Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
File: BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft (raw, json)
Hash identifier: O25mSGpxEKyJI4uyWQImqo0GKwlPNlykD7V9obRjs2g=
Subject key identifier: B7:C0:31:95:D9:79:F0:BD:C2:57:05:AD:58:78:A4:85:2C:FB:7B:44
Authority key identifier: 07:35:DA:A8:CF:E2:5D:D1:2A:2C:26:E0:FF:CC:E9:76:36:74:8E:BD
Certificate issuer: /CN=0735daa8cfe25dd12a2c26e0ffcce97636748ebd
Certificate serial: 019A4EF4BEBBD69D779BAD75883B1428BE73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
Manifest number: 170B
Signing time: Tue 04 Nov 2025 13:00:53 +0000
Manifest this update: Tue 04 Nov 2025 13:00:53 +0000
Manifest next update: Wed 05 Nov 2025 13:00:53 +0000
Files and hashes: 1: BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl (hash: uVA42AmciU+LujEtpzLRO4+UnXSUeePWYKHfVWMRPQM=)
2: x6seRwBOq_CRZGJqhRd1EBp_kiI.roa (hash: rR2gIHJRwQudNQFzsP+C+tD9iC/4YNN6FWVD4AJ320s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:be:bb:d6:9d:77:9b:ad:75:88:3b:14:28:be:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0735daa8cfe25dd12a2c26e0ffcce97636748ebd
Validity
Not Before: Nov 4 13:00:53 2025 GMT
Not After : Nov 5 13:00:53 2025 GMT
Subject: CN=b7c03195d979f0bdc25705ad5878a4852cfb7b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5d:22:7a:1f:05:28:2b:d8:b9:de:2b:ea:07:
5d:aa:51:b2:c7:4b:fc:f0:63:b4:e3:bd:0b:da:fb:
33:ec:c9:40:dd:8e:97:9f:42:c1:0c:63:29:3f:20:
c7:73:d5:ae:cd:b7:50:3f:0d:1b:55:fb:d4:c8:b8:
ba:09:e5:c2:23:42:b5:c7:8d:87:ae:e6:25:1d:a3:
92:50:2b:63:fe:c9:c9:66:77:b2:9b:e6:01:d6:6a:
df:ad:ba:7a:8f:85:aa:f4:81:a0:dc:52:69:08:02:
c7:fb:45:f0:fa:6a:f4:11:40:8f:89:00:98:ab:9e:
ea:df:0d:76:7e:72:49:c3:41:1f:5f:2c:3d:a1:53:
b8:37:66:2b:71:54:79:67:ba:87:f5:0c:ec:24:2c:
fd:25:6a:61:19:4b:81:11:4d:ab:a9:ba:df:41:1e:
cf:22:9a:e3:47:e6:72:73:f5:3a:6b:c1:00:bd:4f:
0f:92:b0:51:10:d2:b0:51:69:5b:d5:3b:e7:52:68:
2d:4c:78:b4:2b:41:e9:8b:54:66:66:10:7f:59:9e:
45:07:24:c3:7a:4d:cc:5d:31:ca:19:7f:31:e3:31:
29:e0:b3:45:72:23:f4:03:c9:c5:74:d8:6d:e2:26:
91:c5:3e:e9:8b:e9:04:0b:26:65:9c:25:1f:f6:0a:
84:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:C0:31:95:D9:79:F0:BD:C2:57:05:AD:58:78:A4:85:2C:FB:7B:44
X509v3 Authority Key Identifier:
keyid:07:35:DA:A8:CF:E2:5D:D1:2A:2C:26:E0:FF:CC:E9:76:36:74:8E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:6e:65:63:df:41:02:a8:66:1a:31:35:b7:af:d2:70:17:9c:
68:28:f1:37:33:fa:29:4a:7a:67:c2:03:4e:d3:3a:75:5a:03:
65:39:24:0b:43:5a:21:c7:0f:a3:8b:02:64:c1:e5:18:4f:01:
c2:a4:9e:aa:1e:fa:99:a5:e7:8a:57:db:c0:72:e1:94:1a:28:
a4:e6:aa:cc:f2:7b:9f:22:5a:b2:77:d5:8b:4c:61:fa:42:6b:
ac:f5:69:d8:0e:1e:e8:42:58:d8:51:17:49:5e:73:c7:52:5e:
4e:aa:80:cc:f7:6f:e6:4e:10:e9:58:c4:d6:f4:b9:52:b6:6e:
78:b3:40:84:c1:ad:84:a2:50:7e:2a:16:47:e5:26:9e:bf:2d:
0f:fb:ea:59:ce:b3:63:3c:c9:4b:6b:c7:78:2c:4a:99:3d:d4:
f4:fd:48:1c:c8:9d:d9:c0:78:f7:de:f7:fb:b3:75:4b:7c:8b:
16:c6:05:c6:a2:ec:5a:99:d8:e4:72:55:2f:fb:a5:7c:c3:4c:
79:12:04:09:2d:1f:62:bb:6c:46:9f:c9:44:ee:f6:10:b1:f5:
19:68:df:08:bb:37:04:23:f5:40:37:c5:72:6e:0b:a1:98:c5:
87:7c:99:4a:e9:c0:d3:d0:75:c7:2a:e3:78:52:1b:90:6a:a3:
2f:d7:5f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:02:29 2025 by rpki-client