Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
File: bJSdK9ZO4X711H-WPj1depgrEq8.mft (raw, json)
Hash identifier: WFPlwYoPdIwSmFxdoxdqqGcS8rhzBC4Da/IFDdfEz6A=
Subject key identifier: EE:D0:53:AE:78:12:06:08:5B:B4:4C:2E:17:29:31:5B:A0:83:E0:58
Authority key identifier: 6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
Certificate issuer: /CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Certificate serial: 019A722679A58731631642AC49BB67524A72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
Manifest number: 0B8B
Signing time: Tue 11 Nov 2025 09:01:55 +0000
Manifest this update: Tue 11 Nov 2025 09:01:55 +0000
Manifest next update: Wed 12 Nov 2025 09:01:55 +0000
Files and hashes: 1: OyVcB1brzSxuoeEjBo4fT0W9OFc.roa (hash: sut6tQHQTuBMJAc0/1shERZEk1RWFKSSDeDy5cd5Klo=)
2: bJSdK9ZO4X711H-WPj1depgrEq8.crl (hash: 9JSGWWKTPXP9Ba3tIALm1lIsZMzEKILaIMgvrNUtMQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:79:a5:87:31:63:16:42:ac:49:bb:67:52:4a:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Validity
Not Before: Nov 11 09:01:55 2025 GMT
Not After : Nov 12 09:01:55 2025 GMT
Subject: CN=eed053ae781206085bb44c2e1729315ba083e058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:22:97:76:2e:21:80:fb:f2:6d:4d:d7:0d:28:
20:f7:ab:87:35:37:8e:4f:9b:97:9d:26:9f:7b:7a:
24:b3:88:19:25:b0:43:f2:96:c8:48:c6:f1:0b:14:
11:ac:eb:45:a2:15:e9:52:64:3e:32:1a:64:eb:7c:
48:61:6c:b1:91:cb:72:a9:5e:d3:46:6f:8b:e1:db:
3f:49:d0:86:74:a2:60:cf:13:48:ef:9c:51:7a:56:
72:90:f6:00:64:54:c2:aa:f6:0b:55:d3:9f:b8:bb:
c8:61:7c:c0:03:01:50:f4:de:d5:36:5b:a1:51:cf:
40:d4:a2:c6:69:42:57:ad:2d:59:40:de:b6:a6:e1:
8d:26:ba:d7:9e:ab:f2:57:18:e4:1a:b3:9b:da:66:
ad:0c:73:6c:dc:61:0b:5f:f9:90:66:e9:aa:9b:53:
f9:7d:7d:ae:b7:68:a6:0c:03:cc:a6:00:5d:79:f6:
27:c6:c0:72:c9:45:38:81:d5:41:a6:36:70:c1:df:
de:94:8b:0c:d5:8e:a6:e8:e0:05:95:71:a3:67:1b:
05:2e:66:d5:30:59:ce:32:a6:e0:67:22:2d:e7:2d:
46:f6:41:28:50:c6:a6:b7:e4:ae:1d:15:e4:8a:37:
5f:b4:df:88:31:2c:2f:5c:bd:e7:cb:d2:d4:78:fe:
fe:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:D0:53:AE:78:12:06:08:5B:B4:4C:2E:17:29:31:5B:A0:83:E0:58
X509v3 Authority Key Identifier:
keyid:6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:3e:a1:ab:fe:53:74:56:86:a5:aa:54:b2:26:a6:40:97:ee:
dc:3b:8e:71:f9:30:9a:10:dc:84:b8:62:09:74:36:16:56:96:
39:1d:39:c9:2f:6f:72:e1:e0:03:03:e2:fc:ca:c8:a3:87:8c:
c6:38:2f:86:48:73:a7:4f:6d:eb:5a:9f:5b:95:8c:24:7c:81:
12:50:4f:90:6d:59:03:a8:91:82:2b:98:ce:94:7c:67:5b:38:
24:f5:81:95:20:5f:e8:42:71:46:ff:08:62:95:9d:ef:8d:08:
80:60:13:9f:ad:0e:95:0b:6d:7b:fc:71:20:50:85:33:6c:bb:
3e:e4:59:a1:51:c7:d8:86:a6:c9:2c:2f:dc:60:ca:db:2a:0a:
52:12:0c:1f:d9:82:c2:98:13:f8:16:3a:33:94:be:dd:e9:24:
5d:e2:cc:a4:fd:dc:1b:7a:d7:30:69:65:17:7d:92:1b:a0:21:
c4:d1:cb:6a:1a:06:17:18:77:68:3a:f0:07:50:fd:f0:45:dc:
05:ae:c2:5e:cc:0f:58:95:ff:a1:08:5e:a7:b4:c7:58:9f:a4:
d1:72:72:4a:71:da:07:e6:2b:f4:b2:b7:2b:39:7f:53:82:25:
30:38:a7:60:0b:0c:02:10:d8:99:fd:f2:8b:04:d2:bf:48:d0:
33:a9:69:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:41:03 2025 by rpki-client