Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
File: bAlGwIGzK-hIywDY2TLowfcXlmg.mft (raw, json)
Hash identifier: XBJ1QIRvH1VrYNNBwDUJBrQ+zECmKuinTOhahg8aY4w=
Subject key identifier: BA:CE:9C:D4:40:78:A5:51:44:63:AF:A5:A4:AA:58:5D:E8:6B:14:90
Authority key identifier: 6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68
Certificate issuer: /CN=6c0946c081b32be848cb00d8d932e8c1f7179668
Certificate serial: 0199FDDA2136F9F48DB1C27E0BF93DCA82C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 19:02:34 +0000
Manifest this update: Sun 19 Oct 2025 19:02:34 +0000
Manifest next update: Mon 20 Oct 2025 19:02:34 +0000
Files and hashes: 1: bAlGwIGzK-hIywDY2TLowfcXlmg.crl (hash: +rxhDIiZ5jtKWIuNTkEUgbhK/NojYeSSPhDsHBqscGo=)
2: zcbK2VYAm9mMFJWXJQ7evncTyKY.roa (hash: IlkFU9F+u30MyRO9adAYRJd3agbOfEkk4M3dko//XTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:21:36:f9:f4:8d:b1:c2:7e:0b:f9:3d:ca:82:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c0946c081b32be848cb00d8d932e8c1f7179668
Validity
Not Before: Oct 19 19:02:34 2025 GMT
Not After : Oct 20 19:02:34 2025 GMT
Subject: CN=bace9cd44078a5514463afa5a4aa585de86b1490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:4f:42:38:87:b8:6a:c9:7a:17:c9:ea:d0:f7:
6d:1d:92:8f:90:5c:52:f5:87:a2:18:10:56:ff:3e:
a5:47:c7:81:4e:65:9b:4e:70:93:13:4b:b5:ee:8d:
f0:4a:ca:8d:db:61:ca:13:e5:30:51:b4:ec:5d:be:
1c:4d:2a:d4:0c:8a:37:80:f1:af:83:bf:bf:e1:a9:
1a:43:b3:8d:6e:89:f6:2c:94:8c:26:60:df:f9:02:
eb:8b:78:f7:1a:b2:f4:84:d0:a7:58:e9:79:e1:e9:
df:92:24:4b:8c:21:b3:08:d9:eb:90:b5:0f:40:f9:
b0:3c:fe:f0:14:60:21:db:46:9d:31:3e:11:77:7c:
b0:35:71:27:3e:b1:05:8a:ce:42:c4:38:5c:3f:a4:
77:5a:0c:3d:2b:f2:c5:5c:23:24:1a:64:4e:45:a2:
21:87:da:ac:1f:23:23:0c:c0:96:68:31:24:86:62:
59:1c:4d:59:02:51:79:f1:3f:8a:b1:8f:7d:4a:ee:
2e:09:34:37:21:7a:b1:6a:d2:1f:c0:30:98:24:f4:
21:95:0e:b8:b2:3a:54:8f:8c:81:11:e4:0a:4f:e9:
c6:55:4e:90:06:86:a1:53:62:4e:11:81:87:87:6a:
aa:39:c7:49:f9:70:80:da:eb:37:0c:eb:35:23:a6:
fc:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:CE:9C:D4:40:78:A5:51:44:63:AF:A5:A4:AA:58:5D:E8:6B:14:90
X509v3 Authority Key Identifier:
keyid:6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:fa:46:54:ef:b3:ff:29:d5:57:c8:3d:62:e2:af:07:5f:ae:
f3:6a:4b:ef:9e:e0:6e:b5:bd:af:c9:16:c5:f3:6e:17:8e:fb:
53:c4:a0:94:0f:34:cb:66:ac:fe:4f:de:b5:25:a6:30:f6:05:
74:85:02:3c:c4:5d:71:13:97:26:90:c2:3b:31:59:db:a4:3c:
c8:21:1b:19:3f:db:c3:36:4c:88:ac:36:f4:3b:e9:c6:2e:ea:
19:83:6b:55:f6:e2:f1:e1:ba:89:f2:c2:b4:47:e3:21:bd:aa:
de:ff:2a:bf:8d:da:5b:6b:e9:32:8e:11:fe:1b:49:84:f5:54:
63:2b:a3:c5:30:e0:66:37:60:00:b9:80:25:fb:50:64:1e:99:
15:07:29:f5:fa:df:3d:ef:85:04:54:8b:9d:77:06:74:01:09:
08:fe:b5:c4:f4:9b:d8:8c:9d:16:33:d5:6d:8b:f2:71:28:51:
e2:0b:d7:84:f6:8f:9b:31:90:9b:ab:ad:26:9e:3d:13:e7:84:
7f:c4:33:a4:94:a7:24:a4:05:e8:ec:7a:2e:2b:e7:8c:10:24:
52:fe:39:60:76:b2:24:89:84:e9:13:f0:48:37:a4:91:85:08:
4b:b9:a8:44:d9:ad:4c:ee:45:15:cb:d1:35:6c:9f:cf:f5:b7:
28:b2:28:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:41:07 2025 by rpki-client