Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
File: BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft (raw, json)
Hash identifier: bmGXg083NkOOcHmRhJzl5uzW0jZ7H8xc2YHmkvuvqw8=
Subject key identifier: E6:DC:16:EA:F3:37:14:1A:5F:8C:07:EB:8A:67:02:22:8D:1C:E4:AF
Authority key identifier: 04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
Certificate issuer: /CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Certificate serial: 019A4E190C141D32EDA5AF90761EBA109137
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
Manifest number: 0BF1
Signing time: Tue 04 Nov 2025 09:00:55 +0000
Manifest this update: Tue 04 Nov 2025 09:00:55 +0000
Manifest next update: Wed 05 Nov 2025 09:00:55 +0000
Files and hashes: 1: BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl (hash: BregHsRGbINQrTixmNaVsP0il9gwtatmDEPwAFj5ugw=)
2: dShe1ipT6-Y_-edVr4eNtxtPKAo.roa (hash: 34QucPlafnV+iMZk3j4FDiUJFtGuS1f17YL6xBvVoIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:19:0c:14:1d:32:ed:a5:af:90:76:1e:ba:10:91:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Validity
Not Before: Nov 4 09:00:55 2025 GMT
Not After : Nov 5 09:00:55 2025 GMT
Subject: CN=e6dc16eaf337141a5f8c07eb8a6702228d1ce4af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:52:11:9f:c1:c5:c7:02:f0:c2:19:eb:e3:1f:
dd:06:6d:82:11:98:58:69:50:f4:9b:e4:2e:0e:bc:
0c:f6:78:c9:1f:bd:c0:3f:46:d8:bf:4c:aa:2b:cf:
c3:e7:43:e4:50:d4:d3:5c:39:6c:ac:97:3d:f4:19:
cc:d7:72:92:88:3a:c7:1f:51:da:ba:c5:15:04:d5:
78:f2:9f:c6:aa:11:a3:62:70:1d:60:54:0b:d2:63:
3d:60:d1:5f:04:5d:27:c0:1b:29:2a:81:ef:41:41:
7c:1f:34:6f:25:52:da:51:e5:2f:81:2a:ee:b5:75:
1a:1d:7e:2e:8d:58:d0:3b:52:fc:79:60:78:bc:82:
5e:47:52:40:6b:1d:42:09:8c:6f:06:f3:9c:06:83:
63:d5:e7:1a:be:da:b7:f7:4a:70:f0:3c:c2:3b:06:
da:bb:db:8b:79:92:05:42:93:11:da:d9:18:a6:ac:
20:42:0f:e2:3c:ce:f3:d9:e8:b4:8a:5b:1c:9f:5a:
97:4e:87:87:53:19:73:f1:5a:18:5d:c5:81:cd:bf:
eb:2a:7f:2e:c8:60:91:61:d9:f6:7c:e3:37:0a:95:
0f:eb:8c:e1:db:72:ba:3a:c2:d7:ac:8b:44:2b:15:
23:3c:f5:a1:de:ca:b6:19:45:74:88:d1:33:5d:90:
76:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:DC:16:EA:F3:37:14:1A:5F:8C:07:EB:8A:67:02:22:8D:1C:E4:AF
X509v3 Authority Key Identifier:
keyid:04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:f6:76:d5:ee:77:bf:ba:e0:17:02:4c:e3:9b:aa:b3:f9:82:
d9:30:8f:c4:58:6f:ea:f5:80:57:76:38:b0:e3:73:97:8f:d2:
fa:83:c2:32:dd:1a:85:3f:be:02:1c:48:fd:97:2d:70:49:e8:
e0:32:76:9f:23:1c:9d:24:33:de:e8:d2:9c:c6:ca:95:49:ed:
20:8c:7e:ef:89:77:d4:6b:51:cf:8e:d8:23:0d:cb:d4:47:42:
b7:de:3d:68:af:28:e7:9b:ee:9c:da:14:88:5f:01:c7:41:af:
18:66:52:89:76:ff:7a:d6:c1:34:44:a3:7f:c6:27:1e:68:e5:
31:8f:d4:94:16:ae:d6:ff:5d:7e:53:cf:80:5a:80:d7:a2:85:
46:2e:09:bb:69:f1:9f:9d:7a:e8:e9:02:de:a5:72:41:85:84:
ed:6c:80:5e:53:f2:75:c2:c0:5c:fb:0e:59:ef:34:3c:ae:7f:
ad:28:7c:cd:ba:2c:19:64:b5:c0:fc:44:87:11:a2:d8:cf:4e:
24:d2:b1:68:e6:2e:7e:ae:ec:7a:0b:61:c8:c7:bc:c3:a2:90:
d5:eb:47:45:0c:dc:7f:7e:dd:83:a5:e3:df:43:76:8a:0b:15:
83:3b:d6:c9:77:08:1c:7d:9d:3e:2d:0b:2b:c8:45:e2:b5:0b:
93:f6:19:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:40:54 2025 by rpki-client