Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/a773b1-5f36-4e80-a398-e0233b7c60aa/1/bdEoKnfiVmUBaNLlZWrvzprWouw.mft
File: bdEoKnfiVmUBaNLlZWrvzprWouw.mft (raw, json)
Hash identifier: QVJowKGwGPWeZcM+jS3S7bQ1yZyTE7Fi4WzEStCq5FM=
Subject key identifier: A4:F9:EF:90:96:40:E1:E5:F5:D8:11:D2:E0:C8:EF:A1:3C:37:A5:8C
Authority key identifier: 6D:D1:28:2A:77:E2:56:65:01:68:D2:E5:65:6A:EF:CE:9A:D6:A2:EC
Certificate issuer: /CN=6dd1282a77e256650168d2e5656aefce9ad6a2ec
Certificate serial: 0199165174F12BDF0D62F1490DD451ABD295
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdEoKnfiVmUBaNLlZWrvzprWouw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/a773b1-5f36-4e80-a398-e0233b7c60aa/1/bdEoKnfiVmUBaNLlZWrvzprWouw.mft
Manifest number: 049F
Signing time: Thu 04 Sep 2025 20:01:00 +0000
Manifest this update: Thu 04 Sep 2025 20:01:00 +0000
Manifest next update: Fri 05 Sep 2025 20:01:00 +0000
Files and hashes: 1: bdEoKnfiVmUBaNLlZWrvzprWouw.crl (hash: l12re2c+o6GhxKD1M6fBJ5ZIcbPB8pIaMW6IY3J862g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/a773b1-5f36-4e80-a398-e0233b7c60aa/1/bdEoKnfiVmUBaNLlZWrvzprWouw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/a773b1-5f36-4e80-a398-e0233b7c60aa/1/bdEoKnfiVmUBaNLlZWrvzprWouw.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdEoKnfiVmUBaNLlZWrvzprWouw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 19:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:51:74:f1:2b:df:0d:62:f1:49:0d:d4:51:ab:d2:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd1282a77e256650168d2e5656aefce9ad6a2ec
Validity
Not Before: Sep 4 20:01:00 2025 GMT
Not After : Sep 5 20:01:00 2025 GMT
Subject: CN=a4f9ef909640e1e5f5d811d2e0c8efa13c37a58c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c7:12:d1:9b:53:7f:c7:cb:9c:c4:e7:64:a1:
ab:14:ea:0b:7e:cf:d6:13:26:df:8d:b4:50:44:35:
0b:40:ca:21:32:b0:4f:6e:d5:83:49:68:57:cf:b7:
54:24:ef:41:c8:f3:cc:48:aa:fa:c4:09:59:e9:ad:
99:25:f1:db:47:0d:2f:0d:f1:e1:37:a9:2b:c0:23:
ca:eb:c7:22:5f:36:26:fc:0d:0e:bf:31:e5:04:21:
db:aa:be:9d:36:6e:91:18:1a:af:67:eb:d4:c6:fd:
88:af:38:2e:c0:37:1e:34:9d:2f:ad:40:f0:d8:39:
63:f4:f3:12:95:3a:e6:15:43:cf:39:b6:63:08:64:
3e:1c:df:16:2b:d7:04:a7:d3:02:a2:21:29:cb:be:
d8:8b:34:cb:99:7f:fd:ae:4c:ce:f1:f7:f1:91:96:
3e:55:36:0e:c7:3e:71:fa:7b:1c:18:44:5c:57:ec:
e6:f4:46:59:29:9e:c5:65:3c:1e:16:aa:28:09:c6:
9b:b7:9e:95:f6:df:38:c2:b1:3b:c9:f2:64:10:a7:
33:a3:69:b1:f9:fb:bb:b1:e1:a4:ee:4c:7f:c3:1f:
c0:d0:e5:e5:a4:24:dc:f0:14:45:8e:ea:b5:07:66:
95:67:c5:a6:d9:de:3a:81:30:3c:61:85:00:ba:58:
52:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F9:EF:90:96:40:E1:E5:F5:D8:11:D2:E0:C8:EF:A1:3C:37:A5:8C
X509v3 Authority Key Identifier:
keyid:6D:D1:28:2A:77:E2:56:65:01:68:D2:E5:65:6A:EF:CE:9A:D6:A2:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdEoKnfiVmUBaNLlZWrvzprWouw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/a773b1-5f36-4e80-a398-e0233b7c60aa/1/bdEoKnfiVmUBaNLlZWrvzprWouw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/a773b1-5f36-4e80-a398-e0233b7c60aa/1/bdEoKnfiVmUBaNLlZWrvzprWouw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:23:8b:5f:47:b9:33:53:68:46:5d:05:a0:b1:20:e7:c3:13:
f0:23:a8:dc:b1:74:14:47:89:2c:78:3f:93:8e:4c:b3:4b:25:
7a:ab:26:30:a4:f0:42:89:8d:53:14:e7:45:d1:25:21:76:51:
b8:56:05:ea:49:7c:7f:a4:19:93:71:6e:71:76:ac:84:bf:a8:
55:0c:6c:c1:0a:9d:5e:87:08:0e:0f:07:38:15:28:b5:96:d9:
68:18:4c:cb:7d:1e:78:7d:de:fa:ac:fa:15:5c:49:b7:68:14:
4f:48:92:78:f1:9e:15:b3:db:1f:37:12:b4:c3:4f:b0:48:89:
14:2f:3f:a5:bc:ba:ca:16:39:8c:b8:f6:99:c1:7c:d0:f5:7e:
3a:7d:71:3b:7d:22:ce:7b:dd:d6:f0:45:e0:ea:f8:78:34:b2:
19:98:f7:a7:f3:8f:0f:ca:f4:7b:4a:90:26:b5:b5:7b:ae:2f:
13:de:de:08:ed:ea:ee:ca:ca:22:a9:2a:ef:cf:cd:3e:1b:56:
e9:28:5a:7a:bd:a7:82:ad:f0:a1:92:26:34:f1:87:4c:e9:ea:
99:63:a7:79:21:fa:3d:86:39:c6:b3:d5:e5:ee:39:71:2c:17:
46:d7:b8:a8:70:3f:4a:6b:ac:71:44:fb:84:98:9c:aa:88:b2:
4e:e8:a8:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkWUXTxK98NYvFJDdRRq9KVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZDEyODJhNzdlMjU2NjUwMTY4ZDJlNTY1NmFlZmNlOWFk
NmEyZWMwHhcNMjUwOTA0MjAwMTAwWhcNMjUwOTA1MjAwMTAwWjAzMTEwLwYDVQQD
EyhhNGY5ZWY5MDk2NDBlMWU1ZjVkODExZDJlMGM4ZWZhMTNjMzdhNThjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8cS0ZtTf8fLnMTnZKGrFOoLfs/W
EybfjbRQRDULQMohMrBPbtWDSWhXz7dUJO9ByPPMSKr6xAlZ6a2ZJfHbRw0vDfHh
N6krwCPK68ciXzYm/A0OvzHlBCHbqr6dNm6RGBqvZ+vUxv2IrzguwDceNJ0vrUDw
2Dlj9PMSlTrmFUPPObZjCGQ+HN8WK9cEp9MCoiEpy77YizTLmX/9rkzO8ffxkZY+
VTYOxz5x+nscGERcV+zm9EZZKZ7FZTweFqooCcabt56V9t84wrE7yfJkEKczo2mx
+fu7seGk7kx/wx/A0OXlpCTc8BRFjuq1B2aVZ8Wm2d46gTA8YYUAulhShwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKT575CWQOHl9dgR0uDI76E8N6WMMB8GA1UdIwQY
MBaAFG3RKCp34lZlAWjS5WVq786a1qLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmRFb0tuZmlWbVVCYU5MbFpXcnZ6cHJXb3V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9hNzczYjEtNWYzNi00ZTgwLWEzOTgt
ZTAyMzNiN2M2MGFhLzEvYmRFb0tuZmlWbVVCYU5MbFpXcnZ6cHJXb3V3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi9hNzczYjEtNWYzNi00ZTgwLWEzOTgtZTAyMzNiN2M2MGFh
LzEvYmRFb0tuZmlWbVVCYU5MbFpXcnZ6cHJXb3V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeSOLX0e5
M1NoRl0FoLEg58MT8COo3LF0FEeJLHg/k45Ms0sleqsmMKTwQomNUxTnRdElIXZR
uFYF6kl8f6QZk3FucXashL+oVQxswQqdXocIDg8HOBUotZbZaBhMy30eeH3e+qz6
FVxJt2gUT0iSePGeFbPbHzcStMNPsEiJFC8/pby6yhY5jLj2mcF80PV+On1xO30i
znvd1vBF4Or4eDSyGZj3p/OPD8r0e0qQJrW1e64vE97eCO3q7srKIqkq78/NPhtW
6Shaer2ngq3woZImNPGHTOnqmWOneSH6PYY5xrPV5e45cSwXRte4qHA/SmuscUT7
hJicqoiyTuioYQ==
-----END CERTIFICATE-----
Generated at Fri Sep 5 04:27:17 2025 by rpki-client