Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
File: bzipg89Dc6pJdJhasi1RTA9IHS4.mft (raw, json)
Hash identifier: vduGk0HoIm0JfoaFURXekktD1j1xQLY1ZAMzqT5TKQo=
Subject key identifier: 6C:29:53:BD:C5:BF:5E:7E:50:33:E7:3D:D4:27:74:F8:21:D9:44:0A
Authority key identifier: 6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
Certificate issuer: /CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Certificate serial: 019A4EF4ACFD98E59FE251B3D926A8A0975B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
Manifest number: 035A
Signing time: Tue 04 Nov 2025 13:00:49 +0000
Manifest this update: Tue 04 Nov 2025 13:00:49 +0000
Manifest next update: Wed 05 Nov 2025 13:00:49 +0000
Files and hashes: 1: HZb4ypfyyLknrNflDGCKDQospm0.roa (hash: DJb41fbhgLGXN4Umv3DyaNZTQa8ZY7nKkJ22hR0xLS4=)
2: bzipg89Dc6pJdJhasi1RTA9IHS4.crl (hash: 8KRGPWmyvlBobj3gm5QrQw6+qC0iEpb1oDUXw0NqIz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:ac:fd:98:e5:9f:e2:51:b3:d9:26:a8:a0:97:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Validity
Not Before: Nov 4 13:00:49 2025 GMT
Not After : Nov 5 13:00:49 2025 GMT
Subject: CN=6c2953bdc5bf5e7e5033e73dd42774f821d9440a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:92:ee:58:63:2a:18:38:e0:9b:52:dc:2d:f0:
c0:52:2d:5c:6d:f0:82:b1:17:5a:56:01:4e:37:24:
75:d2:9d:dd:29:fd:a3:50:b2:d8:81:c3:4b:ca:14:
32:15:6b:1b:c3:66:e1:99:4f:1d:6a:87:90:f2:84:
4a:01:d7:29:4a:10:e8:e0:9a:98:a8:8b:2a:84:e4:
49:85:51:b5:2c:9e:65:20:c1:48:62:91:6f:c3:f0:
54:7f:98:a6:ee:7b:7a:53:6d:21:76:fe:21:cc:6a:
93:5f:7b:28:ac:d5:fd:bb:6a:ac:9c:33:3a:21:ea:
d1:c1:9e:bf:f4:38:3e:b9:4b:7c:70:f8:97:f6:33:
40:fe:08:20:4b:93:68:c8:97:08:3e:1e:d9:25:51:
07:c1:a7:c6:c4:96:e1:23:56:6c:b4:ba:e1:5d:a0:
63:5e:6b:06:04:0c:25:11:26:7e:9f:97:b9:9c:a7:
73:f1:98:f3:7a:7a:d0:cf:9d:2d:18:d9:8b:66:41:
f7:b0:9d:5a:8e:28:a9:02:e4:6a:b9:39:38:99:5e:
73:a5:b8:c5:a6:71:40:45:44:ba:01:46:b4:fc:b2:
37:62:b1:92:d4:b8:0e:c5:c6:92:4c:b7:f5:92:7c:
04:45:93:30:33:bc:8b:ab:67:29:d9:85:97:19:6e:
16:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:29:53:BD:C5:BF:5E:7E:50:33:E7:3D:D4:27:74:F8:21:D9:44:0A
X509v3 Authority Key Identifier:
keyid:6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:ef:5e:7a:3f:88:21:bc:f6:09:b5:55:70:4e:58:bd:a2:d9:
50:6a:82:cf:0a:e1:d9:6e:92:6c:8f:35:23:8d:df:f3:f3:11:
c3:80:bc:b9:10:16:29:95:b4:c5:29:43:9e:d0:d2:da:7f:5e:
da:f6:eb:e1:a9:52:8d:e2:d4:f5:75:f3:59:d6:f9:7b:b5:8a:
92:17:a7:27:8e:eb:41:78:c3:ab:34:4b:e9:9f:91:01:a8:8e:
e5:da:f5:67:74:0b:d2:53:26:e8:d0:2f:e9:16:c7:6f:be:0f:
5a:c0:6e:5b:52:38:da:f7:b8:0c:c2:1f:91:ef:cd:6c:2c:36:
0f:fc:41:4c:d8:5e:d9:25:1d:87:27:25:15:d7:f0:3e:2e:8a:
60:09:a4:11:36:8b:17:b6:95:33:a7:70:40:f4:a6:da:6a:10:
ae:32:53:07:d8:ac:78:a0:40:40:8a:d1:db:16:c4:9d:a5:79:
5e:3d:c6:b2:c9:14:58:c6:5a:fb:cb:7d:bd:d7:2a:6e:d3:ed:
09:98:85:96:2c:33:6e:8b:06:71:05:ca:83:54:23:98:3f:3b:
01:02:33:fe:73:28:ee:16:5e:0b:f7:60:f7:4f:35:d6:d9:c4:
0c:53:9b:92:2b:fb:af:ee:9e:71:47:ec:a2:e2:72:35:34:e1:
4c:4c:ff:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:55:41 2025 by rpki-client