Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
File: v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft (raw, json)
Hash identifier: sYto0A5p2n2TouGLyzC6WUs6FOlupA4E41sS57z2l8c=
Subject key identifier: 76:0F:57:BA:61:43:63:3C:B1:ED:F0:A2:AA:2B:08:8A:65:B6:F0:0B
Authority key identifier: BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49
Certificate issuer: /CN=bf56ba98c6745a63026d78fc284722399d2eb849
Certificate serial: 019A4EF5809F982E966851D8AE7FE41542FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
Manifest number: 1148
Signing time: Tue 04 Nov 2025 13:01:43 +0000
Manifest this update: Tue 04 Nov 2025 13:01:43 +0000
Manifest next update: Wed 05 Nov 2025 13:01:43 +0000
Files and hashes: 1: 5XEV-gEMIErGK0axVAW_a3kFgdQ.roa (hash: zrBYoY+XDrWBTYUlEabBJW1Q13TMvp0kauzANBjQtoQ=)
2: v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl (hash: xnYt1Uez/rjdEjDLNOBxuVKy3shyIQV3yUXYsWftEaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:80:9f:98:2e:96:68:51:d8:ae:7f:e4:15:42:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf56ba98c6745a63026d78fc284722399d2eb849
Validity
Not Before: Nov 4 13:01:43 2025 GMT
Not After : Nov 5 13:01:43 2025 GMT
Subject: CN=760f57ba6143633cb1edf0a2aa2b088a65b6f00b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1f:8b:7b:ee:93:3d:80:f4:4f:e4:a7:ec:ba:
3d:8a:2c:37:47:a2:7e:6f:4a:6c:c5:18:06:1b:3a:
7c:c6:f0:38:db:d4:17:81:4c:57:3f:75:29:8f:aa:
e5:96:3a:c9:41:89:ef:f9:c5:9f:a9:0b:f3:95:87:
a7:1d:ae:48:f1:18:76:2e:a5:7c:59:a0:0b:b9:27:
96:c5:b3:f0:48:28:e6:d3:c7:0b:8a:b9:e6:46:09:
2c:21:fc:1a:c7:97:33:ab:43:2d:f9:ed:7e:42:0e:
a8:2d:22:b7:2a:f0:83:09:13:f0:9d:e0:8a:d8:8b:
0c:b8:c0:1d:f0:95:e6:40:9e:89:8f:40:5c:ab:29:
9d:c1:ff:f6:44:4a:e6:ee:a3:64:94:88:a1:42:65:
58:41:0f:fa:f7:c5:52:f5:cf:a5:2d:00:ba:0f:ae:
9d:bd:61:ab:09:64:a9:f8:c5:23:58:eb:8b:ac:87:
41:a3:9e:62:c2:c0:51:8f:a3:4f:36:da:89:eb:ad:
09:6b:f3:6a:28:cc:07:77:ed:48:54:94:75:85:a7:
49:ce:e4:70:e1:5f:51:b7:76:22:2d:f2:6f:72:86:
40:66:8e:77:10:c2:39:f0:a6:91:bb:42:d8:e0:32:
95:ee:31:f4:f7:1e:34:50:04:cc:fc:d2:64:3f:46:
93:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:0F:57:BA:61:43:63:3C:B1:ED:F0:A2:AA:2B:08:8A:65:B6:F0:0B
X509v3 Authority Key Identifier:
keyid:BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:42:46:93:94:17:a2:b8:89:28:b4:c1:4f:ed:49:35:7f:7a:
52:7f:a4:5d:43:be:54:43:33:cb:6a:8c:b8:49:27:78:a7:db:
1c:bb:8d:72:ab:fa:35:95:31:97:4e:f6:06:62:23:d1:5d:4b:
3d:96:c4:20:07:ea:5e:54:ff:95:a5:ba:49:49:9c:63:68:2a:
5c:04:e2:ea:9d:50:b0:1d:07:9d:40:27:17:6a:cf:26:26:66:
87:d2:75:0a:6e:f2:ee:ed:e7:b2:ab:2a:86:33:5a:bc:e8:f6:
61:94:4a:09:f7:8f:b1:1a:35:13:38:ed:01:e4:f7:ba:99:e9:
ce:9a:0e:2d:7a:09:91:e2:bb:53:e0:1c:dc:2c:37:53:24:c6:
31:cc:6e:a4:31:ff:75:36:d5:33:b4:87:d9:34:39:ed:b1:1d:
bb:af:6e:00:29:35:e2:52:56:33:00:68:e3:5d:8b:1c:17:96:
bc:7b:d4:88:3c:ad:a0:f3:c2:67:90:f4:24:c9:0e:c9:6a:16:
83:37:15:05:29:9b:b6:c7:39:0b:23:bb:8d:f3:3a:ca:64:42:
c3:b5:e6:ec:39:92:c9:5e:c0:7f:1e:68:75:16:75:4c:dd:d1:
ae:7b:10:75:4b:69:9a:29:b5:ef:d7:1e:7f:c9:5a:81:fb:63:
1f:5e:41:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:17:00 2025 by rpki-client