Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft
File: bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft (raw, json)
Hash identifier: 3epjIC5r/xoM9n8Lo540Elz625Ry9Thn/TtLENgvgpc=
Subject key identifier: 92:52:9A:97:EF:CB:3C:CA:AB:89:8A:84:4F:5E:D9:DF:62:63:4A:48
Authority key identifier: 6E:AE:4B:B0:51:39:80:C8:7F:9B:AC:59:29:52:C0:95:77:7A:C1:2E
Certificate issuer: /CN=6eae4bb0513980c87f9bac592952c095777ac12e
Certificate serial: 019A50E2ADFDB425C4A4C07B163109F8DA01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bq5LsFE5gMh_m6xZKVLAlXd6wS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft
Manifest number: 0369
Signing time: Tue 04 Nov 2025 22:00:24 +0000
Manifest this update: Tue 04 Nov 2025 22:00:24 +0000
Manifest next update: Wed 05 Nov 2025 22:00:24 +0000
Files and hashes: 1: C_vZrzZdhy-uejOZ6_GWZTSm_n0.roa (hash: 79ZNhw6Fw3tlIyCfv3zLmQ4ilyJAmRJY2DfEyitGouQ=)
2: bq5LsFE5gMh_m6xZKVLAlXd6wS4.crl (hash: YpISpRk7ewiLEW+qzmvoDNCM912Hj4RtbjHm6Eql4c8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bq5LsFE5gMh_m6xZKVLAlXd6wS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e2:ad:fd:b4:25:c4:a4:c0:7b:16:31:09:f8:da:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eae4bb0513980c87f9bac592952c095777ac12e
Validity
Not Before: Nov 4 22:00:24 2025 GMT
Not After : Nov 5 22:00:24 2025 GMT
Subject: CN=92529a97efcb3ccaab898a844f5ed9df62634a48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:07:2c:d3:35:2f:b8:50:a2:e3:ee:e3:cb:3f:
98:46:f5:7a:ea:92:f4:c0:ba:f6:c3:63:7e:70:35:
c0:e1:96:dd:25:c9:e5:74:50:9b:07:d1:ac:bd:13:
3c:8c:39:28:60:82:c9:3f:78:fe:da:64:7c:36:3e:
bc:54:12:2d:89:77:29:3a:70:c3:a9:56:4a:66:3b:
cf:6b:5f:cc:79:11:62:04:0b:6e:67:fe:cd:e8:79:
62:1f:1e:83:21:44:98:ba:65:f8:c8:de:6f:00:64:
4b:a7:81:93:37:ab:2b:70:84:a4:84:5f:f0:df:c8:
56:1c:c9:e9:7f:97:f0:66:b2:2e:58:47:de:e0:03:
8b:f5:b0:24:86:88:61:83:95:9e:3f:0d:d1:87:99:
96:36:03:e6:4a:00:12:dc:22:57:e2:ec:ba:52:69:
26:89:7e:1d:9e:2e:4e:b7:cc:fa:9c:7c:ee:6b:00:
73:c7:7c:77:15:93:dc:7d:d8:db:ba:7a:3a:b9:35:
7a:92:27:7e:a2:28:3d:f7:16:1c:32:a3:8d:e2:4d:
8d:b5:0d:bc:1c:03:bc:08:18:2a:37:5e:44:55:78:
52:46:08:3f:f8:c0:50:c4:8f:3d:fd:cf:23:00:9d:
94:3b:d8:e3:fe:d2:f3:63:32:c2:fc:54:c1:89:aa:
c6:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:52:9A:97:EF:CB:3C:CA:AB:89:8A:84:4F:5E:D9:DF:62:63:4A:48
X509v3 Authority Key Identifier:
keyid:6E:AE:4B:B0:51:39:80:C8:7F:9B:AC:59:29:52:C0:95:77:7A:C1:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bq5LsFE5gMh_m6xZKVLAlXd6wS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:78:71:20:39:34:3e:1e:70:ec:cb:35:51:8b:da:4e:35:9d:
39:e4:83:a7:ea:59:69:80:a7:62:0e:d3:2e:56:45:f7:44:d0:
46:a6:97:42:fd:e4:3a:a8:b8:0a:94:6c:4b:4e:27:c7:d1:d1:
32:6f:e7:d2:59:64:b5:d8:48:2f:d8:6f:7a:2f:bc:90:6c:95:
1c:91:c8:61:3b:b7:18:66:08:e1:bf:bb:5c:78:ef:46:84:6c:
60:64:6a:65:3f:00:24:41:12:ce:a8:71:d2:e7:0e:02:79:a1:
0c:60:90:cf:67:01:d4:3b:ed:70:3c:94:b6:50:e4:b5:1f:0f:
f9:a8:f6:42:7d:8e:87:ab:25:35:70:e3:7c:73:6b:0d:45:53:
bc:64:44:6f:e0:e6:8a:0d:ae:87:03:67:d8:bd:58:35:93:9f:
6b:fa:87:eb:95:ba:d8:d3:54:52:50:1a:59:3a:05:6b:03:86:
e5:28:98:bb:fc:75:4c:3a:8c:db:da:fe:6a:a6:bf:f7:61:d2:
21:38:2e:69:35:a2:9a:27:56:7e:5a:6c:f2:d7:64:33:d8:03:
20:9e:68:c7:60:43:e5:ed:e9:ac:94:30:ed:2d:a6:37:ce:9c:
02:74:7e:ee:18:76:cb:11:a7:a3:7f:d3:08:8a:71:ab:9f:76:
00:c3:68:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 03:16:04 2025 by rpki-client