Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.mft
File: rBoLnMXOi_2e4m0J1-kRUaQtNw0.mft (raw, json)
Hash identifier: gTYyFMBlrfHX+Hv+GctFSJLuR60mUEjTmrl5M11ze1w=
Subject key identifier: A1:FD:D2:F9:BE:2E:80:35:09:CD:8B:F3:DB:A9:5E:90:6F:C1:A7:CB
Authority key identifier: AC:1A:0B:9C:C5:CE:8B:FD:9E:E2:6D:09:D7:E9:11:51:A4:2D:37:0D
Certificate issuer: /CN=ac1a0b9cc5ce8bfd9ee26d09d7e91151a42d370d
Certificate serial: 019A4DE18C118E9187379F289BB12BE3D5A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rBoLnMXOi_2e4m0J1-kRUaQtNw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.mft
Manifest number: 170C
Signing time: Tue 04 Nov 2025 08:00:18 +0000
Manifest this update: Tue 04 Nov 2025 08:00:18 +0000
Manifest next update: Wed 05 Nov 2025 08:00:18 +0000
Files and hashes: 1: e7v6KfsQ42Ju_th6J-KjayhE0pc.roa (hash: 2QzdBlDL7vaApFGThIZoir4ZfxpYLQiDlB23vrYFa1A=)
2: rBoLnMXOi_2e4m0J1-kRUaQtNw0.crl (hash: WZuaYLbINBM5Ky0f+O1OAp0Z1/5MOips2jzSen7gQH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rBoLnMXOi_2e4m0J1-kRUaQtNw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:8c:11:8e:91:87:37:9f:28:9b:b1:2b:e3:d5:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac1a0b9cc5ce8bfd9ee26d09d7e91151a42d370d
Validity
Not Before: Nov 4 08:00:18 2025 GMT
Not After : Nov 5 08:00:18 2025 GMT
Subject: CN=a1fdd2f9be2e803509cd8bf3dba95e906fc1a7cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:08:9a:69:94:6f:18:da:ae:22:42:ef:62:12:
0d:08:f1:ee:0f:b1:ef:ef:5d:a9:19:2e:07:98:7b:
25:c5:41:99:e2:06:4a:12:b3:cc:de:59:1c:1e:44:
e1:10:0b:48:eb:81:8f:bd:d0:7e:7e:2b:47:ad:f5:
33:58:f4:ba:5e:10:1a:1d:f5:35:56:47:26:5c:c6:
2c:f2:07:6c:2f:f7:69:e3:7e:34:08:b0:b9:c3:e8:
e8:af:a6:95:43:33:46:88:27:0f:18:d1:50:a3:69:
58:07:16:4a:5e:1d:62:3d:36:a0:d9:74:fc:38:66:
51:a8:c5:7f:66:3c:e1:7d:30:ee:f2:fa:82:1b:48:
ff:c5:e6:e1:24:21:3e:4c:3b:7d:8d:fb:b8:c8:0f:
25:11:32:64:bb:1e:92:aa:83:a0:6e:88:6a:e8:5d:
03:72:8e:df:f0:f1:32:6d:ec:79:9a:4a:85:05:63:
7b:a0:51:7d:37:7b:17:04:24:0c:97:94:40:5b:ed:
22:72:c0:b0:23:74:49:c7:0a:a2:04:41:78:b6:9e:
6f:a7:5e:d7:55:f2:b6:60:8c:fe:a3:2b:d0:ce:fe:
ec:e9:79:c1:bf:05:66:bc:d7:e6:18:c2:26:6b:1e:
dd:4a:e3:81:8f:46:35:af:f5:a6:44:54:0b:d2:db:
e5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:FD:D2:F9:BE:2E:80:35:09:CD:8B:F3:DB:A9:5E:90:6F:C1:A7:CB
X509v3 Authority Key Identifier:
keyid:AC:1A:0B:9C:C5:CE:8B:FD:9E:E2:6D:09:D7:E9:11:51:A4:2D:37:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rBoLnMXOi_2e4m0J1-kRUaQtNw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:16:d5:b3:4c:84:ba:83:5f:6b:1c:51:22:86:60:5c:11:5d:
7c:47:8e:d4:d2:f3:08:4e:5b:4c:35:0e:cc:b5:ee:02:7d:00:
73:f2:06:b8:4f:42:2d:75:fc:37:3c:9f:00:c4:e8:a3:69:38:
05:7c:32:9e:ca:02:97:e0:f5:92:86:a3:24:58:11:51:89:f9:
ed:4c:d0:24:9f:bf:3b:45:49:03:3f:53:6d:59:be:82:bf:35:
25:8c:bd:00:8a:f6:67:36:7c:82:53:8d:3a:ab:dc:d8:61:a2:
4e:9b:43:2b:f5:23:20:25:5f:b5:1d:48:e1:6b:5f:06:b6:14:
ef:17:ea:b1:0c:8e:01:4e:4b:16:50:cc:7b:7f:f7:02:51:78:
e4:58:d4:26:7a:ba:f0:a0:fe:fc:30:cd:85:02:19:bc:42:fc:
27:2e:b6:1c:ba:06:b1:52:a2:90:38:50:f6:bc:07:c7:2d:f7:
b0:fd:17:8c:12:5f:f8:0c:76:39:af:cf:9a:be:16:04:b1:f3:
d7:6c:0e:02:27:15:10:b2:bd:f1:70:df:2a:e1:f2:d5:99:b6:
b9:75:ca:a9:6c:39:c7:89:74:65:80:4b:76:47:51:d9:b4:2f:
85:73:54:8f:48:95:ee:16:1f:bb:b6:c0:ee:3e:d5:d7:08:76:
8c:87:90:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:20:44 2025 by rpki-client