Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
File: BXEVMhUM58l6fqSMDXekLm8NX8M.mft (raw, json)
Hash identifier: aWFYPeSVQugeQwuXGBZY0M3MgbofAkU7evFA8BFrKQU=
Subject key identifier: 07:EB:A5:59:63:B8:B0:49:66:D0:B9:8F:B1:41:FC:13:5D:E3:9C:69
Authority key identifier: 05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
Certificate issuer: /CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Certificate serial: 0199FB7CDF6BB2E97D3DAE983BB3B710D3BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
Manifest number: 0769
Signing time: Sun 19 Oct 2025 08:01:28 +0000
Manifest this update: Sun 19 Oct 2025 08:01:28 +0000
Manifest next update: Mon 20 Oct 2025 08:01:28 +0000
Files and hashes: 1: BXEVMhUM58l6fqSMDXekLm8NX8M.crl (hash: b9kx+HZuNGXb1yrRA2DwF1eS7rWlU2gmhEkvvcxLMIE=)
2: WQBZ-f5dGsC1cL_jEBOvsIELp80.roa (hash: R9ehHlzYxXlTfaqJUkztXePFQ64EbowiDEZr/EhM2e4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:df:6b:b2:e9:7d:3d:ae:98:3b:b3:b7:10:d3:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Validity
Not Before: Oct 19 08:01:28 2025 GMT
Not After : Oct 20 08:01:28 2025 GMT
Subject: CN=07eba55963b8b04966d0b98fb141fc135de39c69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:34:09:d3:cd:df:63:af:55:fb:42:16:b3:02:
30:53:60:04:5c:bb:9f:81:2c:d9:dd:39:c9:e4:a4:
78:90:58:5e:55:dc:eb:57:1c:13:c0:8c:d2:c9:63:
78:ac:78:a9:b5:36:63:1b:6b:00:68:07:a3:8d:de:
6b:e2:fe:39:79:42:7e:62:a3:d4:f4:6a:84:3b:fb:
cd:bf:43:d8:7c:7b:03:ea:ae:3c:90:b4:4c:1e:f8:
e5:b0:8b:36:8f:d9:f7:24:64:ac:99:ea:28:78:95:
dd:a3:7b:5b:76:e3:0c:0d:84:5f:76:d3:58:19:2b:
67:e9:40:01:79:6a:2a:dd:1b:bb:f4:87:80:a6:96:
43:ff:4d:45:82:7f:ee:32:58:21:46:e3:a4:6d:9b:
a9:96:aa:88:93:65:a9:72:98:d4:1f:b4:bc:ee:d7:
22:80:59:11:e1:0e:d9:8b:56:7f:b6:15:88:4a:1e:
1c:03:cb:fd:7c:fb:15:9c:da:93:7d:79:7c:88:8f:
f6:49:99:45:b8:57:03:48:2d:de:27:4f:6b:e3:e1:
4b:f1:4a:31:63:00:d7:d3:b7:87:8d:2f:dd:22:69:
a4:60:47:1a:69:69:cc:4f:cb:36:62:67:19:b3:5d:
03:5d:68:4f:5e:85:bd:b1:58:51:43:b9:dc:cf:87:
21:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EB:A5:59:63:B8:B0:49:66:D0:B9:8F:B1:41:FC:13:5D:E3:9C:69
X509v3 Authority Key Identifier:
keyid:05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:55:d6:c5:65:11:46:f9:3b:57:43:e5:72:8c:a2:d8:cd:e1:
fd:4d:f2:4b:52:a8:51:41:5f:cf:1e:3f:3b:18:b1:23:6c:2f:
61:62:ba:66:ce:fa:c8:f1:a4:8b:a6:1c:44:b3:ba:d4:f5:4a:
56:26:55:82:0d:47:d1:f1:a4:51:a9:a8:42:51:b4:c8:c7:65:
77:2d:c8:5a:d2:56:46:b9:59:fd:32:51:bd:fe:d6:78:1a:54:
a7:da:fb:eb:04:ca:59:f9:da:13:98:59:d3:b1:cf:c2:91:50:
7d:b7:84:14:d7:68:41:ce:f5:12:8b:88:ff:d4:e7:e8:f7:25:
92:28:8e:f1:7e:f8:6d:7d:2c:40:6a:da:e3:a6:83:38:2c:e1:
5e:dc:95:45:1c:54:55:7c:17:7b:77:8d:1c:96:9e:c8:98:58:
68:bc:4d:db:4f:b5:ae:16:bb:e0:23:b8:eb:6f:5a:89:00:d2:
c2:8d:9c:1f:43:81:5c:54:2b:7d:a9:e5:72:8b:74:59:2f:2b:
e3:3a:7e:0f:ba:aa:31:02:f8:6c:c5:ae:18:37:d0:a9:4a:a3:
8d:7c:0b:88:d9:11:52:5b:97:36:20:f5:aa:ef:60:d0:2f:fb:
20:c3:5b:0d:1e:ff:98:2b:a6:b7:1b:57:7a:53:a3:a9:bf:71:
97:9e:90:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:35 2025 by rpki-client