Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
File: BkwamGxZM6O5EIToo_8IBm05jhk.mft (raw, json)
Hash identifier: DBKBlRtg7+Ahf5CjWyrkG1XpIGYdqIOFD2wg+5RKpJA=
Subject key identifier: C1:E5:B3:4C:7C:19:A5:AC:E1:4F:17:31:83:C8:B1:07:53:F5:00:62
Authority key identifier: 06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19
Certificate issuer: /CN=064c1a986c5933a3b91084e8a3ff08066d398e19
Certificate serial: 019A50E3BAF1A7840C8E9372498A905B883C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
Manifest number: 0B1E
Signing time: Tue 04 Nov 2025 22:01:32 +0000
Manifest this update: Tue 04 Nov 2025 22:01:32 +0000
Manifest next update: Wed 05 Nov 2025 22:01:32 +0000
Files and hashes: 1: BkwamGxZM6O5EIToo_8IBm05jhk.crl (hash: X3IdWyu+sDVMqQvdNsCzZBZqlWkNgK0WBdFTYIOVqcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e3:ba:f1:a7:84:0c:8e:93:72:49:8a:90:5b:88:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=064c1a986c5933a3b91084e8a3ff08066d398e19
Validity
Not Before: Nov 4 22:01:32 2025 GMT
Not After : Nov 5 22:01:32 2025 GMT
Subject: CN=c1e5b34c7c19a5ace14f173183c8b10753f50062
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:21:ef:6d:00:75:b0:64:99:61:a3:20:b7:64:
e4:b0:d8:a0:f2:d3:75:b2:ad:b7:67:99:9c:0a:8a:
f9:05:f5:56:db:cb:21:be:02:9b:f1:aa:d5:5d:90:
13:e0:c1:2a:dc:b6:22:e4:4b:11:96:a2:f6:49:a5:
a0:47:87:e5:ae:ed:74:dc:f3:fd:be:d0:2d:19:3d:
0e:d9:42:fa:91:e1:08:da:69:01:d6:e8:4d:25:2d:
20:3b:37:ae:53:07:59:46:f8:35:ca:99:10:5f:d0:
8f:bd:55:5f:8e:66:69:c1:5a:ea:d6:90:84:ca:6a:
0d:1a:7e:0e:97:d7:2e:27:cf:f5:21:77:03:ec:b5:
01:f1:f3:f7:28:dc:17:bb:95:75:74:bb:38:0d:ea:
95:e2:14:f7:09:b1:7f:54:38:a7:27:51:81:3f:a1:
aa:ce:94:b0:2e:7b:c7:cb:b3:5d:fd:5b:4c:71:79:
3b:45:b7:ea:2b:f8:54:6e:8a:e2:a0:04:46:90:f2:
00:68:4d:67:34:a1:bf:a7:f0:77:e8:a3:a9:b8:56:
d3:5a:9e:e0:0e:d2:ce:b6:e0:48:0b:27:36:30:18:
2b:98:5f:fc:07:dd:67:f9:9b:ec:10:be:5f:70:19:
08:d3:5b:ee:2b:91:c6:28:ee:92:66:9f:87:f4:4d:
84:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:E5:B3:4C:7C:19:A5:AC:E1:4F:17:31:83:C8:B1:07:53:F5:00:62
X509v3 Authority Key Identifier:
keyid:06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:5a:b1:89:76:a5:2a:0f:cb:fc:63:0d:6b:d9:da:f2:72:0b:
fe:b1:e8:9e:8d:73:9f:a5:96:de:30:4e:8b:c6:66:19:c7:49:
c9:80:ad:4b:e3:34:ca:dd:e5:52:01:6f:11:57:49:dc:30:c2:
74:9d:21:b1:38:43:7a:63:5a:ae:37:eb:4a:ea:8c:35:69:d9:
25:a2:0c:f9:11:04:6b:53:7c:55:dc:93:e4:e5:bd:fb:d4:50:
84:b4:1a:f4:25:f3:b2:34:19:03:2a:d3:de:f2:14:86:ef:7d:
4d:74:32:cf:b4:cf:77:3a:76:75:de:10:a7:d2:a4:3c:73:f1:
bf:15:7c:1e:a4:e4:7f:45:65:df:a8:78:8b:0d:b8:33:71:bc:
11:ce:2e:9f:5b:f9:ae:65:6b:59:e4:97:6d:ed:c5:33:75:ff:
c5:c1:ad:12:dd:26:cd:7b:34:a8:7b:78:29:4c:87:2e:98:cd:
1b:47:20:05:80:8f:42:d4:e7:f8:1f:92:08:f0:34:ef:f0:e2:
82:eb:e5:25:9a:e0:80:9d:ce:04:65:be:70:b3:5a:5b:8a:6d:
55:21:83:9a:3a:e9:35:aa:7f:0d:31:ac:5f:6a:d6:6b:41:d4:
4f:42:23:39:8f:49:b7:07:e7:62:10:01:a4:cb:33:04:46:8f:
21:c7:b4:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:18:11 2025 by rpki-client