Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
File: bSPOewwQBo-8RMAhlD4zkBPyruA.mft (raw, json)
Hash identifier: CE7T1tNtWbV99AilX9bF/WqtMO6gyI/AgGzF9aSVdTQ=
Subject key identifier: 23:88:5A:A1:D9:EC:8F:1B:4E:FC:23:B8:43:32:40:2A:B8:24:6D:E5
Authority key identifier: 6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
Certificate issuer: /CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Certificate serial: 019A541ADD7AD2D0935F1B308378E0E3AAC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
Manifest number: 170F
Signing time: Wed 05 Nov 2025 13:00:38 +0000
Manifest this update: Wed 05 Nov 2025 13:00:38 +0000
Manifest next update: Thu 06 Nov 2025 13:00:38 +0000
Files and hashes: 1: LQcm0nhQTgxfcAEHFSpSeQFsVHo.roa (hash: ScQNvXtsK5w/Wj3QzlqfHMAUcdIYUpFbtGKhSGmn1FI=)
2: bSPOewwQBo-8RMAhlD4zkBPyruA.crl (hash: TbFKe9VgdRNAs6Zh/yLktQ5e6oBUCVxHrqhWeTlj3fI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:1a:dd:7a:d2:d0:93:5f:1b:30:83:78:e0:e3:aa:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Validity
Not Before: Nov 5 13:00:38 2025 GMT
Not After : Nov 6 13:00:38 2025 GMT
Subject: CN=23885aa1d9ec8f1b4efc23b84332402ab8246de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:79:b4:b3:56:b1:21:7c:52:1a:a4:7e:ce:e3:
fe:b1:a1:4f:98:f5:69:90:a5:c8:a4:84:01:ca:48:
ea:e0:af:10:8f:ab:60:be:b9:09:4f:dc:a9:c2:23:
55:bd:6e:79:d1:e5:ff:05:66:23:ed:09:43:32:f6:
22:de:dc:92:d0:f9:96:5a:32:b0:b7:10:97:cf:3d:
f4:13:fd:7d:75:c3:19:3c:38:ed:5a:37:86:47:8c:
9a:4d:b3:9e:f3:be:86:78:e1:0c:54:5d:e9:d8:35:
8b:74:6d:62:8a:73:1c:4e:3e:26:da:bd:88:69:9d:
02:46:0a:d7:05:bc:02:a2:e4:53:bf:c6:45:7d:a5:
47:24:01:8f:ce:a8:16:cb:d6:cd:9b:76:0b:1d:8b:
07:15:08:48:d6:55:ce:47:1c:da:5a:f4:71:ee:62:
95:2c:ed:95:6d:1c:00:c2:8c:2d:a5:5b:7c:45:ce:
c0:23:2b:b2:2c:7a:b2:f8:02:90:69:c2:f2:ca:71:
25:1e:98:86:a4:1c:f5:0c:96:59:6a:a3:26:53:48:
7d:ae:fb:5a:4a:8d:1b:d8:e0:f4:d8:a2:2f:33:fb:
b2:1e:20:56:78:4e:32:18:f5:9c:86:16:df:46:50:
3b:52:02:71:3a:c5:8a:2f:53:b0:b5:8f:24:93:57:
db:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:88:5A:A1:D9:EC:8F:1B:4E:FC:23:B8:43:32:40:2A:B8:24:6D:E5
X509v3 Authority Key Identifier:
keyid:6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:e4:ee:a6:71:51:dd:aa:59:03:b8:38:4f:f0:b1:19:16:87:
2e:0a:50:ec:7f:28:7d:85:47:85:47:7e:a4:43:b3:e1:47:72:
08:e9:bc:ee:cb:14:dc:05:57:20:97:f9:24:fb:05:97:bd:ae:
1e:a2:44:14:8c:c9:bd:58:ac:16:ff:9a:a4:ab:27:a9:a8:b5:
2e:ad:04:16:a4:b1:d5:f3:d9:00:d4:29:0f:05:01:a4:38:46:
a9:92:02:a7:a5:7e:d4:91:7d:0c:6e:10:80:53:2c:06:11:f7:
5a:ff:ad:01:a4:f7:00:57:ad:f7:1b:45:e2:30:7f:76:8a:a7:
de:26:d7:aa:53:5f:aa:ba:6d:f1:ee:f9:c6:03:ca:f2:dd:d8:
b3:c8:56:10:01:cb:71:48:86:3d:69:61:d5:e0:fa:4b:7e:c0:
de:87:ff:29:d5:27:8c:a8:50:e5:c9:77:b1:4c:f2:2a:e8:4c:
3f:1f:14:60:9d:66:10:b6:3a:3f:13:47:01:ed:84:20:0c:bf:
c1:98:6b:c9:eb:4b:b6:62:9b:a1:f7:85:d4:c5:29:ad:1b:d0:
0c:b3:5b:66:40:ed:8e:c3:c7:10:04:91:7b:6d:0f:ae:c8:38:
58:10:e1:53:8e:57:5a:ee:2d:91:d4:b3:b1:15:d6:40:f6:b3:
41:7d:8b:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 19:13:59 2025 by rpki-client