Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
File: bs1crU0zBsT3LEKvwG5c0fuv46M.mft (raw, json)
Hash identifier: YZ6TM9NLRPjaRYMiZpdxCpJkGm+wKJaKnnx8uTFf+2k=
Subject key identifier: C9:C7:0E:E7:9F:D2:1A:AE:8C:BE:2F:29:45:5C:EB:B4:1F:45:60:61
Authority key identifier: 6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3
Certificate issuer: /CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
Certificate serial: 019A4E868545FB0E67D07862130C4198B061
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
Manifest number: 1711
Signing time: Tue 04 Nov 2025 11:00:29 +0000
Manifest this update: Tue 04 Nov 2025 11:00:29 +0000
Manifest next update: Wed 05 Nov 2025 11:00:29 +0000
Files and hashes: 1: IVWLNAUIsWDuNfRfR17vH-v5XfI.roa (hash: OmbLmtXQG4MyTcSNnTCa+QZsFqNmOgdwU2G3Jors4PA=)
2: bs1crU0zBsT3LEKvwG5c0fuv46M.crl (hash: Fb0O12Dzqshw8goHBpRVlXO8i9q+Ul8DNNMhn7fbYQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:85:45:fb:0e:67:d0:78:62:13:0c:41:98:b0:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
Validity
Not Before: Nov 4 11:00:29 2025 GMT
Not After : Nov 5 11:00:29 2025 GMT
Subject: CN=c9c70ee79fd21aae8cbe2f29455cebb41f456061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a2:e6:43:00:8c:84:d3:dd:4c:79:0e:5a:ce:
64:86:95:3a:e3:21:f3:67:f1:b4:5c:43:4a:ed:7e:
31:f7:d9:f4:e5:98:ff:82:f1:80:96:4e:4c:c3:3e:
ff:ca:64:ea:47:db:de:cf:39:65:b6:e1:8d:53:77:
98:b1:64:9f:f6:86:2c:a7:1b:51:d6:f3:49:28:d2:
96:e6:b9:7b:ee:66:5e:a3:61:23:95:c6:25:59:c3:
2f:1c:2b:0f:10:b1:f8:36:8c:86:17:84:de:69:b2:
8b:40:e5:ab:cb:af:5b:e2:05:62:a3:6b:73:7d:54:
87:18:1e:66:a4:f5:4a:b6:6e:3e:54:38:d8:31:8d:
16:3a:2c:85:30:81:de:35:9e:05:c1:8a:36:ae:ac:
ee:23:60:42:94:5e:ec:e1:c6:bb:8b:2b:c8:53:30:
ea:df:ba:58:f5:5c:92:8e:b1:cd:af:ea:21:3a:29:
33:26:cc:25:d2:f5:8d:ad:50:31:2d:2a:4a:e2:1e:
6c:2b:a8:89:18:8b:7f:5b:28:7a:c4:a0:1e:64:53:
de:8b:76:c3:ab:0f:ff:2b:5a:35:92:5a:d5:92:4d:
f2:a2:3e:0d:85:10:c8:ff:5a:81:d4:0c:0c:da:ea:
54:98:cd:0a:b1:b4:ff:7b:fd:74:ff:f6:b4:72:d7:
2b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:C7:0E:E7:9F:D2:1A:AE:8C:BE:2F:29:45:5C:EB:B4:1F:45:60:61
X509v3 Authority Key Identifier:
keyid:6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:d1:70:23:39:81:e3:da:65:e5:53:0c:e6:9b:1f:5e:98:23:
69:68:c6:27:ed:2d:66:90:c9:40:76:48:66:01:db:f7:72:93:
24:40:79:ea:95:5b:fd:b7:98:4e:0a:a8:45:ac:7d:77:d9:42:
e3:5c:a4:66:d2:d1:62:ab:e4:ad:1b:83:d2:41:dd:d6:ea:16:
e2:e8:3d:c1:6e:07:1a:e3:36:b3:7b:28:6f:99:da:04:83:f6:
2b:75:69:8b:7e:cb:d9:8a:86:94:55:0b:46:67:a5:03:fc:9c:
83:7c:68:ce:ef:36:b4:ca:45:7c:0e:46:00:db:8d:8e:26:16:
f1:a5:f1:4d:51:3c:86:e6:93:87:97:a8:2c:7d:04:9e:2b:8a:
c2:b3:a4:14:d5:32:16:51:ae:d8:ed:f3:82:bd:ad:67:ca:3c:
35:d1:b9:8a:e8:3a:bb:d0:d5:0f:65:8a:1d:0c:b9:96:18:17:
6c:72:2f:a8:66:30:c5:b0:b1:58:bf:e2:65:66:18:0b:a8:27:
63:78:a3:16:77:fc:06:be:4f:b0:d9:01:b8:88:11:3f:02:1f:
b6:5e:c9:08:96:3b:3c:68:5f:93:bd:05:8e:85:db:e0:28:52:
cb:9a:fb:d1:86:ef:78:77:c7:41:e9:7e:43:e9:6e:d7:40:7d:
01:f0:62:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:54:26 2025 by rpki-client