Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft
File: b1frSRlt0uBgbVl3wrdLEBt5vAs.mft (raw, json)
Hash identifier: /pou502IRh+BpmI/qZHipleLTpuA0vZGiCBWdt7ghqk=
Subject key identifier: BF:B3:85:44:E9:6D:F5:7E:F6:D8:2F:11:BC:2E:01:2A:73:23:16:01
Authority key identifier: 6F:57:EB:49:19:6D:D2:E0:60:6D:59:77:C2:B7:4B:10:1B:79:BC:0B
Certificate issuer: /CN=6f57eb49196dd2e0606d5977c2b74b101b79bc0b
Certificate serial: 0199FD33E1EA35092D7A77A1672405A13D1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b1frSRlt0uBgbVl3wrdLEBt5vAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft
Manifest number: 0972
Signing time: Sun 19 Oct 2025 16:00:59 +0000
Manifest this update: Sun 19 Oct 2025 16:00:59 +0000
Manifest next update: Mon 20 Oct 2025 16:00:59 +0000
Files and hashes: 1: b1frSRlt0uBgbVl3wrdLEBt5vAs.crl (hash: WXYmimpa/NXTeQpFGneanCqDBgApiLbcnDH119n6kz0=)
2: qPQvBbAxayZH2DtXKePm47b3aIg.roa (hash: +EzjnlPCeBdtqBhNoYoGX7VYz3jpTXt4JQidHMxpNYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/b1frSRlt0uBgbVl3wrdLEBt5vAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:33:e1:ea:35:09:2d:7a:77:a1:67:24:05:a1:3d:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f57eb49196dd2e0606d5977c2b74b101b79bc0b
Validity
Not Before: Oct 19 16:00:59 2025 GMT
Not After : Oct 20 16:00:59 2025 GMT
Subject: CN=bfb38544e96df57ef6d82f11bc2e012a73231601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:83:55:49:7b:2d:9d:1e:6f:c7:50:ed:9b:c6:
04:61:cd:3c:1b:37:38:b5:08:5f:c5:2d:52:d1:8e:
19:c5:62:5e:8c:47:5f:37:06:ea:7c:b9:2b:ab:d7:
ab:e5:49:c2:e4:4a:e2:1d:fe:d9:e3:b1:4a:47:70:
e4:dd:b1:aa:22:1c:bf:b3:45:78:ee:8a:88:95:a5:
32:f2:8d:63:e2:f7:fe:89:c0:dd:d6:25:6c:93:dd:
d5:81:72:d3:7f:7e:03:3f:51:93:74:7d:a9:4e:88:
b0:61:42:e5:15:6c:a8:52:d9:ab:d5:7e:55:cb:a2:
d5:e7:6b:18:0e:8e:e5:4e:2f:92:76:66:9e:8f:dc:
85:71:ff:39:71:8f:71:c0:43:83:6b:50:9e:52:00:
72:a3:28:ff:b2:b2:ab:c5:b9:e0:a3:88:29:fd:82:
0e:41:b0:a7:af:cb:0d:1f:18:46:03:1a:ec:f2:7b:
82:24:07:50:d2:e3:58:47:1b:f4:87:60:8b:d9:36:
e0:44:ae:b8:db:7c:26:f5:b0:0a:c9:02:0c:fc:31:
d0:15:b9:5a:82:88:85:5c:ac:e4:35:b8:9b:5b:f3:
2a:f3:c3:c0:25:32:a0:1a:68:99:5e:25:8c:9d:2a:
a9:7b:a0:19:a7:37:be:13:28:57:0a:05:dc:b7:8b:
6e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:B3:85:44:E9:6D:F5:7E:F6:D8:2F:11:BC:2E:01:2A:73:23:16:01
X509v3 Authority Key Identifier:
keyid:6F:57:EB:49:19:6D:D2:E0:60:6D:59:77:C2:B7:4B:10:1B:79:BC:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1frSRlt0uBgbVl3wrdLEBt5vAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:70:de:5a:22:ef:0a:57:a5:94:29:8f:b7:44:59:57:f4:d9:
56:ae:7a:cf:95:7f:c6:0c:ec:4e:4b:39:dd:e3:a1:f0:ae:52:
35:7c:cc:de:8c:c0:7e:9f:cd:bf:65:32:c7:c1:ff:c3:0d:e3:
a9:a3:2e:5c:f7:3c:88:a0:05:7d:89:fc:ef:22:5c:54:98:db:
33:44:8d:ec:98:4a:83:2b:63:05:10:8a:3f:c4:cb:51:b3:73:
6e:38:f8:ad:21:4e:d9:19:89:52:7a:78:1a:66:8e:0b:d1:97:
2d:3a:e2:8e:be:cf:af:b1:be:0b:cc:f8:9b:12:24:6f:40:28:
2b:17:96:84:32:09:f0:08:52:1d:b4:a3:2b:82:95:c6:42:b9:
9e:78:e9:01:63:a4:88:81:2a:62:b2:9d:3d:a1:be:67:20:e6:
6e:39:0d:14:3d:16:6a:28:27:d0:a0:89:cd:d6:dc:d3:a4:8d:
06:3d:bd:29:0f:ca:4f:1b:61:8d:04:bf:d0:a7:f7:59:ca:5f:
cf:ad:fe:35:e0:9c:ae:0f:d8:33:90:9d:c0:72:a0:74:a4:8a:
33:d4:7c:f4:3c:d0:17:8c:e5:4f:97:0b:10:42:c1:a3:8a:05:
6d:7a:b6:09:b8:b4:7b:81:58:be:0c:27:0a:ae:4e:1e:7d:b9:
8e:77:be:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:52:16 2025 by rpki-client