Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.mft
File: bcXjzvXaXn_fw2TF1aBALTpnhtw.mft (raw, json)
Hash identifier: HlAyrY2GXx8rVg9qybAPq5F1lwZ04L6jcNxjXIFkcZ4=
Subject key identifier: B3:7D:41:02:AA:9C:5C:B8:6E:A7:7D:6D:D5:95:F6:4F:6C:83:F8:6D
Authority key identifier: 6D:C5:E3:CE:F5:DA:5E:7F:DF:C3:64:C5:D5:A0:40:2D:3A:67:86:DC
Certificate issuer: /CN=6dc5e3cef5da5e7fdfc364c5d5a0402d3a6786dc
Certificate serial: 019A033587D653D944A6D6E666ED305E692F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bcXjzvXaXn_fw2TF1aBALTpnhtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.mft
Manifest number: 0F80
Signing time: Mon 20 Oct 2025 20:00:30 +0000
Manifest this update: Mon 20 Oct 2025 20:00:30 +0000
Manifest next update: Tue 21 Oct 2025 20:00:30 +0000
Files and hashes: 1: DoUsi8lBp24xgpF7Cj5k0M8Xf1k.roa (hash: 8DoQ+UjZ0y3DouoJyhRBNdxsuMKM8IPBGox8SgTwz/M=)
2: bcXjzvXaXn_fw2TF1aBALTpnhtw.crl (hash: apShiBkdtZJNFV6AoXVC8qKB9WrUD2FUL+9Z5fqDm2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.mft
rsync://rpki.ripe.net/repository/DEFAULT/bcXjzvXaXn_fw2TF1aBALTpnhtw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:03:35:87:d6:53:d9:44:a6:d6:e6:66:ed:30:5e:69:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dc5e3cef5da5e7fdfc364c5d5a0402d3a6786dc
Validity
Not Before: Oct 20 20:00:30 2025 GMT
Not After : Oct 21 20:00:30 2025 GMT
Subject: CN=b37d4102aa9c5cb86ea77d6dd595f64f6c83f86d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:eb:7a:4f:9e:41:16:85:df:7a:12:64:61:08:
23:88:f6:28:53:a5:c6:ff:46:03:55:21:93:0f:cb:
f8:47:de:1b:68:bf:28:3a:e8:42:a1:16:74:0b:98:
36:a4:c1:99:86:48:78:92:d6:c6:33:ee:02:fc:16:
0a:d1:39:fd:81:b1:53:b4:1f:8e:36:c4:b2:df:31:
60:fb:80:85:f7:91:d2:d3:4a:a8:d6:98:d1:90:64:
1c:97:57:fc:e4:28:5b:ea:63:f9:f1:9a:2c:3e:a8:
21:6c:be:96:95:de:87:9d:51:3c:a8:f1:cb:b9:ca:
f5:ea:1d:78:2b:c7:41:71:7e:f5:38:8d:3e:75:88:
f2:64:16:83:8b:86:52:68:ce:5a:7b:61:94:97:6c:
2a:ee:df:5e:2e:ff:e0:c1:1c:75:cb:50:2c:b4:08:
50:a8:12:5f:b3:c4:a4:32:d5:da:a8:5d:cf:90:b7:
43:f0:40:ab:81:52:4b:c1:be:ea:03:b3:95:a2:ee:
69:94:17:34:38:d6:32:f4:9e:c8:1a:bb:af:8d:33:
ae:12:e9:ee:d8:6c:d9:56:8d:fe:38:6a:af:d5:77:
f0:bc:c0:ef:c7:e7:ca:81:10:a6:f9:91:ea:31:97:
9a:ed:c9:33:d7:e7:54:26:3f:d0:97:63:8c:27:8a:
97:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:7D:41:02:AA:9C:5C:B8:6E:A7:7D:6D:D5:95:F6:4F:6C:83:F8:6D
X509v3 Authority Key Identifier:
keyid:6D:C5:E3:CE:F5:DA:5E:7F:DF:C3:64:C5:D5:A0:40:2D:3A:67:86:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bcXjzvXaXn_fw2TF1aBALTpnhtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:ef:11:8b:f5:a3:5b:7c:82:8e:a3:85:54:87:34:03:9a:1a:
62:7d:5d:fa:8e:a8:33:23:f4:f3:f7:1a:77:04:59:84:3b:25:
6c:80:92:15:1c:21:40:2e:f6:42:9e:b6:b4:87:13:23:8f:16:
7d:64:a4:60:cb:23:f8:a3:2d:63:dd:38:9d:f7:bf:e3:8a:8e:
36:3c:17:1c:98:70:3b:cb:e3:d1:8b:78:cb:0b:c5:0c:79:05:
2b:8e:5b:ff:03:b2:89:ff:34:1f:e5:50:76:da:24:72:c1:bb:
de:d0:8e:76:2b:f5:8f:de:db:57:a0:ae:6f:21:8d:bf:ee:bf:
99:b8:7a:d6:1b:02:51:91:33:5e:0b:52:3c:68:97:30:ee:c1:
ec:89:f8:bd:a1:65:12:24:15:26:21:64:78:2f:9a:0c:c0:be:
3e:40:4e:55:8a:59:f1:df:ae:6d:fc:7b:de:a0:de:25:f2:b7:
2e:ed:ec:b2:f2:3a:39:fb:d5:47:58:54:ba:f3:3e:63:46:a2:
6e:df:2a:92:76:ab:d3:5f:30:a1:d9:58:ef:d9:24:2e:2c:74:
33:08:3a:e8:2d:a3:36:3a:81:99:ad:44:db:e7:b2:17:05:4f:
5b:17:e3:c6:b7:61:61:56:78:bd:ae:77:a0:35:96:51:ff:68:
6a:da:f3:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:41:47 2025 by rpki-client