Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft
File: bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft (raw, json)
Hash identifier: R8Ff6nRQUBxO3i748z8Vv95UN6wK/htlfP0ewR1A3Lw=
Subject key identifier: BD:EE:D1:41:FA:27:C0:02:9E:D5:D1:B7:7E:1F:84:AC:61:A1:E9:5B
Authority key identifier: 6D:8E:0E:7E:86:77:5B:41:5D:3D:57:80:CE:4C:FE:C0:C8:59:18:9C
Certificate issuer: /CN=6d8e0e7e86775b415d3d5780ce4cfec0c859189c
Certificate serial: 0199FF2286B6CF1EBF2714B3F127FF9456D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft
Manifest number: 1472
Signing time: Mon 20 Oct 2025 01:01:16 +0000
Manifest this update: Mon 20 Oct 2025 01:01:16 +0000
Manifest next update: Tue 21 Oct 2025 01:01:16 +0000
Files and hashes: 1: bY4OfoZ3W0FdPVeAzkz-wMhZGJw.crl (hash: cscq5lrYVvsdwSUJHNkNpsqhgAjYrX7zapDlg5sw2nk=)
2: qgSgsUNmjGc3XOuValdIkwwl07g.roa (hash: K6iu6N/DtzSRuE8h4cXXnk/shnPgBX6kLrlWrpVPx3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft
rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:22:86:b6:cf:1e:bf:27:14:b3:f1:27:ff:94:56:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d8e0e7e86775b415d3d5780ce4cfec0c859189c
Validity
Not Before: Oct 20 01:01:16 2025 GMT
Not After : Oct 21 01:01:16 2025 GMT
Subject: CN=bdeed141fa27c0029ed5d1b77e1f84ac61a1e95b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ff:16:39:34:59:02:5a:2d:8b:d8:ec:17:2c:
20:76:d2:ad:5f:e9:a3:69:95:a8:85:1d:5a:27:b6:
06:db:c3:75:54:be:1d:ed:ef:3d:89:cf:eb:20:05:
97:96:0a:78:bb:47:95:43:1b:c5:4a:6e:68:ab:7b:
e9:2d:22:aa:8a:30:2b:79:83:28:16:28:c0:d1:d3:
92:a4:bf:a7:de:fb:ec:dc:3d:0a:4b:4b:d6:2e:4a:
26:65:0a:de:60:c4:1e:cc:9d:16:29:8c:60:4f:86:
6d:a0:30:e8:4a:28:cc:c4:76:b5:38:16:64:fc:c6:
ee:36:24:be:63:e2:7a:b2:4a:a3:0c:fa:9e:7a:0f:
76:da:e7:2e:fa:50:65:13:39:83:71:44:81:6d:3e:
54:e0:f6:ec:b1:2e:0c:1d:b2:78:e6:ae:35:29:03:
20:cf:76:23:1e:15:fb:8b:6d:6d:43:5a:0b:09:91:
61:96:e1:80:fc:50:8c:68:fc:82:e4:7a:ac:0f:0d:
81:83:2b:18:ab:4b:bc:ee:34:1e:7c:5d:0f:fe:84:
33:77:2b:a7:15:ef:1f:92:26:57:b5:4e:8b:70:01:
c8:4f:b4:de:23:5b:1b:3d:da:63:f6:6e:10:68:cd:
be:ab:b5:9a:b4:73:0b:50:c9:92:13:17:2b:79:5f:
b7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:EE:D1:41:FA:27:C0:02:9E:D5:D1:B7:7E:1F:84:AC:61:A1:E9:5B
X509v3 Authority Key Identifier:
keyid:6D:8E:0E:7E:86:77:5B:41:5D:3D:57:80:CE:4C:FE:C0:C8:59:18:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:58:5c:6d:09:e4:dd:e7:9a:6f:92:62:0d:54:29:0c:ff:bc:
8b:f5:1b:07:2a:4d:87:e5:71:97:33:ab:01:d8:5a:2d:5f:3e:
06:72:7e:4c:47:32:08:9d:33:74:13:3e:a3:60:54:bd:75:f4:
03:83:1f:1b:eb:63:9d:13:da:87:d6:7c:6d:fe:50:e2:5d:b4:
2d:8b:bf:54:f1:5d:dc:5e:3d:79:fb:f7:26:a3:25:80:31:f2:
17:8a:a0:d7:07:7f:86:06:91:e9:5f:eb:79:bc:06:55:01:2c:
65:14:e2:ac:a3:57:5a:ae:84:61:02:4e:a8:c5:2e:99:e5:72:
72:f8:39:9c:b6:c5:86:89:81:8e:a9:9d:02:65:97:f6:05:9e:
65:8b:e0:7d:c0:3f:bb:a6:89:eb:f3:cd:40:6c:12:98:8f:8b:
f0:37:c5:4e:8a:53:d9:32:78:0b:05:78:5c:06:21:2a:f3:7a:
a3:bc:16:08:ba:6c:e6:85:45:2e:48:5a:71:bb:b9:c5:95:1f:
c7:e6:f0:e6:d1:96:fd:cd:ed:fd:cd:be:b6:7f:f3:81:7e:83:
68:f8:45:32:d0:cf:e6:0c:55:ab:5c:c4:19:3d:f4:8b:46:9d:
45:11:b7:ce:37:8a:f1:5a:84:5f:a9:61:43:dc:e7:69:11:f7:
4a:86:bf:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:56:56 2025 by rpki-client