Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
File: BYmfOXZIcDij-mNDlSsUtNBysz0.mft (raw, json)
Hash identifier: mvX502qWkNciIy9ISCisPRz4dViHSV+w2e5j1os0mDM=
Subject key identifier: AE:BA:91:4E:E4:D6:8D:DA:B1:46:81:E9:D3:0B:2E:C6:B2:AF:E9:25
Authority key identifier: 05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D
Certificate issuer: /CN=05899f3976487038a3fa6343952b14b4d072b33d
Certificate serial: 0199FDD94C4604EC320969F5FAE49CB5B6E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
Manifest number: 1417
Signing time: Sun 19 Oct 2025 19:01:40 +0000
Manifest this update: Sun 19 Oct 2025 19:01:40 +0000
Manifest next update: Mon 20 Oct 2025 19:01:40 +0000
Files and hashes: 1: 0FPPBtsN210U9TcyUOoD4vT2QPY.roa (hash: fG8Q0h59H0I6+//7X6/ScKzAsNXNuiLvMcAt229Ohto=)
2: BYmfOXZIcDij-mNDlSsUtNBysz0.crl (hash: hcfVZ8rhU2StzHrUoXWndjIrDvbbRVr6d/cX/yI9Klc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:4c:46:04:ec:32:09:69:f5:fa:e4:9c:b5:b6:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05899f3976487038a3fa6343952b14b4d072b33d
Validity
Not Before: Oct 19 19:01:40 2025 GMT
Not After : Oct 20 19:01:40 2025 GMT
Subject: CN=aeba914ee4d68ddab14681e9d30b2ec6b2afe925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9a:75:68:6d:fb:01:04:8d:91:23:86:84:06:
29:a0:2a:55:96:9f:8d:d6:55:43:8e:73:61:86:eb:
0d:d3:1d:6b:68:43:98:8d:cb:d5:64:9e:6b:5a:35:
83:ba:a6:2b:16:75:f7:54:ec:06:24:25:d8:94:5e:
ca:08:8c:e0:57:86:aa:d4:40:e3:3d:bb:03:d6:d7:
92:bf:2c:52:74:a9:a6:7e:05:9d:80:43:b3:c7:19:
1f:79:f8:56:3b:e7:a9:ec:cd:65:85:e2:82:92:37:
f2:2c:21:4d:6a:0f:35:fc:ea:2a:86:11:c4:df:50:
bd:c5:10:77:08:bc:86:1e:58:2b:97:29:49:80:46:
09:cf:16:6d:de:8f:14:81:95:0a:be:ee:9c:3e:20:
9b:d9:c6:a5:99:ba:f0:bc:c4:e7:79:43:65:e5:66:
df:1e:ac:74:ff:11:a9:24:7e:7a:a0:fa:48:7f:d0:
90:b4:3d:e8:47:f5:5c:c6:19:75:5c:73:8a:5a:7b:
5b:6e:24:6a:ea:48:3f:8c:d2:e0:35:a8:35:7d:ec:
b9:7e:5a:03:10:1c:1e:a6:ee:81:99:49:43:7e:9b:
f3:62:16:5a:41:f7:d5:13:d1:7c:03:72:ce:e1:ee:
22:32:30:01:4a:50:bf:f7:24:9a:30:8f:a9:f2:26:
18:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:BA:91:4E:E4:D6:8D:DA:B1:46:81:E9:D3:0B:2E:C6:B2:AF:E9:25
X509v3 Authority Key Identifier:
keyid:05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:d6:f7:a9:82:c4:d6:b1:49:34:7a:90:4d:ac:cb:33:f1:6d:
26:6d:34:83:46:f0:b3:ff:d0:3c:dd:60:67:1b:bf:63:e7:5d:
94:5f:7f:7b:20:f1:92:c5:a9:be:fc:4c:47:88:2a:24:9c:2f:
01:20:29:df:ea:03:5f:8e:b1:e4:3c:3e:01:32:9f:3f:b4:7f:
94:fa:08:a2:d8:5f:a0:9c:c4:f9:4b:8f:14:ca:3c:5e:8c:f8:
ce:97:b2:63:e4:ee:f4:93:b4:60:b3:ee:2a:42:e1:45:58:47:
57:5d:a9:4b:cb:e5:9b:ed:fc:35:db:48:75:dd:62:31:bc:ab:
31:4e:09:be:39:96:8c:bd:2e:3c:e9:79:61:8d:ba:59:3b:25:
cb:01:73:16:37:0f:74:27:29:a1:a7:fd:41:aa:ed:8b:c3:5c:
9b:fb:11:78:53:bf:4a:9f:a4:44:d8:f9:89:d1:13:62:c7:fc:
74:18:9e:5c:49:af:c3:3e:cb:04:3d:d5:99:dd:41:7d:86:f2:
05:1b:25:b8:7b:3b:75:0e:25:2b:84:77:9f:13:40:d6:5d:66:
f2:b2:37:1a:7f:a8:f1:8f:da:0b:41:c3:d7:d6:67:a0:6c:fd:
fa:49:52:19:19:ed:31:1a:20:af:df:8f:b2:de:65:b4:fb:24:
90:55:61:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:51:36 2025 by rpki-client