn6huMFnAPuHa2Cdermmc3AtiydqFebhDyzGfw8uo7FaGzOrp8a5sI6qVE
ysByt07jwDZFh6p2I9G+RtbpYWGky2okwuGDMJNtb1hr1XenEQXWRV5GLe74iyV3
9sNLrKkKpW5fJQ==
-----END CERTIFICATE-----
Generated at Mon Oct 27 06:55:52 2025 by rpki-client