Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
File: nB7k05z6obOseZwX94grjOTigSA.mft (raw, json)
Hash identifier: Izy/hl9xeUhZhGMzHADxUqncGkDuKaEZhKfVK8zyPA0=
Subject key identifier: 3F:C9:68:F1:5F:FD:F1:4B:4C:79:27:7F:A5:65:84:82:3A:BE:B6:DC
Authority key identifier: 9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
Certificate issuer: /CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Certificate serial: 019A4D744BF7390CE97049F6CC28A600D336
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
Manifest number: 09BF
Signing time: Tue 04 Nov 2025 06:00:58 +0000
Manifest this update: Tue 04 Nov 2025 06:00:58 +0000
Manifest next update: Wed 05 Nov 2025 06:00:58 +0000
Files and hashes: 1: egM_lo5hkg5KA7_uP-5h7pmD4BM.roa (hash: LWEk9cOjEXdGtew0n3bgwHhe3Zn8McfotK81AHI+3M0=)
2: nB7k05z6obOseZwX94grjOTigSA.crl (hash: 26yns34JGsz0IN4LPlJIHq9ZgO5Nzgz6LsdrOlStu4M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:4b:f7:39:0c:e9:70:49:f6:cc:28:a6:00:d3:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Validity
Not Before: Nov 4 06:00:58 2025 GMT
Not After : Nov 5 06:00:58 2025 GMT
Subject: CN=3fc968f15ffdf14b4c79277fa56584823abeb6dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:13:42:1a:b2:b6:6e:73:54:bc:30:11:d1:3f:
1f:54:d6:4b:a4:b4:de:51:a5:22:a5:82:82:5a:99:
38:1b:75:2e:18:a0:85:d8:98:06:a3:bb:19:ce:ff:
f8:d0:46:78:e6:e5:da:a9:1f:8a:b3:cf:fc:3e:7a:
c5:4d:69:35:3a:0c:3a:78:28:3b:dd:3c:0c:34:31:
95:a0:04:21:79:e8:66:8d:7e:3e:fb:45:81:20:1d:
b9:94:80:5f:a4:ef:86:7d:c5:d4:04:09:03:35:f1:
3b:61:18:5e:21:ef:c4:ca:91:3a:26:7a:98:1e:b0:
10:ed:91:e6:0f:57:a1:6c:34:5d:90:d5:9a:33:01:
72:29:3f:c4:74:22:68:38:04:55:9f:de:65:94:99:
ed:23:8f:59:5f:a4:00:13:b6:da:dc:33:6f:29:36:
c5:fa:f4:86:f3:4b:e5:e4:b6:16:ed:7b:fd:bc:c4:
43:bb:21:5d:01:fb:61:34:b4:28:46:fb:75:6f:3b:
08:df:f4:3b:4a:3f:43:c1:f6:1b:31:87:5a:c5:12:
0b:3d:2c:68:aa:04:81:9f:fd:bf:9f:84:15:dd:5b:
ba:86:d5:fc:5e:85:38:2a:f4:e9:39:3b:d7:1b:de:
63:6f:83:1a:da:a6:41:95:0b:4f:1f:56:72:fa:71:
54:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:C9:68:F1:5F:FD:F1:4B:4C:79:27:7F:A5:65:84:82:3A:BE:B6:DC
X509v3 Authority Key Identifier:
keyid:9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:c1:f0:9e:63:65:4f:f5:35:1c:5d:be:f2:05:e0:c9:56:9f:
60:0e:20:93:3b:82:21:50:49:19:27:cc:43:84:d0:51:78:64:
3d:55:c5:97:85:69:68:64:a6:43:46:17:9b:f3:51:40:1c:b6:
4d:12:b4:4f:5d:16:53:30:f3:7e:a3:a8:bc:60:99:43:f7:54:
11:09:82:6d:72:71:a5:9f:e3:93:a2:ed:67:56:72:da:e0:99:
e6:a6:ac:bd:83:76:57:fe:8c:34:2e:dc:5c:e0:a4:3b:f4:9a:
88:15:02:15:c7:3b:0d:6f:34:55:b6:23:24:1f:7c:60:04:09:
ca:0f:cd:ec:56:dd:92:58:6f:36:e0:14:46:63:92:99:fa:22:
9f:82:1c:ff:ed:dc:22:6a:89:c9:e6:66:51:fc:13:37:0a:8d:
9d:ed:6c:39:50:56:ff:57:84:09:89:82:25:97:40:ef:3d:d4:
1f:73:f3:7d:dd:ee:9c:cf:68:19:e9:15:94:fa:87:5f:51:c2:
73:ac:3f:ef:7f:76:2a:1d:e6:87:a4:12:4a:b3:44:49:76:24:
a6:b0:f9:01:bf:d8:e2:58:16:17:6b:5f:e7:be:8e:8e:93:42:
25:05:ac:44:06:bc:c1:d9:79:91:eb:7e:bc:19:94:fa:51:9b:
89:69:45:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:55:25 2025 by rpki-client