Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft
File: BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft (raw, json)
Hash identifier: 6IPVYim9wuVt7GsY7ZyV73ojZGo84sO4LgxxDAq8c6g=
Subject key identifier: C4:51:89:96:65:AB:1D:17:2A:CE:15:B7:96:1B:B7:1F:FA:BB:FE:6E
Authority key identifier: 06:C3:B8:B5:F3:7E:21:06:82:50:57:1F:4D:B8:3B:47:14:46:8A:2C
Certificate issuer: /CN=06c3b8b5f37e21068250571f4db83b4714468a2c
Certificate serial: 0199FD344AD5F91C5D37DCE93866D095562B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 16:01:26 +0000
Manifest this update: Sun 19 Oct 2025 16:01:26 +0000
Manifest next update: Mon 20 Oct 2025 16:01:26 +0000
Files and hashes: 1: BsO4tfN-IQaCUFcfTbg7RxRGiiw.crl (hash: TOmHSg9XVGYbrujqVBQqo3YNEUd0QS2ure937mYBn1M=)
2: pa3jfF65O1LeusJmZP9_Hq2CHUA.roa (hash: DB5zR9clFk0B3PVw7uwrAY7t9bq1MxHbsRq/+LHkr9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:4a:d5:f9:1c:5d:37:dc:e9:38:66:d0:95:56:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c3b8b5f37e21068250571f4db83b4714468a2c
Validity
Not Before: Oct 19 16:01:26 2025 GMT
Not After : Oct 20 16:01:26 2025 GMT
Subject: CN=c451899665ab1d172ace15b7961bb71ffabbfe6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:59:e7:dc:19:74:86:6a:15:f9:99:ab:0a:b1:
ff:10:8e:73:a7:a2:bd:17:25:e3:e5:37:ca:48:c2:
34:06:0f:38:69:1a:9e:c3:2e:a2:16:37:a4:4e:e9:
81:de:f3:1b:90:bb:f2:b2:a3:b3:38:fc:8f:ad:23:
94:59:93:be:79:41:6b:f3:85:6b:c1:27:7b:9b:d5:
df:90:a7:e0:e9:94:ea:49:46:0c:00:71:6c:03:ac:
62:81:8c:0a:d1:4b:94:21:b6:df:2c:5e:62:db:af:
e8:4f:f2:36:a3:e7:a5:0a:c4:bd:ed:0f:eb:04:42:
f4:a4:51:2f:9d:b7:9c:ce:33:d5:62:88:5c:14:9e:
24:9b:f4:90:ea:57:52:10:17:d7:cf:6e:f5:11:ae:
a6:8c:f4:b3:f6:d1:b4:62:d1:58:75:1e:fe:dd:1a:
aa:06:e7:b1:7a:4d:80:f9:81:f6:4b:fb:38:95:a9:
92:16:c6:98:c2:ae:69:a1:55:ad:c5:42:54:01:c3:
6b:1f:ca:e5:c8:fe:19:2c:1c:7b:8b:90:7a:20:28:
52:ee:be:67:51:e4:8b:40:d5:2c:c9:67:1f:be:6d:
99:85:07:fd:c6:a2:fb:6c:0b:00:5f:a3:a1:1b:71:
ed:b3:02:21:37:20:e0:c5:79:c1:69:f7:84:0a:b3:
ad:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:51:89:96:65:AB:1D:17:2A:CE:15:B7:96:1B:B7:1F:FA:BB:FE:6E
X509v3 Authority Key Identifier:
keyid:06:C3:B8:B5:F3:7E:21:06:82:50:57:1F:4D:B8:3B:47:14:46:8A:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:a9:24:96:c4:98:2d:16:da:e2:58:c1:28:f5:20:b7:30:9b:
91:54:58:04:e0:e2:bc:09:ba:f5:b7:3f:54:6c:75:27:2f:17:
b0:7c:5a:ac:78:e1:b1:d1:14:17:66:63:fd:cc:78:9a:e3:2e:
60:3b:3d:b2:cc:a9:32:9a:09:2d:cb:90:e7:01:44:eb:29:3d:
83:24:02:04:4a:b9:27:cc:e2:a9:c9:0f:51:d7:b7:cb:0e:b2:
01:cd:c7:f2:af:0b:9a:31:c4:a4:ba:ac:ed:e0:fb:48:7d:e0:
53:d4:1b:de:94:c3:31:39:df:48:8f:71:92:f6:d7:9f:42:98:
13:d3:5d:8f:f7:08:c9:2f:9f:cc:01:10:67:d9:42:91:f3:05:
76:c4:b9:04:83:3b:09:7c:f5:0e:6a:5e:53:72:7d:ac:c9:1d:
96:77:fb:cb:44:4e:b3:84:0d:d7:d8:1d:cc:a2:4e:b3:67:25:
67:e2:6a:17:a7:56:25:9f:35:c7:97:d3:0f:c8:f7:71:cf:cf:
e1:92:66:5b:0f:0d:5f:7c:a4:9a:a4:aa:c7:21:4d:58:a2:2a:
29:8c:ca:b3:a3:1c:a0:6e:67:42:c0:8b:39:53:86:11:ef:ac:
7e:83:7c:88:0a:ef:a5:e2:b5:7d:2d:91:bf:f2:9c:c9:d4:14:
c5:68:3c:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:40:34 2025 by rpki-client