Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
File: BPD3XK7T8miFrGVjD_qu53pw69k.mft (raw, json)
Hash identifier: FW+VXsFrFMAyHYpM3jCMH6cbleXohktxKyr1JuVRec0=
Subject key identifier: D4:64:CC:20:BF:C1:F9:CF:C7:BF:B1:6C:FA:A5:B9:8B:17:3B:A6:98
Authority key identifier: 04:F0:F7:5C:AE:D3:F2:68:85:AC:65:63:0F:FA:AE:E7:7A:70:EB:D9
Certificate issuer: /CN=04f0f75caed3f26885ac65630ffaaee77a70ebd9
Certificate serial: 019A0147AFE512A7E3FAB54272E40EABF3B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
Manifest number: 1484
Signing time: Mon 20 Oct 2025 11:01:06 +0000
Manifest this update: Mon 20 Oct 2025 11:01:06 +0000
Manifest next update: Tue 21 Oct 2025 11:01:06 +0000
Files and hashes: 1: BPD3XK7T8miFrGVjD_qu53pw69k.crl (hash: /jyIsB+n14lBlbhXXoVgx/xe6gA4Bp0/cIyqjf9SsRY=)
2: ilRpOqqhCRrukRL5kvILbezdwjw.roa (hash: 09XWT+P0AZf+EnMM2PlCmZMY0UVdVh5S35frUm5Llew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 11:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:47:af:e5:12:a7:e3:fa:b5:42:72:e4:0e:ab:f3:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04f0f75caed3f26885ac65630ffaaee77a70ebd9
Validity
Not Before: Oct 20 11:01:06 2025 GMT
Not After : Oct 21 11:01:06 2025 GMT
Subject: CN=d464cc20bfc1f9cfc7bfb16cfaa5b98b173ba698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0d:47:50:5f:a8:ff:22:9f:18:dd:60:af:f4:
76:33:22:0c:3f:bf:48:a1:26:7c:0d:6a:cf:d6:46:
2b:6e:e9:95:05:15:e9:37:cf:45:92:e4:b0:9c:d8:
6b:d1:d4:d7:93:c3:78:62:51:4d:68:3b:f9:03:0b:
e3:0c:51:6f:00:44:bd:2f:07:de:8a:b3:c7:bb:50:
29:30:52:b3:72:5f:c2:94:7a:02:fa:33:fa:ef:16:
87:c2:8e:a0:2f:d2:2c:e1:94:79:d5:bf:fa:65:67:
1e:5a:9a:82:5f:98:c2:50:06:36:df:ba:ca:89:a3:
fe:1b:91:2b:5a:7e:bc:9f:0f:6b:f8:6e:78:ed:ed:
49:8a:b6:3f:2b:62:0a:8c:e1:b3:d2:4b:e6:3d:76:
dc:a9:42:16:99:48:4d:7b:61:86:09:65:25:c4:61:
ca:07:fc:cc:50:9e:53:bc:0c:25:a2:6b:64:c3:ad:
2a:b8:e9:f1:34:c6:64:84:94:84:38:b1:c5:fa:f6:
af:db:54:4a:b0:e1:21:b0:91:43:41:0d:0e:21:d4:
d2:e7:5f:c0:6b:37:b9:73:38:74:f5:40:5e:a1:a2:
f1:4e:e2:75:d4:b9:02:03:80:36:4a:c9:7a:9d:9d:
cf:ee:88:64:47:df:00:f2:1b:f6:8c:43:94:93:da:
78:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:64:CC:20:BF:C1:F9:CF:C7:BF:B1:6C:FA:A5:B9:8B:17:3B:A6:98
X509v3 Authority Key Identifier:
keyid:04:F0:F7:5C:AE:D3:F2:68:85:AC:65:63:0F:FA:AE:E7:7A:70:EB:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:ce:5a:0e:08:b8:cf:1b:ab:ae:42:aa:63:89:aa:1a:a4:fb:
11:76:12:38:91:fc:c9:39:5d:44:90:e9:34:c9:c3:13:7e:3b:
5d:02:43:82:78:49:ee:c0:71:22:be:93:83:a7:ab:e1:e6:42:
9b:c4:75:37:e0:25:5c:f0:92:78:84:83:be:fd:f8:99:72:8c:
1f:94:23:b1:ee:e5:d7:43:ae:12:cc:29:9b:29:d6:90:6e:50:
6e:c6:24:64:64:e4:7c:0d:05:ea:d5:05:63:de:01:e2:15:46:
dd:55:ff:5f:50:c8:4d:ce:16:8c:f1:17:de:54:19:67:9b:ec:
a2:1a:8f:d4:9b:97:9c:00:bd:4c:de:f7:c1:c0:d9:35:be:13:
b9:5c:88:09:68:ec:09:7e:1c:14:a8:94:39:9f:6f:fb:9b:a2:
37:16:20:75:7b:ee:8d:45:f8:73:f0:b3:68:26:4a:fb:74:90:
8a:f0:c3:25:18:d5:ef:ed:55:ca:05:e4:d4:c3:91:b9:f5:1d:
00:34:2a:f8:d0:1c:7c:66:61:6a:ab:a9:a6:12:c7:35:85:b3:
05:47:51:cc:b7:8f:92:f5:09:f6:72:ea:78:54:45:24:df:99:
b7:6a:03:3f:f6:f9:3d:6d:5e:0f:61:9b:c5:ba:d4:c5:90:6a:
82:25:f2:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 19:51:46 2025 by rpki-client