Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
File: BaO2FkB7l-JhFjNId8aqkoqq7rI.mft (raw, json)
Hash identifier: kOwXfOrhAj5mY2/kXHkmvIcgyNKUMWw2O3i3PTIgYyk=
Subject key identifier: 0A:D2:1A:EA:99:96:C8:BD:EA:F5:A5:91:AB:E6:D0:91:27:33:4A:05
Authority key identifier: 05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
Certificate issuer: /CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Certificate serial: 0199FD34847B1374C1B2B8E6C5E4A80A3EFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
Manifest number: 0AD1
Signing time: Sun 19 Oct 2025 16:01:41 +0000
Manifest this update: Sun 19 Oct 2025 16:01:41 +0000
Manifest next update: Mon 20 Oct 2025 16:01:41 +0000
Files and hashes: 1: BaO2FkB7l-JhFjNId8aqkoqq7rI.crl (hash: 2QIlSErNpQ+KzlaWhdgTDluRF/f+VGBcgGEry70Z5bs=)
2: bDkAt0CCYnB2xqRfpALpEK1gmgo.roa (hash: HzyjrIASJdGjjHtk6b54LHkaX+3Gt8eRcO+z/aYxOaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:84:7b:13:74:c1:b2:b8:e6:c5:e4:a8:0a:3e:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Validity
Not Before: Oct 19 16:01:41 2025 GMT
Not After : Oct 20 16:01:41 2025 GMT
Subject: CN=0ad21aea9996c8bdeaf5a591abe6d09127334a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:08:e3:fc:57:52:0f:a9:80:3d:05:5b:86:f4:
71:7c:f3:02:4f:4a:2e:3f:7a:da:2c:fc:58:84:ea:
ae:c9:23:f2:41:ae:d1:54:72:e6:10:ed:96:06:15:
a3:7a:74:76:0b:80:84:5e:72:9c:ab:b2:27:7c:24:
38:6c:cc:f1:f3:50:4d:c4:44:52:b2:41:0d:5d:f2:
25:05:2d:d4:27:3e:c3:82:a4:25:e1:be:5d:44:bc:
2f:b2:eb:f0:46:7b:39:b5:af:28:22:ee:e4:34:e6:
4f:86:15:ad:27:55:c9:b0:39:03:ec:31:97:2e:58:
e0:13:81:ec:fe:d4:ee:dd:b6:34:c3:e5:26:54:d2:
44:b6:b0:b3:e7:2b:b3:e0:b2:e3:e8:f6:b8:2e:50:
16:b6:35:2c:09:5b:7c:82:86:9d:72:8d:f2:21:a0:
5a:8e:fa:62:8d:ac:cf:ce:c9:da:b2:4c:2b:f6:b1:
ba:c1:a1:49:e1:62:79:eb:c2:7c:08:ce:49:f4:1d:
50:25:bb:13:74:5d:e8:4d:15:9b:85:e0:8e:c1:ab:
cf:e7:af:2b:8f:10:31:39:9a:95:9c:ca:6e:ca:97:
03:58:48:d5:ea:4d:1e:69:8d:f3:5e:59:5a:d6:10:
87:22:70:3c:8e:04:1a:d7:35:7c:0f:0c:a0:05:17:
59:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:D2:1A:EA:99:96:C8:BD:EA:F5:A5:91:AB:E6:D0:91:27:33:4A:05
X509v3 Authority Key Identifier:
keyid:05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:7d:78:da:e7:c3:52:a9:90:d2:b6:a0:dd:65:11:35:ba:1f:
cb:0d:d9:77:f0:ac:d2:55:53:9a:e7:5b:1b:98:bb:2d:64:a3:
dd:57:d4:e6:cd:ed:ff:d0:d5:8b:86:1d:30:10:62:a5:f2:a2:
b1:45:fc:04:7b:9c:10:31:24:1f:89:f4:90:b7:f2:e5:d4:7c:
57:a3:dc:ea:da:56:f6:73:1a:62:bf:cc:f6:7c:58:c8:7d:c6:
6e:cd:c7:8e:0b:88:93:5b:9a:19:10:37:20:3c:29:af:75:17:
3c:fb:03:62:f3:d9:b7:b9:f5:fe:b4:ad:c7:72:c8:65:ed:62:
79:f0:0a:92:c7:54:cf:0a:48:c6:e9:7b:24:f3:6a:d2:45:1c:
41:e3:62:b1:a1:eb:39:ee:95:1b:1b:42:b7:51:cc:cd:87:40:
ec:5a:69:1e:34:9a:4a:12:f9:9d:3b:6b:04:71:11:e0:c9:d2:
07:62:4d:85:0a:cf:43:59:e6:96:58:16:ab:36:00:cc:4a:91:
eb:02:df:b2:42:fc:f7:63:1c:8d:d9:90:21:d2:60:5d:f1:c3:
f3:d3:1d:f3:89:12:c7:96:0a:8a:ae:06:5f:4b:5f:53:04:44:
86:19:93:31:95:10:3c:a3:64:33:8f:65:2e:3b:7d:dc:52:4f:
8f:3a:95:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:55:49 2025 by rpki-client