Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
File: B-pSPsf5N3oanl1vqGgX7T1sCoI.mft (raw, json)
Hash identifier: JbR2ykYedIeJbHGyug+wSjhkYV3l9QpccfblcEwOjD8=
Subject key identifier: 30:B6:DA:49:E4:CF:16:DC:AF:18:9D:69:4D:4F:94:33:5B:EC:9D:5D
Authority key identifier: 07:EA:52:3E:C7:F9:37:7A:1A:9E:5D:6F:A8:68:17:ED:3D:6C:0A:82
Certificate issuer: /CN=07ea523ec7f9377a1a9e5d6fa86817ed3d6c0a82
Certificate serial: 0199FFFEB34A473F78637515C262073E57C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
Manifest number: 16E2
Signing time: Mon 20 Oct 2025 05:01:46 +0000
Manifest this update: Mon 20 Oct 2025 05:01:46 +0000
Manifest next update: Tue 21 Oct 2025 05:01:46 +0000
Files and hashes: 1: B-pSPsf5N3oanl1vqGgX7T1sCoI.crl (hash: ELG9xlvUopN2Uxmoj7AWhgMxCEwboRMjEbwv5KUfnGs=)
2: npXHmGXZGuLcOHTCUM12CgHnXyg.roa (hash: 1gC/eDL6k6iHyWBQvbxBWaVuZWHOyh/0XMWrseRbP5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 05:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:fe:b3:4a:47:3f:78:63:75:15:c2:62:07:3e:57:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07ea523ec7f9377a1a9e5d6fa86817ed3d6c0a82
Validity
Not Before: Oct 20 05:01:46 2025 GMT
Not After : Oct 21 05:01:46 2025 GMT
Subject: CN=30b6da49e4cf16dcaf189d694d4f94335bec9d5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:97:4e:08:dc:aa:c6:62:71:0f:6c:cf:35:57:
c6:1b:4a:f8:31:16:df:9e:c3:13:4e:81:76:52:72:
82:18:56:08:c3:d1:1e:95:9f:01:45:35:c5:e2:3a:
1b:cb:05:85:9a:0e:70:28:4b:33:27:f9:a1:08:32:
3f:7d:26:4d:28:89:54:f0:91:23:c6:4a:e2:c3:d5:
37:69:4b:ca:8c:bb:55:cf:53:5a:79:a5:9f:0d:02:
ee:d8:63:d6:3b:26:c4:14:80:1a:5f:67:b0:3c:0f:
f3:73:67:68:74:19:0a:14:c9:a3:00:32:ba:7f:2c:
6a:b3:cd:65:71:bb:17:a1:af:5e:38:0e:05:7a:aa:
80:fd:58:dc:6d:1f:66:2a:a0:90:0c:f2:82:5e:00:
c6:df:6d:d9:e7:74:6c:8a:22:a4:e9:9e:cd:0a:28:
44:e6:c0:79:a4:e4:75:e2:9f:77:a2:0a:47:ea:81:
40:65:ef:5a:37:30:ec:30:74:df:fe:b9:c6:4c:61:
a1:58:18:12:f9:ea:de:f5:74:18:39:ba:35:2b:33:
07:45:5b:13:9b:a9:62:e5:03:2b:37:60:7c:ae:de:
c1:4b:86:35:d2:d5:4a:37:cf:75:4f:db:c6:1c:24:
13:59:38:38:91:32:ea:25:1f:e8:d5:73:0b:75:66:
6d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:B6:DA:49:E4:CF:16:DC:AF:18:9D:69:4D:4F:94:33:5B:EC:9D:5D
X509v3 Authority Key Identifier:
keyid:07:EA:52:3E:C7:F9:37:7A:1A:9E:5D:6F:A8:68:17:ED:3D:6C:0A:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:c7:34:06:59:f8:cc:f6:e6:0e:5e:e1:c4:44:b3:03:de:a6:
a6:63:9d:de:2d:aa:92:f9:23:b8:5c:c4:53:4a:c4:99:a3:27:
db:f4:57:2c:9c:e1:dd:79:c1:59:a2:45:3d:6e:be:97:b3:96:
2c:b1:d9:b9:d1:58:79:6f:c3:46:85:5f:41:c9:84:af:c0:76:
5e:61:69:a6:27:53:da:9c:51:c8:c4:4d:22:ef:00:b5:fd:d9:
27:ba:14:10:0b:8f:19:c8:9d:21:8a:12:e7:cd:2c:e5:03:42:
fc:a1:af:f0:31:32:7e:83:da:e1:bb:5a:59:d6:fc:dd:3d:a6:
3c:70:00:4a:61:56:22:85:8b:b5:d5:d9:16:48:b1:50:b0:cb:
26:9f:91:dd:72:81:42:69:1a:60:53:2d:f7:36:34:ff:72:7e:
1d:a3:97:fd:00:32:8a:cb:cd:51:50:6e:65:bf:f9:eb:52:02:
22:d6:26:58:9c:23:b4:af:ae:e8:fd:80:8b:80:ff:0b:d3:b4:
5e:64:ab:72:b8:ab:02:e4:cf:72:2a:c6:cf:d8:01:94:8d:19:
7b:f1:37:12:f8:8e:d6:fd:91:56:48:d4:63:06:f9:7a:61:6a:
86:73:3c:28:2e:46:62:67:74:53:f5:9a:c2:bb:bc:f6:f3:12:
60:35:f7:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:07:44 2025 by rpki-client