Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
File: bLdrU2M4PWjlVeUnClkx2DQOGA0.mft (raw, json)
Hash identifier: 4OqD1o0s+k+g6iyLLe9QmMjay0ADxMhEwnA/Ez/Wc5U=
Subject key identifier: 37:DE:B8:33:B4:95:EF:93:F9:4B:37:A1:48:7F:0F:D6:15:9B:72:BB
Authority key identifier: 6C:B7:6B:53:63:38:3D:68:E5:55:E5:27:0A:59:31:D8:34:0E:18:0D
Certificate issuer: /CN=6cb76b5363383d68e555e5270a5931d8340e180d
Certificate serial: 019A4D074022A4A72F2411FBAAC0019F8E4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
Manifest number: 0E99
Signing time: Tue 04 Nov 2025 04:01:52 +0000
Manifest this update: Tue 04 Nov 2025 04:01:52 +0000
Manifest next update: Wed 05 Nov 2025 04:01:52 +0000
Files and hashes: 1: bLdrU2M4PWjlVeUnClkx2DQOGA0.crl (hash: aL37edpF/P/242xD/EhsFSU9MC1x01rl4MtG3wDFOcA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:07:40:22:a4:a7:2f:24:11:fb:aa:c0:01:9f:8e:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cb76b5363383d68e555e5270a5931d8340e180d
Validity
Not Before: Nov 4 04:01:52 2025 GMT
Not After : Nov 5 04:01:52 2025 GMT
Subject: CN=37deb833b495ef93f94b37a1487f0fd6159b72bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:aa:81:61:db:3b:cb:f4:54:26:ee:09:57:24:
4a:52:b5:7f:26:71:fb:36:c7:ad:1a:65:d7:85:b1:
be:d9:47:15:f1:8e:a8:1b:db:b0:a8:62:54:a7:d2:
82:36:55:37:84:c6:4f:af:9c:18:ad:75:31:f7:82:
07:a3:76:98:73:3c:b8:0a:b0:9c:65:73:a6:4b:52:
b7:5d:4b:a9:e1:cd:08:cf:85:52:5e:04:84:8a:5d:
f2:1a:e6:bd:ef:b9:20:68:b1:a9:e0:a1:91:18:8c:
44:4f:a0:5c:22:51:6f:d4:3b:a1:11:17:9c:b0:6a:
95:a3:fc:b8:c3:d9:cc:28:98:6f:b8:89:7e:c7:26:
3d:c8:cd:3b:6c:65:4a:f7:28:41:00:01:99:80:84:
78:37:6f:78:f9:1e:00:6b:e0:38:ef:96:86:a4:2f:
06:1f:b0:5a:75:d7:9e:70:dd:ae:ad:05:f9:e3:50:
88:9e:42:b5:05:5d:90:13:ea:09:e2:7d:56:92:f9:
7e:9f:7d:50:e3:b5:4c:6a:c7:9b:01:cf:f9:4c:2f:
04:cc:a2:04:7d:15:7f:0c:06:eb:4b:e4:a4:29:cc:
62:f1:62:42:b7:84:59:50:9f:d4:d5:11:d4:89:f1:
f0:10:d4:9a:2d:1a:6d:1d:17:37:8a:9e:6f:9a:85:
1e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:DE:B8:33:B4:95:EF:93:F9:4B:37:A1:48:7F:0F:D6:15:9B:72:BB
X509v3 Authority Key Identifier:
keyid:6C:B7:6B:53:63:38:3D:68:E5:55:E5:27:0A:59:31:D8:34:0E:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:7c:10:f1:ac:4f:c9:97:59:5e:7e:e3:c3:3a:24:06:b0:20:
f5:d5:fd:ce:c7:b4:57:0f:7f:80:9c:fc:c9:e8:ed:45:2b:92:
c5:1f:98:ce:6a:68:5c:fb:aa:2b:a7:f8:dc:c9:7c:84:cb:4e:
9c:a1:47:fe:07:e5:24:a9:c8:70:54:9e:92:e4:dc:57:b6:bc:
2c:c4:ba:63:a2:57:b2:8a:94:cb:75:2c:07:9f:91:81:1f:bf:
7d:93:5e:51:8c:14:c3:3d:cf:1a:8b:5a:b8:00:67:12:83:6b:
ed:6b:5d:4c:b1:e2:1c:64:ca:1e:72:30:6b:50:e5:3a:67:28:
56:7c:77:c8:a3:4d:8b:5a:f5:89:bb:de:52:3e:2b:7f:ab:3d:
15:fc:df:c3:b3:e5:6f:a3:cd:00:e9:b5:06:03:70:da:7a:45:
51:34:82:32:a8:6e:7e:90:19:1f:d1:ee:db:ab:73:40:29:9b:
93:99:e8:e6:44:e9:ca:5f:81:ad:f9:7a:40:bc:a0:3a:b6:e7:
39:02:41:8d:3e:fd:6f:df:2b:4f:9f:37:2b:a7:aa:99:68:b3:
4b:59:2a:17:39:8d:69:b1:a3:a8:4f:93:96:58:a0:4b:cb:71:
7b:61:ca:45:79:09:cf:7f:f1:80:0f:6d:2f:0f:bc:7c:79:9a:
e2:01:a2:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:52:41 2025 by rpki-client