Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
File: bJSdK9ZO4X711H-WPj1depgrEq8.mft (raw, json)
Hash identifier: Jq3827koPvaJ8oGavGhVeA1pIlSFvGp/vG6gYCOLbWo=
Subject key identifier: 6F:AC:EA:22:4C:82:43:A9:1F:26:F2:EB:CC:59:F7:6B:EE:9B:13:3E
Authority key identifier: 6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
Certificate issuer: /CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Certificate serial: 019A4F62C1549654475A5492019C563E083C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
Manifest number: 0B79
Signing time: Tue 04 Nov 2025 15:01:03 +0000
Manifest this update: Tue 04 Nov 2025 15:01:03 +0000
Manifest next update: Wed 05 Nov 2025 15:01:03 +0000
Files and hashes: 1: OyVcB1brzSxuoeEjBo4fT0W9OFc.roa (hash: sut6tQHQTuBMJAc0/1shERZEk1RWFKSSDeDy5cd5Klo=)
2: bJSdK9ZO4X711H-WPj1depgrEq8.crl (hash: 2asnL9EzqKTnnzVyICu9E2OHgqKJ1Aa9Am9mPGHCfNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:c1:54:96:54:47:5a:54:92:01:9c:56:3e:08:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Validity
Not Before: Nov 4 15:01:03 2025 GMT
Not After : Nov 5 15:01:03 2025 GMT
Subject: CN=6facea224c8243a91f26f2ebcc59f76bee9b133e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:fb:8e:18:63:8b:c1:68:f3:4a:bb:b9:fd:b2:
34:d1:38:03:07:54:f5:4e:d3:28:26:5f:c8:a1:71:
2a:38:92:47:0e:10:35:05:e6:fc:d9:d9:41:c4:ee:
5d:cd:7c:34:e5:aa:33:fe:39:ed:13:bf:a9:37:d1:
e5:02:8c:21:ac:83:5a:4a:23:b9:c2:6d:87:a4:fd:
85:85:9b:e6:c5:65:fb:00:18:7b:35:3e:6a:9b:43:
e7:d0:76:8b:18:fb:08:ab:50:7e:6c:68:47:26:3d:
89:cd:f1:37:12:fb:90:38:9b:89:44:17:4d:75:fa:
ad:9d:75:d2:40:d5:be:28:5d:39:2d:81:d3:9c:1d:
91:cb:1f:18:b2:e0:63:6c:51:56:ad:be:b4:ad:46:
37:36:47:d2:61:a8:df:0b:78:f4:93:31:f7:d9:05:
7b:65:97:d0:93:f3:74:7a:0b:c1:5f:c6:e9:a6:2e:
20:fc:2b:3a:a6:b6:0b:bb:d7:d9:24:33:2b:3b:47:
a4:ae:98:21:d4:4e:52:e4:3d:ce:83:3b:81:50:9c:
4b:df:0d:19:3e:dd:6a:b1:27:76:78:77:f3:b5:62:
36:48:5c:1c:54:8e:38:e2:b6:42:15:0f:2a:4a:58:
0c:90:60:e6:e8:45:4f:91:0f:0c:a7:2c:1f:70:b6:
8c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:AC:EA:22:4C:82:43:A9:1F:26:F2:EB:CC:59:F7:6B:EE:9B:13:3E
X509v3 Authority Key Identifier:
keyid:6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:78:42:af:6a:ef:0e:3b:2c:e4:63:46:27:99:10:53:d0:ef:
58:98:60:7d:24:20:ef:74:24:9a:40:27:e4:92:9c:f3:f3:47:
08:be:e4:63:28:e3:e2:5a:18:46:37:d5:87:42:03:90:e6:e2:
01:d1:40:e9:93:3a:79:78:a4:fb:3d:18:73:30:a1:37:41:b5:
86:da:d3:f7:2e:7d:ff:cd:1c:e4:fd:2c:bd:ea:81:e1:9d:59:
98:3e:38:39:6d:86:07:28:c2:8b:1c:16:e4:1a:47:77:87:fe:
98:1f:d0:7d:ff:91:8a:f2:1e:06:9e:ce:04:5a:ae:40:6d:13:
3c:07:be:45:e8:d3:97:39:e5:94:0c:54:72:59:5b:bf:1e:c7:
a7:d0:28:63:f3:f1:42:05:36:4f:ca:fe:b0:ae:54:e8:5e:11:
db:2b:c6:fd:c4:39:6b:89:43:97:06:df:6b:1e:ac:fe:2e:9a:
3a:aa:0b:78:50:c6:85:68:e7:b6:b8:f1:b8:59:5c:35:3a:d5:
e5:05:4a:7f:7d:d0:ff:32:e2:25:73:82:e8:9e:7b:9a:2d:8c:
e9:c0:b5:a2:9d:7b:6c:fd:3b:e7:98:e4:01:c8:7b:60:99:bf:
29:52:95:89:10:83:5b:a2:b9:ac:0c:7d:c6:65:39:be:5a:f8:
ad:f6:a0:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 23:04:16 2025 by rpki-client