Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
File: bOrnoCiJYKda-M6A54iFQ8f3fNc.mft (raw, json)
Hash identifier: ILnHG3WgzgdPs2A0TEDDenAw1EwRrieq2udUsjErGsc=
Subject key identifier: 6D:EF:1C:BC:D3:D9:B4:35:F6:02:81:33:CE:3F:24:8C:27:E6:CC:85
Authority key identifier: 6C:EA:E7:A0:28:89:60:A7:5A:F8:CE:80:E7:88:85:43:C7:F7:7C:D7
Certificate issuer: /CN=6ceae7a0288960a75af8ce80e7888543c7f77cd7
Certificate serial: 019A4EF425A61867C549D9D67F203AD705D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
Manifest number: 141B
Signing time: Tue 04 Nov 2025 13:00:14 +0000
Manifest this update: Tue 04 Nov 2025 13:00:14 +0000
Manifest next update: Wed 05 Nov 2025 13:00:14 +0000
Files and hashes: 1: 6Zx8tvFW-otCSIx-0XXwdAcWAvY.roa (hash: vXtudZUUi1vh+dqd99m5Me5cUdKc0jshPf9ev6mVJpw=)
2: bOrnoCiJYKda-M6A54iFQ8f3fNc.crl (hash: rVTrR2mXiDF2Ofj/dVzTAZwiYb+9b9c4VtzYzlj0F0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:25:a6:18:67:c5:49:d9:d6:7f:20:3a:d7:05:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ceae7a0288960a75af8ce80e7888543c7f77cd7
Validity
Not Before: Nov 4 13:00:14 2025 GMT
Not After : Nov 5 13:00:14 2025 GMT
Subject: CN=6def1cbcd3d9b435f6028133ce3f248c27e6cc85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c4:e8:04:72:d6:b9:0a:66:11:9b:a7:f8:ec:
43:22:99:fc:1c:b3:b2:dc:b0:0f:8f:c5:9b:d3:fc:
c3:a1:56:cd:dc:43:b8:c6:27:02:e3:77:37:56:dd:
34:0d:55:6b:a2:39:43:24:44:9f:c4:9e:98:98:db:
db:07:4c:01:5f:6b:fc:fb:96:aa:65:b3:f3:5a:fb:
50:58:57:bc:c5:b9:ee:f5:8c:a1:9f:40:7f:02:2d:
a8:60:5c:69:6c:7a:50:07:35:ca:df:90:aa:83:f1:
fa:14:d2:b1:e5:d7:8f:71:13:9a:da:29:30:a8:73:
fe:ad:b5:56:f3:94:fb:37:9e:80:fa:d6:fa:d6:71:
15:3e:20:84:d5:c8:20:1f:a5:27:26:20:50:96:42:
ff:68:22:63:9f:2c:cf:2d:2b:92:6d:6a:77:7a:6a:
11:d6:13:de:41:f1:a0:7b:e6:21:81:2a:04:3e:ca:
51:77:60:73:aa:05:72:68:29:fe:90:00:c6:1e:60:
be:27:c5:2f:87:f4:85:be:13:04:98:d9:89:31:43:
02:47:de:be:34:24:56:49:27:7b:d7:87:1a:50:1a:
60:af:d0:61:58:ee:3f:0c:d7:34:40:e0:53:93:ea:
94:14:d5:13:50:6a:02:21:1f:db:84:ac:53:1e:7b:
d9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:EF:1C:BC:D3:D9:B4:35:F6:02:81:33:CE:3F:24:8C:27:E6:CC:85
X509v3 Authority Key Identifier:
keyid:6C:EA:E7:A0:28:89:60:A7:5A:F8:CE:80:E7:88:85:43:C7:F7:7C:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:27:74:32:ef:b0:7e:9f:0b:fe:95:0d:dd:75:72:cd:fc:9a:
29:0f:d1:48:ee:37:77:7e:b4:15:0d:ca:b8:9a:bd:a3:a5:cc:
50:52:5f:13:17:fc:58:00:84:a7:17:1e:ff:96:c3:ea:f5:9a:
f7:56:06:68:fa:0e:7b:0a:96:70:bc:7d:30:ba:3d:fd:47:cd:
93:52:da:cf:91:64:24:3a:1b:6f:3d:c5:21:2d:9d:d6:d9:95:
27:7f:af:59:93:e1:09:9d:49:6f:51:f6:ec:10:f9:66:17:ae:
1c:de:5f:c1:91:39:3d:7f:2d:e1:42:0b:9e:21:5b:11:0b:54:
67:78:2d:4c:e3:f9:d9:76:9c:bc:65:b2:79:52:21:d0:62:40:
9a:db:da:f6:55:97:62:9c:66:83:ca:1c:7c:c7:a4:53:64:66:
65:fe:2a:f2:e5:b0:52:10:e4:d6:50:a2:49:83:16:88:03:f7:
4b:a2:f6:df:3d:2b:44:5f:6e:83:fb:77:7d:da:eb:53:f0:91:
5b:dc:12:c0:7e:00:82:eb:a7:ba:c6:47:d2:bb:42:2c:55:d0:
0e:75:16:1d:1e:f6:53:57:75:62:c2:17:8d:ca:4e:f6:54:3c:
b4:96:23:04:07:19:17:cc:3b:69:31:20:c2:66:f3:83:b9:6c:
13:f1:62:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:35:56 2025 by rpki-client