Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.mft
File: BpilU2SQ1wyON7dvMtpoTxIp2bo.mft (raw, json)
Hash identifier: w7lKAqZ0qzyavV8B4xTU2f2dSJB98qTyg7kzHi0ZRng=
Subject key identifier: 3D:A2:71:E5:64:9B:1F:89:3A:17:A5:48:42:92:01:41:6F:7F:51:F4
Authority key identifier: 06:98:A5:53:64:90:D7:0C:8E:37:B7:6F:32:DA:68:4F:12:29:D9:BA
Certificate issuer: /CN=0698a5536490d70c8e37b76f32da684f1229d9ba
Certificate serial: 019921E7C7BA20BA9597D64FCA5F4BC127F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpilU2SQ1wyON7dvMtpoTxIp2bo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.mft
Manifest number: 0126
Signing time: Sun 07 Sep 2025 02:01:01 +0000
Manifest this update: Sun 07 Sep 2025 02:01:01 +0000
Manifest next update: Mon 08 Sep 2025 02:01:01 +0000
Files and hashes: 1: 6I3Ul79wxRN6W37mo7nUpqwqt0s.roa (hash: J9bvPeLp8sfcjLoyxN9ggYT+mX3AB6I6+8a1daK3z1U=)
2: BpilU2SQ1wyON7dvMtpoTxIp2bo.crl (hash: mnlyWRvXR45+YggTMUAzL4PELaUq2dKkEPj7OfeFAD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BpilU2SQ1wyON7dvMtpoTxIp2bo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:c7:ba:20:ba:95:97:d6:4f:ca:5f:4b:c1:27:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0698a5536490d70c8e37b76f32da684f1229d9ba
Validity
Not Before: Sep 7 02:01:01 2025 GMT
Not After : Sep 8 02:01:01 2025 GMT
Subject: CN=3da271e5649b1f893a17a548429201416f7f51f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:9b:40:b1:25:66:3f:48:dc:33:e5:80:54:84:
f3:41:c8:a8:1d:ed:b9:27:6b:40:20:05:d0:da:e6:
1a:36:60:2d:58:90:4e:1a:f2:9e:38:3c:06:71:26:
7f:87:ae:bc:16:16:6a:43:9b:cc:90:4f:b4:97:42:
50:82:5e:df:39:3c:d3:55:96:ed:85:41:d4:b6:4f:
27:0b:20:b5:86:ea:31:fd:3e:72:8d:ac:77:2d:2e:
0d:7d:3a:1d:f3:bb:05:27:d1:91:d4:c9:9c:62:6e:
f8:7c:36:75:db:a2:13:cc:48:71:fe:dc:47:67:d0:
60:64:84:d5:05:66:f1:4d:9b:f8:6a:73:35:1a:c7:
44:fe:58:7a:0f:9e:9f:3d:43:8c:5f:d0:b5:4e:e4:
51:87:2d:4d:dc:c1:d0:98:45:1b:47:d3:73:e8:4a:
84:24:37:a1:05:a7:5a:bc:ce:1d:18:75:f0:bf:0c:
63:22:89:cd:f2:5d:62:3b:9f:89:00:63:d2:a2:e4:
eb:0c:5f:ee:96:6c:43:77:d8:b2:16:31:17:be:55:
74:7d:70:b2:a0:11:cd:31:81:ae:3e:18:77:70:d2:
e5:2d:ad:9f:65:7b:43:11:d4:97:48:91:51:fd:b8:
58:12:9d:ba:11:03:b9:7e:80:db:f7:bf:3a:29:b8:
55:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A2:71:E5:64:9B:1F:89:3A:17:A5:48:42:92:01:41:6F:7F:51:F4
X509v3 Authority Key Identifier:
keyid:06:98:A5:53:64:90:D7:0C:8E:37:B7:6F:32:DA:68:4F:12:29:D9:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpilU2SQ1wyON7dvMtpoTxIp2bo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:f4:81:ff:75:2e:19:cd:7d:00:a9:c5:a3:25:b1:d5:51:75:
51:04:0c:77:49:0f:53:62:b5:ae:e4:25:fb:f2:76:f0:db:a7:
51:d3:f9:9f:ed:04:4a:7d:49:76:9a:cb:eb:b3:bb:f8:fa:39:
d8:72:b1:06:93:b1:c0:11:99:2f:32:8d:a2:29:8a:02:b8:16:
4b:ba:ce:9e:e1:88:ac:ef:f8:cf:d5:15:7f:2f:05:bf:1f:1b:
6a:b4:3c:0b:4a:14:36:30:8f:2f:47:d1:40:16:f8:62:9b:94:
f0:40:51:7b:52:eb:63:9e:3d:3c:5f:b8:66:83:2c:3b:05:c6:
b7:6e:1c:36:77:b5:53:98:68:79:00:61:40:3f:a5:37:08:67:
a7:d5:12:22:f2:23:bd:27:ac:d8:00:21:f0:41:fc:d3:7f:fe:
45:2a:b1:f4:8d:26:a5:c9:8e:b7:2b:d3:f5:aa:e3:2f:72:a1:
3a:80:aa:74:91:e4:03:49:06:2d:37:e4:54:f9:38:30:d8:c6:
59:f7:7d:58:64:3d:41:da:c2:b6:68:7c:70:23:96:a0:db:cd:
36:77:6b:c0:07:5d:37:0c:37:33:0c:b3:a6:ba:bd:eb:cc:e6:
a8:7b:bb:a3:f6:47:62:2e:36:43:74:77:82:61:38:15:0d:53:
70:ae:34:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkh58e6ILqVl9ZPyl9LwSfwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2OThhNTUzNjQ5MGQ3MGM4ZTM3Yjc2ZjMyZGE2ODRmMTIy
OWQ5YmEwHhcNMjUwOTA3MDIwMTAxWhcNMjUwOTA4MDIwMTAxWjAzMTEwLwYDVQQD
EygzZGEyNzFlNTY0OWIxZjg5M2ExN2E1NDg0MjkyMDE0MTZmN2Y1MWY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk5tAsSVmP0jcM+WAVITzQcioHe25
J2tAIAXQ2uYaNmAtWJBOGvKeODwGcSZ/h668FhZqQ5vMkE+0l0JQgl7fOTzTVZbt
hUHUtk8nCyC1huox/T5yjax3LS4NfTod87sFJ9GR1MmcYm74fDZ126ITzEhx/txH
Z9BgZITVBWbxTZv4anM1GsdE/lh6D56fPUOMX9C1TuRRhy1N3MHQmEUbR9Nz6EqE
JDehBadavM4dGHXwvwxjIonN8l1iO5+JAGPSouTrDF/ulmxDd9iyFjEXvlV0fXCy
oBHNMYGuPhh3cNLlLa2fZXtDEdSXSJFR/bhYEp26EQO5foDb9786KbhVJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD2iceVkmx+JOhelSEKSAUFvf1H0MB8GA1UdIwQY
MBaAFAaYpVNkkNcMjje3bzLaaE8SKdm6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnBpbFUyU1Exd3lPTjdkdk10cG9UeElwMmJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC9kMzEzNjEtMDk2ZC00YThkLWFiNGYt
YzNkYzczOTQyNWExLzEvQnBpbFUyU1Exd3lPTjdkdk10cG9UeElwMmJvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC9kMzEzNjEtMDk2ZC00YThkLWFiNGYtYzNkYzczOTQyNWEx
LzEvQnBpbFUyU1Exd3lPTjdkdk10cG9UeElwMmJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY/SB/3Uu
Gc19AKnFoyWx1VF1UQQMd0kPU2K1ruQl+/J28NunUdP5n+0ESn1JdprL67O7+Po5
2HKxBpOxwBGZLzKNoimKArgWS7rOnuGIrO/4z9UVfy8Fvx8barQ8C0oUNjCPL0fR
QBb4YpuU8EBRe1LrY549PF+4ZoMsOwXGt24cNne1U5hoeQBhQD+lNwhnp9USIvIj
vSes2AAh8EH803/+RSqx9I0mpcmOtyvT9arjL3KhOoCqdJHkA0kGLTfkVPk4MNjG
Wfd9WGQ9QdrCtmh8cCOWoNvNNndrwAddNww3Mwyzprq968zmqHu7o/ZHYi42Q3R3
gmE4FQ1TcK40+A==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:49 2025 by rpki-client