Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
File: BDqcNdnhovTTSnVPom0gNleEchg.mft (raw, json)
Hash identifier: pTPNZuMKMYAkbqdeF8x6kfbflsRHuei3rGVhzL4DaOA=
Subject key identifier: F9:2F:51:17:93:0A:5D:7B:99:06:E7:B8:22:37:5C:CB:80:95:33:40
Authority key identifier: 04:3A:9C:35:D9:E1:A2:F4:D3:4A:75:4F:A2:6D:20:36:57:84:72:18
Certificate issuer: /CN=043a9c35d9e1a2f4d34a754fa26d203657847218
Certificate serial: 019A0290634293E090CC5D5FE192A395AE88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
Manifest number: 151E
Signing time: Mon 20 Oct 2025 17:00:08 +0000
Manifest this update: Mon 20 Oct 2025 17:00:08 +0000
Manifest next update: Tue 21 Oct 2025 17:00:08 +0000
Files and hashes: 1: BDqcNdnhovTTSnVPom0gNleEchg.crl (hash: DeGHo3oqElzIN7LjR3XUkWoeYFUnMfDOOMJK1bbw3g8=)
2: dXeaBJl10vB-B0zSVkLwNY_iIs4.roa (hash: F86Ia5myX5pjFnoQkxccwMDKgx5XnQXJd15fpxB0f8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:02:90:63:42:93:e0:90:cc:5d:5f:e1:92:a3:95:ae:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=043a9c35d9e1a2f4d34a754fa26d203657847218
Validity
Not Before: Oct 20 17:00:08 2025 GMT
Not After : Oct 21 17:00:08 2025 GMT
Subject: CN=f92f5117930a5d7b9906e7b822375ccb80953340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:27:1a:9f:81:d3:60:34:75:93:da:40:c1:d2:
77:e7:b5:ae:3f:dc:d5:77:bd:d7:80:06:03:64:a2:
88:70:b3:cb:9c:41:bd:ea:eb:16:06:4a:47:ad:a6:
d6:e2:7c:48:68:97:e2:3c:56:28:52:e7:55:ba:25:
e2:8a:7a:c8:83:46:7d:05:4b:cf:61:3c:f1:c2:fe:
2c:05:70:43:02:b9:ca:63:4f:69:f2:04:5f:64:76:
0a:d3:23:cd:8e:b6:96:9c:cc:85:80:81:df:7a:5d:
9c:bc:c5:98:38:88:a7:1c:b9:92:76:f3:40:ae:8f:
fd:8c:48:db:cf:c2:3b:7c:e8:52:d1:33:84:3d:e1:
d0:7a:15:8d:28:e9:4f:5f:95:2f:f0:20:1a:df:17:
e7:fd:2f:58:35:68:14:d9:35:5f:55:31:92:51:5a:
da:f5:0d:9c:38:a0:94:2a:b9:41:be:72:56:0d:2a:
cf:e9:4b:c4:25:cd:d6:50:af:6a:f8:ee:f9:e1:c6:
e4:1e:fd:1e:17:28:a0:ae:68:78:9e:b3:e4:b3:fd:
c2:f2:14:a2:d1:4b:92:ab:0a:76:90:99:54:09:36:
d8:6c:96:03:d2:56:33:8d:5a:36:5b:47:82:50:0f:
3b:8f:a6:33:a9:53:4d:bf:eb:ce:e3:40:82:be:e7:
0c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:2F:51:17:93:0A:5D:7B:99:06:E7:B8:22:37:5C:CB:80:95:33:40
X509v3 Authority Key Identifier:
keyid:04:3A:9C:35:D9:E1:A2:F4:D3:4A:75:4F:A2:6D:20:36:57:84:72:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:26:bc:26:9a:17:6f:5d:c3:d2:22:b1:eb:44:f7:9c:32:84:
fd:44:77:e4:95:95:65:05:68:ae:ee:31:d9:24:99:0a:24:92:
43:a6:65:40:bd:a5:d4:f3:88:91:fb:3b:0a:9e:db:08:67:e8:
27:89:47:14:24:6c:d7:80:a7:86:19:7d:b0:30:6d:51:c3:d0:
5e:d8:65:93:b8:f9:44:45:a7:49:61:ca:d8:f7:6e:78:d1:0e:
bc:ae:45:06:5a:d9:5c:4e:cb:6a:82:5e:52:c2:26:fb:af:84:
52:ae:7f:52:cf:05:86:11:46:43:a5:95:7c:53:dd:3e:d5:a0:
bd:f4:da:92:db:55:62:37:a6:bf:a4:b1:a6:1f:56:16:b1:25:
be:8b:16:e0:1b:29:4c:a0:7d:cf:4c:db:de:68:36:14:d7:3f:
75:28:c2:a0:a6:85:cb:96:d3:12:be:12:ee:c5:28:01:55:8f:
0f:73:88:39:25:7b:66:50:00:30:5c:37:20:39:fc:7b:6f:8d:
8e:6f:8f:6a:b6:28:d0:4f:0d:ca:b5:ec:87:2f:e6:82:52:50:
fb:d6:0d:e3:a3:ad:a7:fa:07:95:e9:46:26:e8:50:3a:8d:56:
96:84:3e:10:4e:b2:81:05:99:28:4f:3d:3b:0f:c5:a9:4d:79:
11:e3:07:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:21:48 2025 by rpki-client