Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.mft
File: bYQL-PLqRGpH22xjOQZmfGPtiG4.mft (raw, json)
Hash identifier: BcEm9H6zTnGi6O7v1Y/D6af3f2eThM832C974qeiRYA=
Subject key identifier: B4:4F:4C:66:A4:9C:5F:29:80:6C:04:CE:64:BA:58:FF:20:FE:03:1A
Authority key identifier: 6D:84:0B:F8:F2:EA:44:6A:47:DB:6C:63:39:06:66:7C:63:ED:88:6E
Certificate issuer: /CN=6d840bf8f2ea446a47db6c633906667c63ed886e
Certificate serial: 0199FF224128602AE5BBB6F9F31977A37E26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bYQL-PLqRGpH22xjOQZmfGPtiG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.mft
Manifest number: 1139
Signing time: Mon 20 Oct 2025 01:00:58 +0000
Manifest this update: Mon 20 Oct 2025 01:00:58 +0000
Manifest next update: Tue 21 Oct 2025 01:00:58 +0000
Files and hashes: 1: 9fXYfiecb8LKHLBc5hFULaPgfkc.roa (hash: 4n+9kukj7OWGzO7qg1Ocfcd3L1gAsSFqFZg+KnIOuRA=)
2: bYQL-PLqRGpH22xjOQZmfGPtiG4.crl (hash: Sm85OZiDvlZJDRyPnMKcVcg1lL/p/A1p2MWClofXL5s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bYQL-PLqRGpH22xjOQZmfGPtiG4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:22:41:28:60:2a:e5:bb:b6:f9:f3:19:77:a3:7e:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d840bf8f2ea446a47db6c633906667c63ed886e
Validity
Not Before: Oct 20 01:00:58 2025 GMT
Not After : Oct 21 01:00:58 2025 GMT
Subject: CN=b44f4c66a49c5f29806c04ce64ba58ff20fe031a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d1:f6:0f:bd:07:55:66:50:b3:90:60:8b:8f:
bc:03:f2:f2:5b:78:3f:20:ff:4f:17:3a:00:7f:ef:
e5:49:3b:fd:60:39:4e:54:f3:13:15:ff:a8:66:0f:
7f:ec:4b:81:53:2a:b3:e0:3b:3d:4b:1f:b3:3a:6d:
ac:f0:59:9c:76:d4:f5:5b:35:2c:93:98:bc:a1:ec:
f2:63:3d:a4:ec:8b:10:95:74:a5:58:d7:de:dc:aa:
af:45:22:4e:ce:ef:65:96:79:bd:06:a0:c9:ea:0e:
c3:cf:88:7a:47:3f:9d:37:51:f3:c6:7c:82:72:d8:
7e:29:87:32:48:e6:15:79:06:4e:2d:20:f1:0c:28:
c1:3f:dd:80:27:4b:2b:90:18:4d:83:b9:52:56:26:
d5:f1:df:77:cd:ca:0c:12:16:54:ba:fe:fc:41:02:
3e:a4:14:3c:d0:76:93:47:26:8e:4b:e6:c8:6b:31:
31:69:b7:bd:c5:ea:cb:0d:e7:61:b7:88:5d:be:29:
e0:e6:b9:a9:f1:0c:0e:67:d6:74:a5:a9:51:13:eb:
13:9e:ed:17:66:81:5a:bf:58:81:28:17:2f:1a:67:
fd:90:6b:87:1d:d5:92:5c:9a:91:90:e1:a7:bb:62:
13:ac:ed:d2:5c:8b:31:16:bc:d6:89:c8:9f:e3:d3:
87:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:4F:4C:66:A4:9C:5F:29:80:6C:04:CE:64:BA:58:FF:20:FE:03:1A
X509v3 Authority Key Identifier:
keyid:6D:84:0B:F8:F2:EA:44:6A:47:DB:6C:63:39:06:66:7C:63:ED:88:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bYQL-PLqRGpH22xjOQZmfGPtiG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:31:2f:05:50:d4:2c:bc:4a:3c:57:ab:fb:b3:ce:a2:32:9a:
6c:e3:8b:7f:ac:d0:99:61:07:65:14:30:d2:b5:96:a3:f4:05:
48:0a:f6:82:84:e5:08:17:8f:8f:17:8e:59:ce:7c:aa:d7:64:
14:19:52:e2:a1:90:87:16:1a:fc:ab:6c:d2:cd:c9:0f:72:bf:
09:af:e5:b1:1d:2b:b9:54:76:86:7a:62:cd:94:37:2f:2e:1a:
cc:34:1d:4a:7c:19:86:b8:e0:71:ea:eb:cd:10:38:27:c5:1f:
a3:8d:6c:39:09:a4:ac:82:45:96:ea:4a:eb:4f:72:08:a9:c9:
a3:5a:6d:d8:f5:f2:39:77:a1:50:b3:be:af:13:6a:12:10:87:
5e:82:cf:92:bf:3a:e1:cb:31:db:98:c4:3a:f2:ca:ff:66:1e:
c4:00:85:cb:41:c1:2b:ff:5f:a6:d6:d7:0f:e7:0d:2a:1e:9e:
37:96:ee:eb:54:c4:fc:24:29:0f:10:c7:81:90:fc:f8:08:ef:
ca:2b:fc:b7:3f:7e:9a:df:f8:98:8b:3b:4b:cf:f9:d5:f1:28:
8b:7a:c3:35:85:d0:35:d2:d7:ed:d5:de:05:64:ae:3f:ec:f6:
a4:7b:ea:64:ee:98:bc:5e:e5:11:b5:eb:9e:f5:c5:88:fa:27:
f4:01:59:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:44:46 2025 by rpki-client