Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
File: BkwamGxZM6O5EIToo_8IBm05jhk.mft (raw, json)
Hash identifier: d6YuR78eWiV5OfzQkAV+naSi2REST0HJKTv7qSBPkUY=
Subject key identifier: 7D:3C:11:7F:F4:16:DB:7A:C4:0A:61:AC:43:07:B3:47:49:3F:6B:EC
Authority key identifier: 06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19
Certificate issuer: /CN=064c1a986c5933a3b91084e8a3ff08066d398e19
Certificate serial: 019923A0C7476BD2D986CAA2189B65CA342C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
Manifest number: 0A82
Signing time: Sun 07 Sep 2025 10:02:43 +0000
Manifest this update: Sun 07 Sep 2025 10:02:43 +0000
Manifest next update: Mon 08 Sep 2025 10:02:43 +0000
Files and hashes: 1: BkwamGxZM6O5EIToo_8IBm05jhk.crl (hash: gKO8Wbs/gsgqMLm0KUw/qSfGO0I1lrXqSvwhMLWdKYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:c7:47:6b:d2:d9:86:ca:a2:18:9b:65:ca:34:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=064c1a986c5933a3b91084e8a3ff08066d398e19
Validity
Not Before: Sep 7 10:02:43 2025 GMT
Not After : Sep 8 10:02:43 2025 GMT
Subject: CN=7d3c117ff416db7ac40a61ac4307b347493f6bec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:10:f6:bc:ef:70:c8:24:81:7b:75:e2:7f:02:
8a:72:7c:09:b1:e2:b5:35:73:a1:1e:c4:eb:62:2c:
33:cd:59:ed:2a:3d:73:fb:3f:8f:bf:57:1a:83:be:
15:ac:5c:ad:09:7e:3c:7e:7e:e6:e3:b1:38:c7:b3:
07:37:49:f7:63:03:87:90:47:9d:18:db:6e:b2:39:
e8:3e:3a:be:e4:99:b2:3c:1c:13:ff:f8:97:b4:46:
14:5e:60:7d:6b:3b:83:9f:85:f1:09:eb:39:8a:bd:
c3:fb:00:8e:77:41:d2:ee:f7:23:69:39:64:7e:36:
ad:3b:79:dc:78:27:51:ed:43:71:a8:b9:6d:d7:15:
00:8b:31:c7:90:6c:b8:f9:30:c7:be:6b:0d:d1:76:
3a:f6:32:72:a3:4e:0a:6f:4b:99:d9:c4:79:28:81:
1a:b8:13:99:c5:62:76:ca:d2:83:e7:bd:af:ec:ca:
1f:00:16:96:44:2b:4d:da:87:9c:e5:59:14:ba:1d:
27:43:75:56:db:dc:bc:17:a6:8b:7b:13:71:a4:f0:
60:22:13:15:96:7c:6a:8b:11:80:98:09:43:9e:cc:
96:f3:47:85:74:c3:f8:b2:c3:9f:a1:4e:7d:cb:e6:
cb:30:22:6e:89:66:2f:e8:b0:bd:40:66:d8:f0:17:
21:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:3C:11:7F:F4:16:DB:7A:C4:0A:61:AC:43:07:B3:47:49:3F:6B:EC
X509v3 Authority Key Identifier:
keyid:06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:2e:5f:fc:6c:e8:f0:54:1a:54:93:eb:57:9b:59:86:2d:2d:
bf:f2:51:0f:6f:42:98:ab:df:56:81:27:da:ab:3a:39:1e:9c:
1c:36:37:a5:aa:61:fb:59:c5:ae:9e:21:05:0e:95:42:5a:6f:
cd:a7:d0:cb:7f:c1:12:2a:d9:6d:d2:ce:6f:78:e3:95:11:19:
c5:7b:35:5d:e2:82:e0:b6:2d:3b:bd:b9:49:af:bf:23:81:a5:
b5:f7:5c:2e:b0:b2:cc:43:28:fe:12:6f:56:97:15:c2:ad:85:
95:fa:b6:e5:8a:52:d7:cc:8f:3f:9f:25:43:b6:47:44:90:6a:
f9:fe:d1:c0:12:a7:01:b2:1a:a1:c9:c5:35:62:7e:af:69:0f:
11:91:82:a0:05:57:a4:19:91:bc:d9:ef:cb:eb:a8:95:99:e9:
1d:c9:04:33:e0:ad:f4:61:d5:de:5b:9d:51:0d:4a:e5:2b:fc:
3f:72:cc:71:67:7a:e4:f0:44:b1:cc:c8:35:8f:87:54:49:fd:
2c:fe:0e:9f:3c:50:a9:74:2f:23:d9:c5:ee:da:b4:5a:01:69:
5a:03:68:f8:a7:06:7a:02:c5:92:12:65:23:1c:91:c1:75:8c:
d0:d3:ea:21:fe:72:2b:c4:e0:45:a4:3e:b1:a5:63:26:ed:41:
e9:62:4f:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjoMdHa9LZhsqiGJtlyjQsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NGMxYTk4NmM1OTMzYTNiOTEwODRlOGEzZmYwODA2NmQz
OThlMTkwHhcNMjUwOTA3MTAwMjQzWhcNMjUwOTA4MTAwMjQzWjAzMTEwLwYDVQQD
Eyg3ZDNjMTE3ZmY0MTZkYjdhYzQwYTYxYWM0MzA3YjM0NzQ5M2Y2YmVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1BD2vO9wyCSBe3XifwKKcnwJseK1
NXOhHsTrYiwzzVntKj1z+z+Pv1cag74VrFytCX48fn7m47E4x7MHN0n3YwOHkEed
GNtusjnoPjq+5JmyPBwT//iXtEYUXmB9azuDn4XxCes5ir3D+wCOd0HS7vcjaTlk
fjatO3nceCdR7UNxqLlt1xUAizHHkGy4+TDHvmsN0XY69jJyo04Kb0uZ2cR5KIEa
uBOZxWJ2ytKD572v7MofABaWRCtN2oec5VkUuh0nQ3VW29y8F6aLexNxpPBgIhMV
lnxqixGAmAlDnsyW80eFdMP4ssOfoU59y+bLMCJuiWYv6LC9QGbY8BchNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH08EX/0Ftt6xAphrEMHs0dJP2vsMB8GA1UdIwQY
MBaAFAZMGphsWTOjuRCE6KP/CAZtOY4ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmt3YW1HeFpNNk81RUlUb29fOElCbTA1amhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9mNjI1NTItMTRmMS00OTljLWFmNzgt
N2Y2YTY1NWZkNzg4LzEvQmt3YW1HeFpNNk81RUlUb29fOElCbTA1amhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi9mNjI1NTItMTRmMS00OTljLWFmNzgtN2Y2YTY1NWZkNzg4
LzEvQmt3YW1HeFpNNk81RUlUb29fOElCbTA1amhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJC5f/Gzo
8FQaVJPrV5tZhi0tv/JRD29CmKvfVoEn2qs6OR6cHDY3paph+1nFrp4hBQ6VQlpv
zafQy3/BEirZbdLOb3jjlREZxXs1XeKC4LYtO725Sa+/I4GltfdcLrCyzEMo/hJv
VpcVwq2Flfq25YpS18yPP58lQ7ZHRJBq+f7RwBKnAbIaocnFNWJ+r2kPEZGCoAVX
pBmRvNnvy+uolZnpHckEM+Ct9GHV3ludUQ1K5Sv8P3LMcWd65PBEsczINY+HVEn9
LP4OnzxQqXQvI9nF7tq0WgFpWgNo+KcGegLFkhJlIxyRwXWM0NPqIf5yK8TgRaQ+
saVjJu1B6WJPuw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 14:47:46 2025 by rpki-client