Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
File: v42FRzQuL8ns-t_O8Azyc--dbpA.mft (raw, json)
Hash identifier: IcnSURheNtzIXtYltwb9mKdR7lOfcRxKKfYG4pPKzd4=
Subject key identifier: 26:31:E6:2A:DE:13:1A:67:A0:8F:63:1F:28:4D:C3:0A:08:B9:13:C5
Authority key identifier: BF:8D:85:47:34:2E:2F:C9:EC:FA:DF:CE:F0:0C:F2:73:EF:9D:6E:90
Certificate issuer: /CN=bf8d8547342e2fc9ecfadfcef00cf273ef9d6e90
Certificate serial: 019A4D3CD3B69B4D1EF25EA1BE26A03D4246
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
Manifest number: 046C
Signing time: Tue 04 Nov 2025 05:00:23 +0000
Manifest this update: Tue 04 Nov 2025 05:00:23 +0000
Manifest next update: Wed 05 Nov 2025 05:00:23 +0000
Files and hashes: 1: fwI8WQwy5fbXMlIKzIdcXaYEMU0.roa (hash: bPDJhxbWV/nawvua5orm+AkfyQvA9xpKaA3uAdqYMPA=)
2: v42FRzQuL8ns-t_O8Azyc--dbpA.crl (hash: 9Uy1Zjd3RAEE8u8a55Te5MgcxVKHJcAX9oHqsXBAG80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3c:d3:b6:9b:4d:1e:f2:5e:a1:be:26:a0:3d:42:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf8d8547342e2fc9ecfadfcef00cf273ef9d6e90
Validity
Not Before: Nov 4 05:00:23 2025 GMT
Not After : Nov 5 05:00:23 2025 GMT
Subject: CN=2631e62ade131a67a08f631f284dc30a08b913c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:32:4b:48:a2:f1:31:16:6d:d0:08:19:41:64:
7c:db:98:24:28:cb:58:3f:ef:68:c2:44:99:7b:e0:
c9:ea:32:1d:41:26:5d:67:b8:2a:56:14:3a:46:18:
95:ac:3d:54:4b:c2:b8:5c:ae:51:2b:1c:dd:7f:d3:
0f:f9:e3:ec:96:72:e3:39:72:68:b6:d9:74:a0:1a:
bf:2a:ea:ef:db:9e:94:f4:12:59:09:1f:d0:56:6a:
9e:79:3b:db:0b:e3:7b:2d:f5:d9:28:ae:04:ad:2b:
3e:43:76:45:d8:0e:19:5b:19:72:cf:08:be:53:e0:
3e:c3:80:b5:da:e4:2d:99:02:0f:89:ef:af:dc:ad:
6f:3f:df:b3:34:9c:41:c3:85:f0:a4:82:fd:20:46:
b6:61:66:4e:07:42:19:5d:e7:d2:48:56:26:12:e7:
90:a1:c2:49:f0:58:86:96:2d:43:36:66:ca:e4:0f:
9b:1c:46:3c:94:c5:01:c5:34:a8:d8:71:3d:12:5f:
69:b7:4f:84:b8:60:bb:10:b7:9d:a8:f0:eb:43:6d:
6e:cb:af:7b:f6:47:56:68:ab:e1:76:85:1a:96:01:
1d:54:0c:42:0c:25:bb:48:b4:fa:27:86:c3:59:da:
19:18:a4:ff:be:18:0d:ba:4a:68:f6:52:2d:27:59:
21:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:31:E6:2A:DE:13:1A:67:A0:8F:63:1F:28:4D:C3:0A:08:B9:13:C5
X509v3 Authority Key Identifier:
keyid:BF:8D:85:47:34:2E:2F:C9:EC:FA:DF:CE:F0:0C:F2:73:EF:9D:6E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:c5:21:22:29:9b:1f:b6:ec:e4:78:a2:14:01:f9:e0:b7:08:
24:0e:80:ce:f5:4b:bb:d2:de:fe:fc:75:f0:38:48:c4:f4:0f:
a4:ea:13:c4:4e:a3:01:09:b1:7d:21:e4:e3:a7:03:11:eb:43:
96:b9:ec:af:78:a1:f9:50:7b:63:eb:4c:56:14:17:8d:87:9f:
d0:f1:47:ad:75:d0:4a:1a:d3:01:80:04:42:8a:93:f9:8a:06:
da:a1:b6:85:2f:f2:d3:31:93:20:a8:dc:b3:c0:d4:4c:ef:a7:
82:71:96:ca:6a:8f:68:09:d3:59:d6:70:d3:d4:0d:84:d7:43:
e3:fd:1b:51:32:ae:3c:26:86:eb:e8:da:2e:6f:04:6e:d8:f8:
b6:dd:39:ed:58:4e:5b:e9:01:e6:bd:8a:71:8a:a3:8d:af:d1:
d5:3f:92:51:cd:af:c7:92:a8:53:1b:b6:fd:84:c4:bb:6b:e1:
15:98:d8:66:b7:b1:4c:8a:ef:be:17:ba:f9:f8:4b:9e:42:41:
5c:23:8a:2e:20:59:dd:91:ab:ef:85:e4:c3:90:bd:d0:f8:74:
bf:d6:5b:8a:8c:02:b7:ea:3c:41:4e:f2:91:e5:6e:f6:59:d2:
44:de:94:b5:6f:66:45:bd:f3:5c:42:0b:da:48:e4:33:3a:27:
5d:d7:17:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:56:09 2025 by rpki-client