Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
File: bfHIcky70DS6t6Da3wq0uZ_2b_8.mft (raw, json)
Hash identifier: G1Dc0K4pvihWlNwEtAfK57l9EFJj5V8Q52EHHfZOKqU=
Subject key identifier: EA:F8:9B:6D:77:1A:6D:78:C5:4F:78:8C:D1:6E:C8:35:A7:C4:C7:A4
Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Certificate serial: 019A4E4FF03CB7B9BD4C634CA9435A980340
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 10:00:52 +0000
Manifest this update: Tue 04 Nov 2025 10:00:52 +0000
Manifest next update: Wed 05 Nov 2025 10:00:52 +0000
Files and hashes: 1: 3gASlQlN9UdPtrWqrdLITdzt5Ew.roa (hash: ramhN8+V67WDz+dJge66wgSFRzcM7UnMyKgsybDZiQA=)
2: bfHIcky70DS6t6Da3wq0uZ_2b_8.crl (hash: X01nSp4v6s4gLXwlt7ino1qvUnIqXNngqd5/ed1VIUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:f0:3c:b7:b9:bd:4c:63:4c:a9:43:5a:98:03:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Validity
Not Before: Nov 4 10:00:52 2025 GMT
Not After : Nov 5 10:00:52 2025 GMT
Subject: CN=eaf89b6d771a6d78c54f788cd16ec835a7c4c7a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:17:dc:26:e3:d6:77:0f:40:47:98:a3:2e:de:
fa:e6:c0:2b:56:7a:ce:fa:aa:c2:a8:da:41:70:a9:
59:df:8c:d6:02:50:07:d8:83:f6:cf:94:b4:c1:58:
f8:90:ec:38:99:61:be:2e:06:f5:e7:c1:73:03:bb:
56:a4:65:cd:b9:8c:b6:95:4c:dc:15:1f:5a:7f:cd:
81:64:e6:b2:ad:15:a9:34:5e:62:ab:eb:f7:30:f9:
d5:35:18:48:b0:16:9f:01:72:59:68:db:d8:8f:d4:
6f:1c:0b:b4:78:72:81:44:5a:8b:ca:a8:a3:fe:ab:
d4:f4:2b:c4:67:23:64:79:65:cd:c9:ce:71:d8:78:
fc:63:b6:15:0b:cb:5d:c1:e9:d7:04:b6:41:f9:e1:
91:9f:f6:aa:34:15:71:7d:94:53:4e:26:15:6d:85:
ca:26:a2:66:0e:92:d9:e5:2f:d6:19:d7:9c:49:13:
56:43:61:2c:d7:84:d7:1e:89:0d:41:45:9d:eb:7c:
b1:5a:98:23:6b:b2:42:ff:5d:5f:9a:71:04:bc:e8:
42:1a:d1:48:d7:ea:6e:c9:7c:6d:2a:88:7f:1f:c3:
21:81:7d:88:03:fa:75:c3:82:95:88:0e:06:15:04:
9a:cb:d6:22:c6:1a:fc:29:b9:29:18:eb:d2:be:95:
fe:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:F8:9B:6D:77:1A:6D:78:C5:4F:78:8C:D1:6E:C8:35:A7:C4:C7:A4
X509v3 Authority Key Identifier:
keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:d4:aa:a1:83:6a:c2:e0:a3:0a:7a:94:68:69:40:49:10:c1:
e9:b1:d7:db:c1:d4:d1:09:0a:57:de:e7:1b:7b:66:71:b3:8f:
2d:57:d9:cc:5d:b0:19:af:9a:3e:d3:6c:59:c6:cc:43:e2:3b:
e6:f2:39:de:a6:cd:ea:68:c8:22:9b:6e:ba:2d:99:c2:95:3e:
f6:90:f5:dd:2e:6c:ed:0f:04:cf:56:8e:75:3f:e2:1e:0a:1a:
f6:77:9e:45:94:d3:0d:b8:4a:0e:dd:60:41:e5:57:d3:a4:f4:
56:6f:2e:f1:fb:4f:cd:45:ef:5d:0c:72:c6:95:b6:f8:ce:8f:
4c:7a:d7:0c:6c:63:da:04:63:38:69:58:bc:4c:0c:9d:fe:0a:
b9:cb:a2:20:56:16:06:19:6e:3d:56:d1:ea:b5:22:be:91:d3:
e6:18:d8:ee:ff:cd:c4:6d:35:6c:ba:fd:63:a8:f9:25:79:56:
1a:0c:77:26:42:f9:96:2d:06:89:b2:36:3c:40:80:05:a8:44:
5e:5c:08:3e:80:84:60:8b:b6:29:35:79:45:89:34:14:b4:f9:
26:97:50:43:59:1d:8f:8b:c5:7e:1c:46:9a:0f:c3:1b:cb:13:
90:a7:35:43:19:3a:40:b1:6c:3f:c0:38:d3:f5:e7:08:63:30:
75:1c:9b:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:31:09 2025 by rpki-client