Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
File: bs1crU0zBsT3LEKvwG5c0fuv46M.mft (raw, json)
Hash identifier: R2nEvtCVrGhMK/PRoXOnkdz1IjWyFP5BuadPrj6/el4=
Subject key identifier: 9A:45:BB:84:FD:7E:EE:F3:32:F8:2F:C3:D8:B4:77:B4:32:3A:08:27
Authority key identifier: 6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3
Certificate issuer: /CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
Certificate serial: 0199387051446D5B33AFB4B737FAAF3B5C0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
Manifest number: 1681
Signing time: Thu 11 Sep 2025 11:01:48 +0000
Manifest this update: Thu 11 Sep 2025 11:01:48 +0000
Manifest next update: Fri 12 Sep 2025 11:01:48 +0000
Files and hashes: 1: IVWLNAUIsWDuNfRfR17vH-v5XfI.roa (hash: OmbLmtXQG4MyTcSNnTCa+QZsFqNmOgdwU2G3Jors4PA=)
2: bs1crU0zBsT3LEKvwG5c0fuv46M.crl (hash: zaHQ+LDWWQl1r7NUZilV1/3XQiHCLmtP7XXt+RIo29E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 11:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:38:70:51:44:6d:5b:33:af:b4:b7:37:fa:af:3b:5c:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
Validity
Not Before: Sep 11 11:01:48 2025 GMT
Not After : Sep 12 11:01:48 2025 GMT
Subject: CN=9a45bb84fd7eeef332f82fc3d8b477b4323a0827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9a:6a:62:ab:13:3d:48:a1:2c:9c:cb:66:9c:
b4:3c:2e:e6:9e:a3:d1:a7:bb:4a:47:6e:3d:25:65:
df:6d:3a:04:a6:f6:8b:1c:93:5d:4a:cc:50:da:b2:
07:9a:a3:83:ef:4c:fc:e7:16:e3:84:c1:c4:b4:d9:
1a:fe:1f:33:8b:41:a6:2f:a2:a4:14:8a:0e:11:43:
a4:60:7a:34:04:dc:cf:7e:0e:dc:f5:b1:c9:77:d5:
98:a8:01:e5:0f:04:45:03:75:db:f6:53:dc:21:6b:
20:ae:0e:dd:48:c3:6a:6c:7b:6b:b7:c7:25:e3:df:
fd:71:5d:2d:f2:03:47:a2:5d:2a:79:d2:9d:bd:ff:
b2:b7:15:33:40:a8:22:3c:a1:55:af:bc:24:5e:b4:
31:cb:8a:14:e8:eb:39:b8:17:73:f6:42:96:e4:67:
cc:83:73:19:5b:dd:3d:d5:76:f7:42:34:37:0f:6b:
be:8f:73:bc:af:3f:5a:69:a2:df:fb:00:47:9c:bf:
fd:2f:e5:13:3d:bf:de:c9:4d:b9:31:fc:73:e6:e9:
c5:33:ef:41:ed:ad:9e:c7:9e:ff:86:27:0c:ad:42:
6d:40:0b:19:28:ae:82:49:4e:91:87:50:be:1c:02:
26:68:3f:e4:29:71:a5:d1:c4:43:b0:8c:89:78:9c:
4b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:45:BB:84:FD:7E:EE:F3:32:F8:2F:C3:D8:B4:77:B4:32:3A:08:27
X509v3 Authority Key Identifier:
keyid:6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:f8:fe:44:09:03:fa:18:56:fa:db:d3:6b:db:8b:bc:09:72:
69:f5:e5:f1:66:52:ac:7d:09:09:30:a1:2e:fc:63:2f:3a:89:
a7:01:e7:bf:2e:d4:3f:b8:d6:ce:db:41:e0:b2:d4:37:a9:e8:
57:cc:95:9b:b6:82:53:43:61:85:1d:de:43:01:bc:fc:b0:b4:
8f:54:67:ae:b0:c5:d2:f3:42:1e:af:b3:8e:9e:59:34:b4:e6:
99:c7:9e:cb:97:36:32:11:84:a4:4d:df:dc:36:06:4c:7e:3f:
bc:2b:52:5e:f9:73:26:21:a3:20:fd:a7:aa:02:8d:14:6d:bf:
e8:4a:36:20:04:ce:62:33:1d:b8:0d:77:9e:79:28:55:f3:9e:
be:91:06:40:e0:e5:13:3c:8e:60:78:e2:11:ec:36:48:1e:fc:
3e:69:c5:d6:99:39:82:66:9f:ec:d0:dd:43:f2:05:25:11:9a:
17:17:8c:4c:a4:83:87:54:29:d5:3a:c1:10:77:e5:85:94:ae:
75:4e:09:74:29:76:08:4b:29:94:28:7d:86:96:52:f4:53:a9:
fd:0c:66:d7:d0:f5:94:34:21:75:57:3a:7a:4d:ab:d8:7f:6d:
9a:1c:ab:97:63:66:32:c4:38:d5:53:b5:0a:f9:2a:59:a7:96:
e1:fa:1e:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 20:37:43 2025 by rpki-client