Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
File: bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft (raw, json)
Hash identifier: LKtY3SbakLlnfaWfwG53EFAKNcIDUVzlO1SdKz4xSD4=
Subject key identifier: A4:EE:00:C0:25:FA:C0:FE:07:7E:F8:1D:80:7C:09:67:D7:7D:80:1E
Authority key identifier: 6E:44:28:F7:F1:7B:19:C1:50:68:CA:B9:39:D3:77:94:0E:8D:4C:70
Certificate issuer: /CN=6e4428f7f17b19c15068cab939d377940e8d4c70
Certificate serial: 0199FAD81BAB2614AF27AFDE8F1D0D45608D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
Manifest number: 0492
Signing time: Sun 19 Oct 2025 05:01:30 +0000
Manifest this update: Sun 19 Oct 2025 05:01:30 +0000
Manifest next update: Mon 20 Oct 2025 05:01:30 +0000
Files and hashes: 1: bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl (hash: bDLcq6HIgK4eRph7SXn8xUDjH2jFnU+/w66w73K8Vw4=)
2: r5LfqFNzBSvkVNYj6vVDPex2eII.roa (hash: zD3Y+yhvhdTCP2LNWWBpR2SBF00RvRC4BFmgCTYqEsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:1b:ab:26:14:af:27:af:de:8f:1d:0d:45:60:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e4428f7f17b19c15068cab939d377940e8d4c70
Validity
Not Before: Oct 19 05:01:30 2025 GMT
Not After : Oct 20 05:01:30 2025 GMT
Subject: CN=a4ee00c025fac0fe077ef81d807c0967d77d801e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c6:be:30:64:bc:3c:ca:bc:b3:a9:47:bc:25:
b0:85:51:61:2f:24:6c:1e:45:3c:c2:6b:f3:6c:77:
44:12:bc:3a:36:be:fe:13:91:5b:1f:8e:ac:c9:35:
17:60:7b:79:48:2c:19:d1:08:4c:88:e7:a1:dd:17:
2f:16:05:88:49:68:5d:09:5d:06:2f:89:64:fb:84:
32:5f:c5:e5:1e:19:16:ed:7d:ce:04:ee:e0:0e:a2:
38:af:59:86:94:62:ac:f1:1e:ae:60:72:11:a4:28:
d4:7b:90:17:72:58:6f:40:9b:0d:4d:4f:46:a0:85:
9a:98:cc:e9:6a:fa:b1:d1:96:6a:17:ad:13:02:29:
c6:aa:a1:dd:30:8f:82:82:ee:1e:c3:7b:e0:c6:bd:
ec:05:9a:2c:e9:ef:b3:6d:55:4f:d1:cb:7b:e2:7d:
a0:81:ae:3e:c7:27:a3:1b:c8:7e:09:5d:eb:47:01:
f7:58:21:71:a1:ef:f0:0d:09:96:32:5e:9b:66:de:
a6:35:59:ec:cb:cf:87:53:03:db:76:80:f9:09:01:
68:e4:f8:f0:b5:18:3b:0e:5a:bb:5e:99:46:c5:fd:
c1:e1:c6:de:af:30:92:ce:02:60:34:5b:15:f9:5c:
c4:b1:fb:4d:d9:69:1a:30:65:43:82:e8:3b:42:8c:
1b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:EE:00:C0:25:FA:C0:FE:07:7E:F8:1D:80:7C:09:67:D7:7D:80:1E
X509v3 Authority Key Identifier:
keyid:6E:44:28:F7:F1:7B:19:C1:50:68:CA:B9:39:D3:77:94:0E:8D:4C:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:99:2c:4a:25:ff:6f:f5:02:37:c7:fd:0a:42:ad:33:18:70:
ba:78:63:5f:ac:e0:25:9b:7d:fa:6a:7c:07:67:94:32:a9:16:
08:5a:14:5b:b0:70:9f:ce:29:28:0c:88:ee:cc:e1:a6:f0:0e:
33:9c:b4:6a:90:e6:40:85:d2:1f:c2:dc:6b:3b:58:29:f0:21:
48:2e:27:d4:33:4f:b3:e7:33:dc:a0:fc:4e:d4:e3:35:61:02:
be:72:15:84:8f:c3:aa:0d:67:2a:03:d9:21:d7:6a:62:70:4f:
75:01:1b:4d:8c:73:61:c0:ba:eb:4b:8a:54:53:cd:9f:f8:1b:
60:d9:cf:19:7e:3b:16:37:ca:a8:30:61:07:cb:f4:db:37:8d:
51:4e:7f:3e:c1:e2:43:ca:3e:73:8b:6b:72:22:fb:e5:ef:e8:
7b:6f:04:f2:32:1e:30:7f:b6:ff:31:de:83:6e:c8:d3:75:25:
37:5e:b5:37:1b:ec:58:53:94:9f:75:39:d0:43:41:7f:05:2b:
52:16:dc:d5:9f:c3:af:70:28:12:85:d2:19:e4:b0:67:0c:f2:
a5:95:bb:05:3f:13:95:96:02:9b:25:c3:7d:cd:e7:1a:44:4a:
83:53:c9:73:28:ed:88:16:7b:1f:d1:7e:8e:7c:c7:43:59:b2:
95:42:54:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 12:52:05 2025 by rpki-client