Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
File: BKnP8kmB1yY9G31jd59dZz3ivbw.mft (raw, json)
Hash identifier: o0RanSEGsPnkCfweK5dLLbv6+smGTiFb0ajQTLCTLkQ=
Subject key identifier: 4A:0D:84:F7:9C:0A:7F:BD:0D:02:3A:37:85:F3:C1:F1:3C:93:E5:AE
Authority key identifier: 04:A9:CF:F2:49:81:D7:26:3D:1B:7D:63:77:9F:5D:67:3D:E2:BD:BC
Certificate issuer: /CN=04a9cff24981d7263d1b7d63779f5d673de2bdbc
Certificate serial: 019A4D73A077DD78C99536779035AE20C275
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKnP8kmB1yY9G31jd59dZz3ivbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
Manifest number: 170F
Signing time: Tue 04 Nov 2025 06:00:14 +0000
Manifest this update: Tue 04 Nov 2025 06:00:14 +0000
Manifest next update: Wed 05 Nov 2025 06:00:14 +0000
Files and hashes: 1: BKnP8kmB1yY9G31jd59dZz3ivbw.crl (hash: tkcd8eXMI+JhoGvbqe3T3SteTaYuo2bOlVOuL8sZc5Q=)
2: zx1XMXhbE28ZMTwu9AxINedJc60.roa (hash: 4bo9B0lLSnpXpzHGQAUAoXEmUUE4IbZbuOepJknUA+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BKnP8kmB1yY9G31jd59dZz3ivbw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:73:a0:77:dd:78:c9:95:36:77:90:35:ae:20:c2:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a9cff24981d7263d1b7d63779f5d673de2bdbc
Validity
Not Before: Nov 4 06:00:14 2025 GMT
Not After : Nov 5 06:00:14 2025 GMT
Subject: CN=4a0d84f79c0a7fbd0d023a3785f3c1f13c93e5ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:aa:ae:05:38:ef:fa:ef:3c:9f:40:78:d2:59:
cb:73:07:d3:58:89:66:77:8c:a6:e7:72:e3:4a:80:
76:ff:9a:66:04:02:f1:4a:25:5d:66:7b:2e:12:a3:
85:24:e5:07:0a:ef:f9:e2:6e:51:9b:ad:dc:61:78:
6f:b6:ae:8a:b0:c6:a5:3f:46:72:6c:fe:a4:e6:79:
3c:c8:b1:30:7d:81:74:ca:0c:ad:8c:15:61:44:8a:
2a:fa:f7:b5:46:e0:28:5e:8e:74:02:f0:e5:b7:37:
e6:37:73:86:cc:74:39:fc:cf:10:16:63:87:d4:ec:
35:34:c3:0d:64:8b:8b:07:2f:cc:6f:b8:47:c1:9f:
39:d7:ec:2a:a0:8a:6e:cc:24:a3:bf:07:d5:cb:42:
0a:3c:57:68:90:73:42:b5:78:ee:82:ec:4f:68:01:
b0:7a:49:74:ba:12:3c:38:7f:1a:8a:e9:0b:ec:1f:
d0:8b:0b:7f:c7:e5:1e:30:c3:54:ed:02:fb:46:a9:
a4:1e:30:42:4f:13:a7:8d:91:85:ad:c3:ea:d2:26:
6c:6f:16:c9:8a:2d:10:4e:a4:0b:3c:81:cb:d0:9b:
6d:39:6b:e8:e5:7d:b1:01:f8:ff:7a:47:db:2c:d0:
73:8c:74:bb:44:8d:ef:dd:12:5e:44:c8:48:d9:4d:
48:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:0D:84:F7:9C:0A:7F:BD:0D:02:3A:37:85:F3:C1:F1:3C:93:E5:AE
X509v3 Authority Key Identifier:
keyid:04:A9:CF:F2:49:81:D7:26:3D:1B:7D:63:77:9F:5D:67:3D:E2:BD:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKnP8kmB1yY9G31jd59dZz3ivbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:bb:0c:5c:c5:9c:14:2b:5b:12:4f:21:95:08:2b:ad:f1:f6:
e5:a3:22:3a:a3:59:e7:76:38:67:e3:ae:f1:1c:18:24:f3:fc:
58:8c:87:65:55:25:f2:c4:72:48:3b:91:c3:e0:b8:51:c8:95:
63:d1:31:b9:7c:67:df:40:77:e4:e6:13:61:3b:32:7f:56:e9:
46:a7:41:00:38:0b:cd:9f:1e:0f:29:83:c9:02:20:01:83:d3:
18:db:13:26:e5:b6:f4:7c:a7:f9:a3:c6:5d:92:f4:f6:39:30:
d4:90:73:99:f0:16:81:bb:f5:b7:b1:fd:99:8c:ab:74:d5:53:
9f:bc:1a:9a:73:39:5b:14:eb:ab:d2:8f:e4:82:58:6b:e9:71:
7e:43:33:45:d4:92:52:dc:b4:d2:3c:cd:cb:de:c0:b8:12:d5:
b0:b5:dd:5e:96:82:3e:c6:06:18:c7:eb:4b:71:60:8d:a8:da:
c5:f6:5d:8b:60:0a:80:53:b5:49:bd:b7:3a:c6:50:3f:3a:7c:
86:14:3d:f7:7c:95:b2:5d:2c:91:1d:74:f0:70:4d:ef:c4:46:
30:41:ae:37:90:b6:b3:f0:c9:5c:20:e5:56:be:bc:f1:6d:c9:
5b:70:ad:2c:8f:a6:32:c4:4b:eb:90:d9:27:73:a3:09:d9:72:
69:71:52:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:07:46 2025 by rpki-client