Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
File: bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft (raw, json)
Hash identifier: ALrluSTyLc7NNcYlLLwf1gmbT3bVCy1mmfDF7pWgLqA=
Subject key identifier: 6B:CF:EF:CD:E7:80:94:39:60:19:F4:70:B3:5E:96:7C:55:C7:2D:F8
Authority key identifier: 6D:F2:93:21:2D:25:D4:86:3E:38:6B:9C:48:0D:DC:9B:E7:38:12:4F
Certificate issuer: /CN=6df293212d25d4863e386b9c480ddc9be738124f
Certificate serial: 0199FC8FB8CDFE69DAEFA9BDA8ED800A6F81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
Manifest number: 1675
Signing time: Sun 19 Oct 2025 13:01:41 +0000
Manifest this update: Sun 19 Oct 2025 13:01:41 +0000
Manifest next update: Mon 20 Oct 2025 13:01:41 +0000
Files and hashes: 1: HoMgEifDpVQ65AHqBFCCx_7uMoE.roa (hash: MZgT/uxhPiKd1q/F+OrFW0KnU1po9n7PWWPZxZXmYvg=)
2: bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl (hash: EAvYC7zRTV2qL9JkZt1DwFCbp5B5KGeh5AbKMaAVQuI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:b8:cd:fe:69:da:ef:a9:bd:a8:ed:80:0a:6f:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df293212d25d4863e386b9c480ddc9be738124f
Validity
Not Before: Oct 19 13:01:41 2025 GMT
Not After : Oct 20 13:01:41 2025 GMT
Subject: CN=6bcfefcde78094396019f470b35e967c55c72df8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c6:7e:9e:a3:3d:72:92:72:19:b7:e5:c3:40:
5a:e9:32:34:9e:3b:da:d3:01:97:74:5c:53:25:d6:
bc:3b:bc:82:b9:4f:4d:0a:64:6b:88:5e:8e:0d:55:
a9:25:28:31:6c:31:0b:5e:e6:71:c5:f3:96:52:ce:
c2:b4:de:ed:c7:64:31:da:af:64:d8:6d:49:e5:63:
c1:f4:11:34:88:14:aa:82:a1:4a:b7:da:b9:5a:46:
14:97:3f:f1:c5:38:db:c0:20:12:bd:ed:01:e1:b6:
54:20:e1:c1:87:f5:12:88:27:35:a8:65:03:42:39:
ed:b9:b9:01:cb:bd:4a:97:d2:d9:e7:45:72:ec:f8:
e1:4d:f0:23:54:b0:0b:39:be:50:02:29:6d:6c:72:
cb:a7:d9:94:7e:7c:59:0c:9a:bb:2d:a8:78:e3:38:
2a:7c:bc:bf:b7:59:de:0b:08:d0:b9:e6:d8:5a:64:
1d:56:67:b7:9f:b7:0a:c6:2b:e8:99:c8:28:b1:55:
86:6c:10:8d:7f:b6:ee:27:c6:cf:df:cc:bf:08:02:
e8:46:88:ad:bc:41:6f:d5:7e:24:0f:72:31:90:27:
c5:0e:a1:08:09:ba:e9:72:a3:3d:ff:2c:13:8a:ab:
c3:2c:03:fd:f8:82:de:90:0f:2e:e5:b0:8c:2b:db:
ee:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:CF:EF:CD:E7:80:94:39:60:19:F4:70:B3:5E:96:7C:55:C7:2D:F8
X509v3 Authority Key Identifier:
keyid:6D:F2:93:21:2D:25:D4:86:3E:38:6B:9C:48:0D:DC:9B:E7:38:12:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:b9:4f:62:58:c3:7a:ba:e3:3c:14:36:72:bc:76:3a:a4:ae:
bd:5b:a4:31:bb:6d:6a:5d:fb:8d:b3:f2:eb:6e:65:97:d1:8f:
76:e3:92:38:a7:3a:bf:1d:9e:16:11:f1:6e:5d:29:cb:c1:04:
50:42:f7:6b:48:4f:b4:7c:72:06:66:af:42:5f:d0:67:cd:ec:
6a:e1:f9:fb:cf:13:fc:67:53:b2:2a:cc:8c:76:6c:24:ff:77:
ed:ea:cd:18:cd:77:91:01:76:2e:9f:3e:a6:4d:af:e2:bb:3c:
4a:0f:18:f5:c5:52:20:31:5a:94:11:f3:9d:1f:df:09:c9:ef:
13:94:44:64:91:83:f2:d7:ac:7b:46:ee:92:3e:7e:cb:bf:6c:
2f:41:17:c5:78:20:e7:9c:0a:3d:b5:85:68:71:fb:b0:c0:f3:
b4:76:75:52:d0:55:72:01:31:5b:ea:f2:94:24:5f:f8:28:6a:
7e:46:3a:eb:24:7c:eb:3c:82:51:cd:9b:f5:c8:8a:da:42:b5:
37:bc:6a:0e:69:d8:12:6b:9b:02:99:62:99:d6:c0:af:45:93:
61:ab:9d:0a:cb:87:2e:06:66:68:26:66:d8:5f:73:a1:b4:37:
86:c0:f2:e7:32:79:2f:06:c1:2d:96:22:99:78:1b:4f:84:58:
bd:fe:d0:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:14 2025 by rpki-client