Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
File: bG9jkROWOM74MYEUEyzPJuFn06Q.mft (raw, json)
Hash identifier: gp+ctHt1NPaCANB1eR+PBTd9KQ1FM9np/qXAwntwoxY=
Subject key identifier: 7D:4A:D8:2B:09:16:E5:68:70:4F:47:2E:69:E3:76:36:13:4D:DB:4E
Authority key identifier: 6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
Certificate issuer: /CN=6c6f6391139638cef8318114132ccf26e167d3a4
Certificate serial: 0199FBEAE805F3DF4B93C49B71D37C0820C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
Manifest number: 13BB
Signing time: Sun 19 Oct 2025 10:01:39 +0000
Manifest this update: Sun 19 Oct 2025 10:01:39 +0000
Manifest next update: Mon 20 Oct 2025 10:01:39 +0000
Files and hashes: 1: _HGowDUCSG2pcAysO4ogxA6yosc.roa (hash: UPTC6ZbpFxK2iqUZ6z67RcYvcbR0/gldSq3kNUHLLJI=)
2: bG9jkROWOM74MYEUEyzPJuFn06Q.crl (hash: HqyqSdnSRa2XzUS/rEdSQKDUtGytJzJbKVQtGzZWH0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:e8:05:f3:df:4b:93:c4:9b:71:d3:7c:08:20:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c6f6391139638cef8318114132ccf26e167d3a4
Validity
Not Before: Oct 19 10:01:39 2025 GMT
Not After : Oct 20 10:01:39 2025 GMT
Subject: CN=7d4ad82b0916e568704f472e69e37636134ddb4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:cd:69:20:74:14:f9:f3:de:5f:b7:de:69:01:
71:2a:88:6b:33:70:d4:f9:a3:98:a7:41:26:a6:9e:
78:6d:39:72:8b:70:c2:bc:94:6d:6b:4c:90:7a:8f:
1b:4a:19:2e:89:19:bb:40:cb:49:7c:85:e7:af:1e:
d0:7e:60:ac:bb:0b:d4:5b:fe:1a:c2:05:18:52:41:
36:dc:cf:9e:b5:71:db:93:7d:87:bb:48:99:cd:18:
d5:72:cb:61:f5:1c:84:62:4d:59:a8:59:ab:67:4d:
f3:54:31:22:dc:0b:e6:3f:81:2b:b5:4f:b4:2f:55:
a7:7d:17:0d:a8:ba:9a:82:f1:f7:27:14:cb:ab:f9:
89:81:3f:32:45:f4:24:c9:02:b9:7f:f6:41:54:dd:
d1:a7:e3:1e:94:fe:99:aa:cd:96:a7:91:f4:a7:c9:
90:cb:80:db:08:46:5f:6a:a7:1e:b8:22:97:08:78:
c4:27:fd:a8:2a:fc:fa:8f:9d:74:e3:41:80:2f:84:
89:31:ef:da:c7:40:80:1a:c8:88:f9:98:05:d2:65:
62:a3:04:0f:dc:09:01:93:90:9b:af:89:70:4e:9d:
26:c7:ca:fd:74:06:33:8b:6b:55:fa:f3:d6:f9:43:
b5:2c:f6:58:ad:33:cf:70:56:c4:11:a5:7b:25:f6:
db:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:4A:D8:2B:09:16:E5:68:70:4F:47:2E:69:E3:76:36:13:4D:DB:4E
X509v3 Authority Key Identifier:
keyid:6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:2d:78:ff:87:18:27:4b:50:a7:0b:68:df:e1:fa:b5:d5:ae:
b2:73:20:0a:46:aa:1a:8a:55:3c:d1:51:7a:db:83:06:db:89:
2f:25:4c:f9:87:55:81:4f:65:40:48:8e:49:d9:f9:5c:ee:b6:
dd:14:4d:e7:02:53:b3:38:65:31:f6:26:9f:10:53:9d:8f:56:
97:5f:93:80:19:5e:1f:1a:34:bb:85:be:d1:b6:8d:16:0e:cd:
54:85:82:e4:b1:31:e1:6a:95:cc:ba:d7:89:0f:2f:e5:06:cc:
ea:7d:77:29:f8:1a:4c:20:bf:3e:6f:6b:87:00:eb:56:f7:cd:
e5:4d:1d:0b:30:cc:9c:1c:1e:6d:50:61:06:24:1a:8d:a0:2c:
32:0f:51:66:31:28:29:74:7e:5c:60:d6:d5:20:e8:78:b4:2f:
6d:e7:3d:62:c2:4c:f3:ee:58:28:2d:c9:24:19:0f:c9:b3:1f:
95:76:a2:cd:c6:2a:29:d6:22:75:bb:79:69:ff:45:b1:9e:bd:
90:9c:0e:50:45:13:ac:da:3c:a4:44:d3:e6:65:06:79:5d:24:
61:b3:61:1a:0b:a0:12:00:23:e3:0c:1b:45:d8:ad:3d:8a:52:
1c:54:20:9e:92:36:13:9d:0a:94:72:f2:72:a5:28:50:1e:a0:
a9:f8:dd:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:25 2025 by rpki-client