Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft
File: bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft (raw, json)
Hash identifier: 2RKF0/1fJNBWb7jnSi64RGQFDP4bFSNkTOF0aZ/6udc=
Subject key identifier: 2F:DF:65:2B:5E:C0:A0:08:DC:C7:04:AD:DC:1E:CD:8B:1F:4D:9B:90
Authority key identifier: 6C:95:FD:CA:36:7B:CE:19:E2:F2:53:B7:8F:36:08:FF:34:14:28:C9
Certificate issuer: /CN=6c95fdca367bce19e2f253b78f3608ff341428c9
Certificate serial: 0199FCC67B653C84934A8AC0A3E123CF6F76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJX9yjZ7zhni8lO3jzYI_zQUKMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft
Manifest number: 02AD
Signing time: Sun 19 Oct 2025 14:01:30 +0000
Manifest this update: Sun 19 Oct 2025 14:01:30 +0000
Manifest next update: Mon 20 Oct 2025 14:01:30 +0000
Files and hashes: 1: Lf1xzTXAc6SiNDJtIVl8iWMf5b4.roa (hash: Mlu5t33KkThbOioHblpilqA5fDGAJvYvW4onNzjvD5s=)
2: bJX9yjZ7zhni8lO3jzYI_zQUKMk.crl (hash: B73VfW/hm8m1zTwM1cvEszviD252GIU5pLHbp3HM9YU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJX9yjZ7zhni8lO3jzYI_zQUKMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:7b:65:3c:84:93:4a:8a:c0:a3:e1:23:cf:6f:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c95fdca367bce19e2f253b78f3608ff341428c9
Validity
Not Before: Oct 19 14:01:30 2025 GMT
Not After : Oct 20 14:01:30 2025 GMT
Subject: CN=2fdf652b5ec0a008dcc704addc1ecd8b1f4d9b90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:00:9e:bc:38:12:12:f9:e6:22:ee:4a:93:8f:
34:b1:b0:e2:85:c3:7f:1b:2e:bc:72:3b:f5:f8:09:
d3:b9:c3:72:4c:f6:cb:bf:02:1b:fd:2b:18:93:e4:
3c:42:47:d5:35:70:3d:88:63:3c:92:37:ac:0d:b9:
06:3d:a5:b3:21:57:3c:0f:15:d0:cb:3e:97:d2:47:
26:21:b7:b8:e1:7e:45:82:56:08:a8:64:5a:1d:c3:
16:09:95:ee:c8:f1:a0:10:69:c7:b5:51:27:cb:e0:
ca:12:9f:01:32:29:16:49:9f:82:5a:5b:dd:e3:81:
05:18:ea:cb:dd:5f:2c:88:69:03:c6:f9:bc:ad:bc:
09:2b:36:59:f2:1f:3b:a4:b8:bb:0c:a5:6c:be:e0:
3c:cf:ec:06:7b:f6:ff:35:17:fb:9e:54:0e:24:5d:
d7:86:c3:d9:bd:ac:37:20:06:88:af:96:d8:18:80:
5e:82:e3:06:de:e1:cb:df:08:20:01:79:72:5e:9d:
ed:4c:3a:aa:60:b3:09:30:17:a6:ce:69:ee:95:8a:
dd:23:a2:7c:17:0f:1f:87:7a:f5:cc:ec:4b:bc:02:
c5:9a:9e:2e:17:ed:7d:12:ed:43:d7:15:57:4e:0b:
13:ce:db:f1:c8:76:1c:46:eb:4f:37:9b:03:e3:2f:
64:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:DF:65:2B:5E:C0:A0:08:DC:C7:04:AD:DC:1E:CD:8B:1F:4D:9B:90
X509v3 Authority Key Identifier:
keyid:6C:95:FD:CA:36:7B:CE:19:E2:F2:53:B7:8F:36:08:FF:34:14:28:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJX9yjZ7zhni8lO3jzYI_zQUKMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:eb:2a:d0:8d:78:7a:f3:68:f0:21:8a:ee:e5:f8:c6:cd:33:
8d:ec:42:87:36:f6:8e:99:a2:0a:93:52:d3:f3:f2:ca:3f:02:
24:e6:cc:e5:f7:46:d2:c5:c7:08:bd:7a:83:cb:23:e3:6d:b0:
13:f2:89:eb:e5:f8:6a:67:cb:9c:f6:9a:df:c9:fe:80:5e:ab:
c3:d4:a8:00:92:ae:b4:41:5a:9e:67:ed:30:ce:16:23:ab:59:
34:11:f8:4e:d2:1f:43:94:2f:b8:56:b6:27:62:4e:e2:36:d0:
7e:0c:e6:e6:33:3c:c9:d3:9e:2c:4e:9e:d3:59:bb:4d:3d:32:
77:10:71:8c:b1:76:4d:c7:c7:c6:4b:f5:14:58:d2:75:93:b7:
3a:7e:f1:82:38:09:31:82:72:e3:16:f5:d8:e5:3f:05:b4:b7:
f1:cd:7e:bb:10:fa:29:00:7a:41:f8:51:c4:9d:05:6e:09:c7:
e9:9e:05:ec:df:76:fd:0d:8b:ab:bb:75:e0:0b:09:55:b7:f9:
93:27:68:c5:fb:c1:63:e1:c4:b6:1b:ae:f9:ca:01:b6:40:c1:
66:25:0f:6d:c7:f3:25:83:72:54:22:48:12:5d:3a:2b:d7:98:
70:d1:4b:9d:14:3f:77:d4:b9:b6:23:82:34:95:0d:af:32:13:
d8:f6:10:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:07:39 2025 by rpki-client