Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.mft
File: v60IrIYttq4LsLiArsBV7by7gvw.mft (raw, json)
Hash identifier: HWUAktMbI/U6uTwJQer6EC8TCFYny8XchDVVOY+r+GI=
Subject key identifier: 4E:E5:F4:E6:51:BD:8D:9C:7B:F0:DA:47:1B:12:2A:AA:AC:7E:BC:46
Authority key identifier: BF:AD:08:AC:86:2D:B6:AE:0B:B0:B8:80:AE:C0:55:ED:BC:BB:82:FC
Certificate issuer: /CN=bfad08ac862db6ae0bb0b880aec055edbcbb82fc
Certificate serial: 019A2A442F3C9071206DDABA489136A68599
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v60IrIYttq4LsLiArsBV7by7gvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.mft
Manifest number: 0ED4
Signing time: Tue 28 Oct 2025 10:01:42 +0000
Manifest this update: Tue 28 Oct 2025 10:01:42 +0000
Manifest next update: Wed 29 Oct 2025 10:01:42 +0000
Files and hashes: 1: CZZ5ipuaAOE-Yr5zJDMCRrkyVSA.roa (hash: iFc83ywiMJmrxS1NXOM6QWOY3OsVmvxahP4mNSEaMZM=)
2: v60IrIYttq4LsLiArsBV7by7gvw.crl (hash: TANLH2zz9XB4U4SxcqOhh9CYOG5/Eo5GUGKSdZVSa0M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/v60IrIYttq4LsLiArsBV7by7gvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2a:44:2f:3c:90:71:20:6d:da:ba:48:91:36:a6:85:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfad08ac862db6ae0bb0b880aec055edbcbb82fc
Validity
Not Before: Oct 28 10:01:42 2025 GMT
Not After : Oct 29 10:01:42 2025 GMT
Subject: CN=4ee5f4e651bd8d9c7bf0da471b122aaaac7ebc46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f2:6b:b5:52:14:1a:e3:4e:c2:fc:38:ea:e7:
38:31:3a:5f:1a:bc:e9:fb:83:16:44:e0:18:07:1c:
45:e4:b7:3d:77:d6:b8:df:4c:57:f1:f5:2b:da:ff:
70:ec:f1:40:a8:a0:a7:b3:36:c0:a7:2d:eb:a2:4d:
c3:d1:09:83:cb:50:cc:36:5a:02:40:17:08:a2:8a:
8d:a9:83:c1:c0:b8:97:39:de:20:6b:05:4b:b7:d1:
54:31:8f:ee:1c:f1:c4:90:f8:19:e6:47:f3:b7:34:
98:5a:24:3d:db:32:a6:d5:21:bd:d4:93:dd:7b:6c:
6b:d5:16:04:79:ed:7b:db:2b:2d:31:f5:ca:1e:ad:
b5:f2:12:9b:03:a0:0d:37:b8:31:a0:b7:7b:c8:7a:
7f:b4:2f:0a:0e:d8:13:d8:37:57:8a:97:0e:f7:27:
a9:35:0f:14:7f:c3:4b:53:32:d6:32:4e:eb:4d:b1:
c1:89:da:54:b2:75:5a:cf:ef:c7:f7:4e:b8:6e:22:
b8:34:38:4e:3e:25:e6:18:67:72:e4:94:24:2c:4a:
41:45:e8:a1:fd:0a:26:52:e5:d4:c0:69:0f:e1:e3:
5f:0a:0e:70:90:87:9a:b0:d4:63:c7:42:22:42:e8:
08:72:47:33:2d:d7:6c:6d:c9:2b:90:17:e0:d8:47:
84:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E5:F4:E6:51:BD:8D:9C:7B:F0:DA:47:1B:12:2A:AA:AC:7E:BC:46
X509v3 Authority Key Identifier:
keyid:BF:AD:08:AC:86:2D:B6:AE:0B:B0:B8:80:AE:C0:55:ED:BC:BB:82:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v60IrIYttq4LsLiArsBV7by7gvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:5c:4c:33:71:0f:f6:d8:2e:2e:fe:66:e3:9c:84:c5:51:cb:
8e:3a:9c:23:94:b0:c8:86:f5:20:9a:8b:97:81:34:25:a2:24:
8c:39:e0:d8:e6:70:0e:6a:8c:41:d8:b9:05:23:08:31:02:10:
37:7b:c1:be:f7:de:fb:ea:65:9c:df:d2:3b:b1:20:a3:43:72:
1c:59:b5:ed:46:8e:2f:99:0d:98:c8:e9:9f:ef:b8:f4:d1:f6:
16:05:45:0a:b0:f5:2d:c5:d5:a0:4e:ea:1b:38:72:a1:67:0d:
33:03:e9:ba:97:d1:29:c3:aa:b0:14:5d:bd:a2:29:30:2d:a1:
d4:11:4a:36:6f:68:52:13:5a:28:7d:98:fd:30:01:45:a6:75:
68:d1:6b:e6:f0:e9:a6:fd:7c:70:07:e9:91:49:05:18:51:d8:
76:57:97:03:de:c3:d6:4c:4c:71:ae:9d:79:31:84:0c:c2:ee:
b1:02:e9:64:60:9a:29:b4:ed:05:2b:6b:93:63:52:50:c6:16:
30:8b:50:33:9c:b0:e3:e5:87:d8:3d:fd:68:e0:d1:ba:67:b3:
f2:a8:e3:93:54:3e:f4:5f:03:e1:ec:68:4c:1b:81:96:d4:9f:
e9:ce:0e:a4:61:70:60:37:08:e4:81:1a:4c:59:fb:11:b7:1c:
f7:e4:25:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 13:15:13 2025 by rpki-client