Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.mft
File: bTi1QIMcnNXfSAhRpygGZ-181kc.mft (raw, json)
Hash identifier: YiJJkSSSjoqggm2QoQw+kxTns+GaPGyw4H4lZafQToc=
Subject key identifier: 12:AA:5F:E4:00:39:04:1C:D2:E8:CA:04:55:05:32:7B:E7:6F:FA:EC
Authority key identifier: 6D:38:B5:40:83:1C:9C:D5:DF:48:08:51:A7:28:06:67:ED:7C:D6:47
Certificate issuer: /CN=6d38b540831c9cd5df480851a7280667ed7cd647
Certificate serial: 019A7293E9BEDD8FD1776F31BEF0317D8871
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bTi1QIMcnNXfSAhRpygGZ-181kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.mft
Manifest number: 0B3F
Signing time: Tue 11 Nov 2025 11:01:27 +0000
Manifest this update: Tue 11 Nov 2025 11:01:27 +0000
Manifest next update: Wed 12 Nov 2025 11:01:27 +0000
Files and hashes: 1: bTi1QIMcnNXfSAhRpygGZ-181kc.crl (hash: +rKhm6q3oILdiYBs+zFzYcELYtqq2nqLQqyd64/w3MU=)
2: okBQ3HYZQrL6ORKAHfJHyIzTOqU.roa (hash: 8hx35QaymOBGYmgY5QQuJWW8cF+INO74gqLHBnenUT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bTi1QIMcnNXfSAhRpygGZ-181kc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:e9:be:dd:8f:d1:77:6f:31:be:f0:31:7d:88:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d38b540831c9cd5df480851a7280667ed7cd647
Validity
Not Before: Nov 11 11:01:27 2025 GMT
Not After : Nov 12 11:01:27 2025 GMT
Subject: CN=12aa5fe40039041cd2e8ca045505327be76ffaec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:14:0b:f4:a8:6d:ec:ee:0b:cd:f6:53:eb:e7:
96:bd:00:8b:b5:d7:df:18:4f:a0:8f:8b:9f:7d:36:
1a:0a:62:34:18:0b:fb:19:7a:89:ad:c7:9e:9d:df:
22:f5:ba:5b:a1:e6:5c:b5:df:5f:f5:ee:2b:1c:91:
c9:8b:60:b6:69:c2:a4:f6:c8:89:83:58:b3:8c:b4:
47:3a:b0:b4:8e:ef:0e:22:f0:34:0e:95:13:0f:ac:
95:99:ed:4d:85:e8:c7:57:58:e6:5b:ef:ee:dc:29:
4c:db:cb:92:6d:c9:5d:78:e6:fd:60:f5:ce:44:bc:
0b:8c:11:d7:3e:8c:4a:b7:83:c5:4c:79:22:0e:1a:
c4:fa:69:03:de:8d:08:0f:12:04:25:9e:5f:cb:9f:
a1:a3:2a:8e:26:e0:4a:c2:c9:8d:be:d7:d6:95:5e:
40:ea:c0:f4:19:bd:e7:74:17:f4:63:72:bc:e7:0c:
f1:9d:3f:7c:db:5e:aa:29:46:23:2e:92:bc:89:bb:
9f:2e:f9:ba:80:7f:ea:c8:eb:59:17:d6:d0:12:9e:
56:7a:4e:0b:14:24:36:83:73:f2:6d:71:12:44:b2:
fe:47:be:da:39:23:54:25:39:38:c2:46:2e:48:0b:
70:f5:47:b7:86:ad:c3:f3:52:ac:fb:06:32:22:ff:
00:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:AA:5F:E4:00:39:04:1C:D2:E8:CA:04:55:05:32:7B:E7:6F:FA:EC
X509v3 Authority Key Identifier:
keyid:6D:38:B5:40:83:1C:9C:D5:DF:48:08:51:A7:28:06:67:ED:7C:D6:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bTi1QIMcnNXfSAhRpygGZ-181kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:7f:07:7c:14:ca:d2:e6:f5:f3:99:8f:77:da:11:32:b4:82:
00:19:a4:e3:bb:4c:64:48:fd:b7:17:40:20:7d:10:6c:67:78:
5d:f9:0e:50:be:47:22:23:23:62:64:54:e8:d8:45:fc:a8:f6:
f2:d0:52:f6:c2:0b:5d:cd:b7:42:39:af:95:3f:97:42:66:73:
df:9f:a2:de:7e:46:26:40:02:85:da:68:8a:af:f7:3a:c7:fb:
d0:7e:53:00:d8:0c:f5:aa:84:e7:90:18:31:5f:5c:e9:bb:e0:
68:fc:b9:9c:de:72:ce:84:22:55:92:38:e0:bd:a2:a7:87:4f:
77:cd:4e:56:a1:22:11:5a:92:1e:d0:e1:d9:b3:29:36:d6:ab:
e4:7d:eb:79:e0:62:8e:29:b5:58:35:de:29:1c:a9:2b:54:ca:
7f:c2:f3:94:5d:20:67:75:35:bb:a9:2f:ee:b3:fc:4b:d3:9f:
84:3d:29:26:bc:54:73:df:ba:1b:0d:f1:b5:95:2a:6e:32:7a:
45:e6:2b:ed:d6:3f:11:e9:59:8f:a0:c3:9f:5c:e3:12:1c:64:
77:f5:34:8f:c3:b4:22:06:e0:e4:37:d3:fd:30:14:ce:4a:38:
d4:97:b3:1c:83:da:77:73:3b:ce:31:37:4a:87:3f:8b:e2:e0:
ab:f9:ed:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:56:44 2025 by rpki-client