Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.mft
File: BzX8jPArik43L6W8ZAlE_rwk8f4.mft (raw, json)
Hash identifier: yOqKzFwFU8Whm/T9LnpXPCrrJHGxBI9fDB18XJRe6og=
Subject key identifier: 34:19:A9:77:27:85:4F:A3:16:4A:76:B7:0E:BF:B7:8E:65:02:D1:00
Authority key identifier: 07:35:FC:8C:F0:2B:8A:4E:37:2F:A5:BC:64:09:44:FE:BC:24:F1:FE
Certificate issuer: /CN=0735fc8cf02b8a4e372fa5bc640944febc24f1fe
Certificate serial: 019A5187C09F122CAD9028C783FD25787DC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzX8jPArik43L6W8ZAlE_rwk8f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.mft
Manifest number: 050D
Signing time: Wed 05 Nov 2025 01:00:42 +0000
Manifest this update: Wed 05 Nov 2025 01:00:42 +0000
Manifest next update: Thu 06 Nov 2025 01:00:42 +0000
Files and hashes: 1: BzX8jPArik43L6W8ZAlE_rwk8f4.crl (hash: TmgIzXAuzyxiZQio7ACTFv9qDWysaZ+JRXJ7fBBFgNU=)
2: J8Ib4FQqHMHCvKM2y1SUnog9X74.roa (hash: f8Ibq/aTG18/pniIFSUAU4E687jQnL2EjkQj6M5lHl4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.mft
rsync://rpki.ripe.net/repository/DEFAULT/BzX8jPArik43L6W8ZAlE_rwk8f4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 01:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:c0:9f:12:2c:ad:90:28:c7:83:fd:25:78:7d:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0735fc8cf02b8a4e372fa5bc640944febc24f1fe
Validity
Not Before: Nov 5 01:00:42 2025 GMT
Not After : Nov 6 01:00:42 2025 GMT
Subject: CN=3419a97727854fa3164a76b70ebfb78e6502d100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:81:d2:fe:95:f2:e0:70:56:c7:d9:c3:6d:59:
ae:d6:7e:73:60:79:6d:c8:e4:de:cc:1c:71:5d:de:
91:66:01:34:2b:01:1a:03:c5:b8:36:3f:bd:8d:50:
22:81:c1:45:c2:1b:f1:90:c0:46:71:4c:af:5b:2f:
26:c1:b4:cf:34:24:06:c8:99:7e:eb:a3:70:70:90:
8f:47:32:b2:08:a5:0c:63:13:a7:75:36:0c:08:1c:
c5:d4:7d:d6:07:f9:bf:dd:93:2e:fd:5b:cd:92:8b:
2d:7f:9f:26:ec:d9:cf:63:e1:64:50:88:14:97:28:
0d:11:20:37:95:25:68:86:0e:93:94:db:35:31:90:
91:c0:c7:e5:c0:c6:57:03:3b:f5:e2:40:76:83:39:
58:81:08:d4:90:2f:9e:aa:59:63:2c:be:6e:56:f3:
85:ad:85:11:c9:2f:07:fe:44:e4:55:3b:78:f0:b6:
63:5a:ac:b5:36:e0:7f:f7:55:86:15:51:72:21:4e:
85:9d:e2:f6:29:34:f3:b8:c1:df:6e:ce:09:fd:95:
92:7d:ef:d7:87:a7:c3:cf:a4:77:37:8c:9c:50:fd:
52:40:f0:f1:36:40:b0:67:a3:55:45:82:ac:8f:37:
ee:94:d1:12:3a:63:f7:df:28:16:d1:6f:1a:df:13:
81:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:19:A9:77:27:85:4F:A3:16:4A:76:B7:0E:BF:B7:8E:65:02:D1:00
X509v3 Authority Key Identifier:
keyid:07:35:FC:8C:F0:2B:8A:4E:37:2F:A5:BC:64:09:44:FE:BC:24:F1:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzX8jPArik43L6W8ZAlE_rwk8f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:85:56:f1:3c:a8:4d:27:5f:7f:bd:a6:ba:fb:e2:eb:55:da:
a1:63:01:56:81:0b:bd:da:94:b5:49:2c:77:13:3e:b0:91:e5:
10:51:d3:12:8a:01:c0:67:43:bc:00:13:69:6d:94:45:97:65:
1e:88:0d:e6:4e:32:b2:5f:02:d6:dc:42:35:20:83:9a:ba:84:
95:f2:30:ce:d5:f5:48:ef:c9:29:fa:4d:21:7b:00:6f:49:97:
51:95:0e:54:59:34:30:ab:5d:b5:8c:55:64:54:72:c3:2d:f2:
9f:ae:7e:da:4f:89:e9:24:c4:f8:db:63:42:97:1d:3a:0c:d8:
3b:0a:54:46:a4:74:8a:e9:0d:00:78:65:27:f9:50:fb:18:ab:
31:9f:a1:6c:29:15:13:c2:1c:64:90:02:1b:71:e0:7b:fe:a7:
72:44:3f:8c:f4:d3:28:c4:f5:3b:4e:7a:24:ef:b8:29:7e:68:
53:bf:94:1b:83:cf:ed:8e:62:6e:3b:39:be:14:58:f7:76:cc:
06:bf:6c:52:90:56:32:e8:d7:ee:8a:d6:70:f5:79:65:c7:aa:
ba:3d:08:c6:64:cb:66:da:85:fa:e4:c3:ab:39:2a:89:9a:2d:
ea:35:82:63:18:13:f1:e5:d5:69:98:70:78:ac:9e:9f:59:c0:
2e:1d:4f:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:18:36 2025 by rpki-client