
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.mft
File: bQBRmLdFcqFWq2PyMIWJe9PM1Bs.mft (raw, json)
Hash identifier: roamsnK6ug43nw0F6u5oEE9Q1ZBys8Dz08qWNqG9G1o=
Subject key identifier: 8B:D0:93:70:5F:BA:22:66:57:28:23:7E:21:EB:FA:D9:F3:CE:7F:8D
Authority key identifier: 6D:00:51:98:B7:45:72:A1:56:AB:63:F2:30:85:89:7B:D3:CC:D4:1B
Certificate issuer: /CN=6d005198b74572a156ab63f23085897bd3ccd41b
Certificate serial: 0199FB46155F27B70123757A39953EC740DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.mft
Manifest number: 0306
Signing time: Sun 19 Oct 2025 07:01:38 +0000
Manifest this update: Sun 19 Oct 2025 07:01:38 +0000
Manifest next update: Mon 20 Oct 2025 07:01:38 +0000
Files and hashes: 1: bQBRmLdFcqFWq2PyMIWJe9PM1Bs.crl (hash: X8f55fl4XLBmu7zpRsQ7Pkw9JMpIEAhK52O+8RTYOCA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:46:15:5f:27:b7:01:23:75:7a:39:95:3e:c7:40:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d005198b74572a156ab63f23085897bd3ccd41b
Validity
Not Before: Oct 19 07:01:38 2025 GMT
Not After : Oct 20 07:01:38 2025 GMT
Subject: CN=8bd093705fba22665728237e21ebfad9f3ce7f8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d4:07:5c:ed:8c:58:69:3f:23:06:32:32:de:
2d:6b:fd:00:23:c4:17:5e:20:3e:eb:e3:77:45:1e:
64:84:4f:db:1a:fa:44:98:0b:8a:c1:bd:d7:66:79:
60:d6:3a:86:10:b9:dc:b9:59:a6:c9:05:1b:0b:88:
86:94:3c:ac:30:63:69:fd:35:9c:0c:de:a7:ef:3b:
fa:e7:da:f5:f7:89:af:0e:14:5d:eb:83:4b:78:57:
4c:91:0d:f6:b2:9a:cd:cb:49:ba:f8:e2:58:60:8a:
21:28:ec:84:fc:7f:b6:f4:02:ee:0e:1e:e7:07:48:
62:6b:90:98:c6:cf:6c:ac:bd:c5:57:24:ab:3c:5f:
30:fe:7c:d6:2d:f9:3a:60:7d:66:01:51:fb:5d:1c:
da:80:77:5b:ff:7c:c0:71:de:fd:10:58:c3:09:5d:
1f:0c:e8:db:66:3d:9e:33:a2:d2:64:02:65:2b:a6:
d4:90:51:22:4a:d2:61:65:4f:95:2d:42:7c:e5:d1:
20:00:aa:2a:0e:91:96:a0:54:95:60:50:68:7b:56:
b6:9e:a4:e4:d8:52:20:e5:96:ee:be:ed:a8:40:dc:
19:cc:70:34:8c:30:c3:b9:eb:c1:f1:ee:96:f2:b2:
16:ea:fe:ab:60:c8:54:1c:87:1f:74:f1:90:2a:72:
54:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:D0:93:70:5F:BA:22:66:57:28:23:7E:21:EB:FA:D9:F3:CE:7F:8D
X509v3 Authority Key Identifier:
keyid:6D:00:51:98:B7:45:72:A1:56:AB:63:F2:30:85:89:7B:D3:CC:D4:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:f6:e4:4c:af:09:b9:8e:d9:8a:56:ed:af:b3:b7:14:56:54:
82:cc:ba:2a:32:b6:99:9d:94:3f:74:d0:de:01:da:41:2a:1c:
a8:4d:b5:c0:f8:07:5b:0a:db:cc:2c:56:0b:67:29:af:ce:9c:
79:87:9d:f8:ac:b2:5e:f5:3e:e0:07:c0:49:29:e9:1c:75:9c:
2b:80:eb:9c:4f:46:23:5f:fb:fb:5b:0d:88:56:98:99:2f:74:
bc:4b:2a:8b:24:df:88:d2:d9:8c:89:6c:08:3a:39:af:d3:26:
44:29:3a:38:54:fa:63:44:31:99:10:b3:f4:d0:c2:1a:22:23:
64:10:93:e5:02:95:14:ff:b3:6d:85:36:2b:42:33:68:c6:6f:
f0:a2:53:97:d3:11:3e:67:2f:4a:e6:7a:ce:9d:79:4c:67:de:
e9:b1:56:5d:eb:cc:61:82:d8:2b:a0:23:c9:97:6d:1a:97:7c:
58:d9:fd:0d:c7:09:1b:40:53:f7:04:e6:98:b9:d2:21:59:db:
c2:e9:36:1b:53:1b:a2:64:d0:c3:48:57:24:a3:b2:45:90:48:
27:40:59:db:71:d2:bc:4b:a3:61:07:30:54:54:d7:be:3e:41:
0d:68:df:9a:15:d2:77:a9:3e:b1:b7:a9:a3:e8:aa:d3:d5:99:
84:ee:e9:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:13:03 2025 by rpki-client