Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
File: bzOv1B6gEvsoA8cnRSPI7D8mExE.mft (raw, json)
Hash identifier: omBNETOyr0XSXd+DgtrCTVhW7cZj+eu7Gbk8Zh2skAI=
Subject key identifier: AF:54:A0:90:F1:97:6C:FB:8E:D3:2C:75:F3:DF:7A:4D:AF:D3:6F:3E
Authority key identifier: 6F:33:AF:D4:1E:A0:12:FB:28:03:C7:27:45:23:C8:EC:3F:26:13:11
Certificate issuer: /CN=6f33afd41ea012fb2803c7274523c8ec3f261311
Certificate serial: 019A251C7602F79D3976496E0E19EB207BE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
Manifest number: 16F7
Signing time: Mon 27 Oct 2025 10:00:13 +0000
Manifest this update: Mon 27 Oct 2025 10:00:13 +0000
Manifest next update: Tue 28 Oct 2025 10:00:13 +0000
Files and hashes: 1: bzOv1B6gEvsoA8cnRSPI7D8mExE.crl (hash: VUED/FYJq7kmG8tSJYpYWFvOVKS/vczFJIYlgMNqMbk=)
2: v8tpm7-4VwDQ4BW9MfFdtqRUZ9c.roa (hash: Xcaj7PWNKHBPkwnwanmCNYJ/FSFogXNO8sh3nrmk3Ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 10:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:1c:76:02:f7:9d:39:76:49:6e:0e:19:eb:20:7b:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f33afd41ea012fb2803c7274523c8ec3f261311
Validity
Not Before: Oct 27 10:00:13 2025 GMT
Not After : Oct 28 10:00:13 2025 GMT
Subject: CN=af54a090f1976cfb8ed32c75f3df7a4dafd36f3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d6:c2:4e:ea:56:34:20:3e:b4:ac:8e:4d:15:
84:c3:fd:87:61:0c:fc:55:e8:ed:66:c2:22:58:b3:
f1:bd:57:66:3e:1f:29:d3:c2:77:5a:81:b3:5d:b2:
6c:51:36:aa:eb:17:8d:e5:db:14:d3:b1:9b:d5:a4:
76:79:0e:63:43:f2:a9:10:4b:72:50:35:e3:27:19:
79:b7:0e:58:a7:d4:ec:f5:81:a9:08:d5:e3:d2:39:
0a:3b:d4:68:51:4a:25:c0:60:e0:a1:be:e2:e8:28:
4c:2b:f9:af:be:ea:ff:1a:2e:87:03:e3:aa:cf:a0:
63:ce:ff:4c:03:4c:ca:85:98:5c:80:84:15:3a:a6:
75:66:0c:f1:f9:40:06:4e:5a:34:e0:97:fb:3c:bd:
79:a0:ea:d3:ae:cf:bf:32:03:b2:9c:fc:e0:ac:82:
06:85:c4:e3:c4:a1:c1:d7:9b:46:46:f5:b0:35:eb:
3a:07:18:f3:c1:d6:f5:76:91:02:8c:bf:5c:22:b4:
6e:ee:bb:fb:82:0a:63:4a:1e:98:fa:18:55:c2:7a:
3a:99:3a:93:63:a8:8e:dc:cf:4c:4b:2e:0a:2b:88:
5a:cf:76:f4:6c:7e:d3:1a:6d:48:0e:0f:cd:81:d1:
42:d3:cb:de:30:ba:2f:4f:c3:3e:ec:26:6a:ee:78:
ad:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:54:A0:90:F1:97:6C:FB:8E:D3:2C:75:F3:DF:7A:4D:AF:D3:6F:3E
X509v3 Authority Key Identifier:
keyid:6F:33:AF:D4:1E:A0:12:FB:28:03:C7:27:45:23:C8:EC:3F:26:13:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:c0:72:e6:94:f7:a6:51:a4:a1:5a:ec:b7:22:4b:45:3c:ce:
f9:87:4f:e0:ef:0c:56:ff:d3:6c:c8:7c:ac:d9:0e:cc:3d:8d:
b3:2a:d7:6a:9e:0d:c2:4e:33:a8:12:a8:03:0e:87:8a:54:99:
76:7d:08:23:41:f3:5c:38:c9:df:6f:7f:6d:0b:b0:d0:32:29:
5a:dd:e6:58:bc:97:cb:1f:31:09:8c:dc:c9:6a:82:c7:07:be:
55:ec:f3:7b:3d:50:21:fa:50:7b:15:d2:3c:2f:fd:f9:1b:48:
47:2b:1b:ce:2c:f8:c8:93:ec:a0:3f:10:f6:7e:5c:b6:a9:67:
3d:2c:2d:91:df:ca:a1:9a:ce:0b:c2:02:e9:58:86:79:4a:53:
08:68:68:50:a9:24:56:71:57:1d:34:3e:5e:18:86:48:de:bf:
a3:bc:2f:96:81:1c:a2:3c:9f:c0:14:6c:90:b2:10:2d:12:1f:
27:48:5c:36:f7:1c:06:4a:ac:a8:be:e0:f7:c7:cd:54:e5:23:
3a:b4:b6:0c:b3:ca:c3:5a:a7:1c:00:52:64:72:51:54:57:df:
c4:e4:e9:89:4f:ce:f5:9d:25:3f:73:f5:a9:48:84:3c:b4:93:
91:4e:6d:2f:db:6b:88:4e:49:34:92:de:a8:3d:81:40:5c:d5:
fa:31:ed:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZolHHYC9505dkluDhnrIHvmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMzNhZmQ0MWVhMDEyZmIyODAzYzcyNzQ1MjNjOGVjM2Yy
NjEzMTEwHhcNMjUxMDI3MTAwMDEzWhcNMjUxMDI4MTAwMDEzWjAzMTEwLwYDVQQD
EyhhZjU0YTA5MGYxOTc2Y2ZiOGVkMzJjNzVmM2RmN2E0ZGFmZDM2ZjNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudbCTupWNCA+tKyOTRWEw/2HYQz8
VejtZsIiWLPxvVdmPh8p08J3WoGzXbJsUTaq6xeN5dsU07Gb1aR2eQ5jQ/KpEEty
UDXjJxl5tw5Yp9Ts9YGpCNXj0jkKO9RoUUolwGDgob7i6ChMK/mvvur/Gi6HA+Oq
z6Bjzv9MA0zKhZhcgIQVOqZ1Zgzx+UAGTlo04Jf7PL15oOrTrs+/MgOynPzgrIIG
hcTjxKHB15tGRvWwNes6Bxjzwdb1dpECjL9cIrRu7rv7ggpjSh6Y+hhVwno6mTqT
Y6iO3M9MSy4KK4haz3b0bH7TGm1IDg/NgdFC08veMLovT8M+7CZq7nitywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK9UoJDxl2z7jtMsdfPfek2v028+MB8GA1UdIwQY
MBaAFG8zr9QeoBL7KAPHJ0UjyOw/JhMRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnpPdjFCNmdFdnNvQThjblJTUEk3RDhtRXhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS85ZWFmN2YtYWIwMC00MmIyLTljZTIt
YjM1ODA5OTRhM2IxLzEvYnpPdjFCNmdFdnNvQThjblJTUEk3RDhtRXhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS85ZWFmN2YtYWIwMC00MmIyLTljZTItYjM1ODA5OTRhM2Ix
LzEvYnpPdjFCNmdFdnNvQThjblJTUEk3RDhtRXhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqsBy5pT3
plGkoVrstyJLRTzO+YdP4O8MVv/TbMh8rNkOzD2NsyrXap4Nwk4zqBKoAw6HilSZ
dn0II0HzXDjJ329/bQuw0DIpWt3mWLyXyx8xCYzcyWqCxwe+Vezzez1QIfpQexXS
PC/9+RtIRysbziz4yJPsoD8Q9n5ctqlnPSwtkd/KoZrOC8IC6ViGeUpTCGhoUKkk
VnFXHTQ+XhiGSN6/o7wvloEcojyfwBRskLIQLRIfJ0hcNvccBkqsqL7g98fNVOUj
OrS2DLPKw1qnHABSZHJRVFffxOTpiU/O9Z0lP3P1qUiEPLSTkU5tL9triE5JNJLe
qD2BQFzV+jHtMA==
-----END CERTIFICATE-----
Generated at Mon Oct 27 20:12:45 2025 by rpki-client