Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
File: bsJOKsnNUzmWUVkM85Gta78bPiY.mft (raw, json)
Hash identifier: IebCH+7SiqVtDm2j/eZbNDIiY0ZwksKflgXEuS3kBJg=
Subject key identifier: CA:56:2C:17:1E:66:83:65:CC:13:DA:D8:E0:71:A7:70:91:50:97:FB
Authority key identifier: 6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26
Certificate issuer: /CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26
Certificate serial: 019A239C547BCF15D87B1A9FE016A2ADDFC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
Manifest number: 085F
Signing time: Mon 27 Oct 2025 03:00:39 +0000
Manifest this update: Mon 27 Oct 2025 03:00:39 +0000
Manifest next update: Tue 28 Oct 2025 03:00:39 +0000
Files and hashes: 1: JztZZ5jdsYiJwH6r3ruJ841yjPA.roa (hash: fWtXOGVQeuynraDkbnyZnR91bHF3bELX/gnfpid099o=)
2: bsJOKsnNUzmWUVkM85Gta78bPiY.crl (hash: aNW2y2DyeBbMHB7YHZgLbVPjjVjMVjZC7tvux8HEQRg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 03:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:9c:54:7b:cf:15:d8:7b:1a:9f:e0:16:a2:ad:df:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26
Validity
Not Before: Oct 27 03:00:39 2025 GMT
Not After : Oct 28 03:00:39 2025 GMT
Subject: CN=ca562c171e668365cc13dad8e071a770915097fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ae:42:a1:80:df:fa:d0:57:e5:18:70:54:7b:
20:07:91:0a:4d:eb:a3:a4:c1:a9:5a:d0:56:90:ca:
29:96:12:1f:49:02:5d:ec:9c:ca:51:cc:09:d5:35:
c8:47:9f:5c:3e:e4:1e:ba:fb:87:da:87:d7:fb:97:
90:e9:f4:d1:0b:03:95:cb:e5:ac:a3:68:b8:48:89:
10:43:61:6f:72:69:61:9a:a8:9c:6b:e1:93:4f:b2:
7d:1b:e3:a3:3e:f8:18:77:17:43:74:eb:10:e9:2b:
4a:34:7e:39:7c:0e:e7:07:fc:25:61:0e:d1:86:f8:
eb:58:36:c2:ec:83:13:fd:bb:26:92:b6:95:71:3f:
ab:47:05:7b:c7:08:b9:81:21:ee:ba:f7:cc:2e:4d:
7b:3d:7e:7f:3d:4b:a1:4c:2f:b0:37:cc:3c:4c:85:
3c:da:61:49:3e:1b:77:94:fd:1b:75:98:f8:ed:58:
69:26:53:5a:a7:db:30:3e:75:99:63:a0:bc:6b:30:
ed:f9:fe:2f:01:c3:4f:3b:c9:96:94:a0:c7:05:0a:
fb:e2:b4:57:39:97:87:a5:0a:b6:ba:7e:03:cf:ab:
4c:ea:cc:3e:46:e0:ee:fe:cc:d6:84:8b:c6:93:d0:
75:28:b4:da:29:2d:69:de:98:4b:2d:66:5b:00:7b:
e6:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:56:2C:17:1E:66:83:65:CC:13:DA:D8:E0:71:A7:70:91:50:97:FB
X509v3 Authority Key Identifier:
keyid:6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:d5:dd:41:70:89:02:7c:08:22:a1:47:05:80:b9:03:20:5c:
4a:c4:39:0c:75:ed:1b:db:bd:b0:a9:06:cb:fa:7e:80:51:f0:
ef:49:b2:14:b8:82:1a:b0:79:20:95:ad:21:a5:3f:73:c8:f2:
3a:75:c6:ae:15:de:34:e5:7e:1a:e7:70:4d:7c:11:ac:68:96:
14:7a:d6:ad:3d:e7:77:c2:a3:9d:53:5e:73:84:d4:96:ca:1f:
3f:4f:fe:e7:ff:3a:e7:5b:72:14:97:7a:9d:25:0a:9c:5d:11:
62:fd:21:80:a3:36:2b:b9:55:c8:34:d1:59:84:0a:f7:f1:5e:
3e:bb:3c:0e:44:55:d0:ad:88:da:f5:7d:1f:bf:19:dc:da:d2:
22:e9:ee:7f:93:52:9f:77:fa:18:64:4a:7c:9a:cb:63:9e:17:
f5:b5:e4:43:b0:c5:ac:b7:31:eb:c2:bc:d2:92:ac:22:46:52:
91:39:d8:61:68:4c:b1:37:0e:80:c0:10:60:10:ed:a7:c1:e6:
05:b0:c0:4a:e4:01:24:6b:90:77:3b:0a:cf:79:4f:fe:88:06:
1a:da:61:4f:0b:85:58:e1:1d:d3:47:f4:81:11:83:00:a2:2c:
e8:66:eb:bc:2f:78:1c:f4:ec:43:f1:68:64:dd:6a:85:57:4b:
68:97:50:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 09:57:43 2025 by rpki-client