Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
File: bd1AUuD8dlNjYcu9x3UId93zYK0.mft (raw, json)
Hash identifier: xIbs9WvEY9+sZTDHZe7VUgExAd8Xj8W4dd5yiEoJ/Xw=
Subject key identifier: 68:FD:F9:25:34:98:2A:04:6F:41:51:0E:C7:1E:EC:B7:AE:C2:D8:28
Authority key identifier: 6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
Certificate issuer: /CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Certificate serial: 0199FB7CC9B3DF179E566A8CC5C8DB45B438
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
Manifest number: 0FF1
Signing time: Sun 19 Oct 2025 08:01:23 +0000
Manifest this update: Sun 19 Oct 2025 08:01:23 +0000
Manifest next update: Mon 20 Oct 2025 08:01:23 +0000
Files and hashes: 1: PBeiTxVVl13KulRPara1RXYVicA.roa (hash: RXsTBTBPcZfgBdF/8hAfnipircCVtF7KKV+ZAN7eFr0=)
2: bd1AUuD8dlNjYcu9x3UId93zYK0.crl (hash: +xgK76cSU9+v5mIQgphmdby32FWM3lWe1nY/0zluRAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:c9:b3:df:17:9e:56:6a:8c:c5:c8:db:45:b4:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Validity
Not Before: Oct 19 08:01:23 2025 GMT
Not After : Oct 20 08:01:23 2025 GMT
Subject: CN=68fdf92534982a046f41510ec71eecb7aec2d828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:52:26:6e:49:3e:40:aa:d2:ab:0b:be:03:bb:
77:0e:f3:f6:bc:d4:46:e4:cb:4a:a4:1a:e2:92:3b:
87:1d:a5:7d:fe:48:61:5d:54:f5:dc:ef:46:c2:b7:
56:e9:c7:82:66:9a:56:59:97:74:4f:3e:be:25:68:
70:b6:39:2b:11:de:f8:27:29:23:82:60:5f:4a:af:
30:f7:d2:19:38:bd:d2:75:33:c7:26:58:18:f6:4f:
a8:f5:07:e5:07:c2:87:14:be:24:c0:89:34:24:de:
1e:fb:40:b5:36:50:1e:52:80:4a:5c:40:bc:be:a2:
3a:f6:8b:9e:34:09:a4:c0:70:fe:5d:1b:12:4a:53:
38:19:b4:c7:dd:86:e7:a2:d2:09:45:a2:69:cf:8f:
22:f0:05:08:42:06:f2:cd:12:5d:b5:6b:9f:7d:75:
b7:9f:21:ff:f4:d3:b0:bc:53:f4:29:4c:4f:52:4d:
a8:6b:ac:82:17:9e:c9:e4:d8:df:18:af:db:a7:42:
fb:7d:f2:05:a4:35:89:92:8c:50:eb:7f:72:26:27:
db:b3:ce:e6:b8:d2:a9:89:eb:cf:29:8e:30:a3:78:
6f:5a:0f:3d:81:90:ea:f1:1d:14:00:c0:75:8d:ec:
3c:ba:56:85:53:8c:dd:e6:ed:d5:05:66:30:e0:eb:
8b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:FD:F9:25:34:98:2A:04:6F:41:51:0E:C7:1E:EC:B7:AE:C2:D8:28
X509v3 Authority Key Identifier:
keyid:6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:a6:4b:a6:58:d7:63:77:9b:5d:04:de:e6:4d:d1:12:48:0f:
0a:f9:f2:0b:ce:bc:4e:37:9e:14:b7:eb:57:fb:89:9f:44:6c:
c3:5f:a5:2f:a1:11:8a:be:9b:e7:5e:5d:65:74:d9:97:01:f2:
d4:5c:4a:22:93:35:e4:30:ba:80:7b:47:90:ec:4b:9a:47:29:
bf:d0:eb:4f:3e:75:bd:02:6f:05:40:23:62:f8:5e:f7:e3:56:
55:0e:bf:cd:f9:89:62:62:eb:9c:ae:b8:e8:1b:53:38:2b:9e:
c5:4c:b0:bf:db:2e:06:65:1c:eb:22:32:3e:25:fe:78:f9:7d:
a0:80:60:e7:74:f2:c4:38:12:af:16:ec:45:fd:2b:da:68:a4:
1d:8c:56:f6:e8:ea:dd:f5:78:ed:75:6b:8b:35:1d:fe:7c:11:
dc:80:2e:d6:bc:e8:8a:78:8f:85:73:a9:45:bc:0a:8a:11:8f:
eb:ef:47:97:27:ff:55:6c:d9:62:45:4c:20:b3:31:68:b9:80:
01:94:63:b4:d0:10:71:95:67:81:83:e9:0c:03:d1:ff:d8:25:
42:43:4c:9f:c0:34:ca:d3:df:7c:82:5e:bb:e4:25:ca:ab:87:
38:d1:dd:c9:25:87:57:27:bf:f1:c9:bf:62:6d:ab:7e:52:30:
be:36:24:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:23:32 2025 by rpki-client