Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft
File: BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft (raw, json)
Hash identifier: EXBb1cJmz8lrTD0zpuP0OcU+OUMBeZbK6E/YCaiRTsc=
Subject key identifier: CF:4D:2A:75:5B:71:4B:D0:5D:92:BE:55:9D:7C:42:4C:61:96:4C:02
Authority key identifier: 05:2B:10:E5:47:E8:9F:F6:C7:B3:9B:6C:A9:7F:B1:6B:3F:DF:BE:4F
Certificate issuer: /CN=052b10e547e89ff6c7b39b6ca97fb16b3fdfbe4f
Certificate serial: 019A725C741F19D6E7845E2E844A138B0BFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft
Manifest number: 0999
Signing time: Tue 11 Nov 2025 10:00:52 +0000
Manifest this update: Tue 11 Nov 2025 10:00:52 +0000
Manifest next update: Wed 12 Nov 2025 10:00:52 +0000
Files and hashes: 1: BSsQ5Ufon_bHs5tsqX-xaz_fvk8.crl (hash: jF8vUUhxV8v8O5I3FQ9rHcy1PUtp9T3BQajw3z2itUc=)
2: kZOSQmU6A2elFsqdm-zFawpP2VM.roa (hash: bGe5j2ABlU0093SdrMDiQuuHNz672BXZ6vQ6WijSw+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:74:1f:19:d6:e7:84:5e:2e:84:4a:13:8b:0b:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052b10e547e89ff6c7b39b6ca97fb16b3fdfbe4f
Validity
Not Before: Nov 11 10:00:52 2025 GMT
Not After : Nov 12 10:00:52 2025 GMT
Subject: CN=cf4d2a755b714bd05d92be559d7c424c61964c02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:0e:3e:d2:6c:39:e8:8e:da:2c:f7:d6:1c:1e:
51:25:2e:e8:32:9c:e2:65:88:af:e6:48:85:0b:16:
e6:bc:78:14:03:a8:f6:a1:f6:8a:6c:c0:a9:89:78:
6b:2e:40:2e:10:68:87:e1:58:bc:9a:2f:7e:f9:cc:
a5:26:78:f9:24:b1:d6:81:24:50:74:cb:c0:3f:5a:
bd:8a:bf:72:ad:f6:30:43:30:4c:78:d3:59:b2:b2:
7a:b9:8a:13:86:51:44:fc:34:d0:8a:b3:0b:40:c2:
52:ee:57:0b:85:e4:85:70:6f:50:7e:9c:44:45:99:
83:19:61:89:22:0a:9a:11:78:e4:00:0b:03:76:22:
27:e5:03:5f:6b:30:66:cd:91:3d:d1:c8:75:fe:64:
19:d8:61:62:9d:70:e8:5a:b0:29:8f:8b:e1:1d:cf:
8f:75:73:bb:19:12:67:ce:bf:5d:1b:7a:b7:95:21:
d6:ea:e8:fe:49:49:87:6c:a5:1f:7a:03:30:91:2c:
84:1b:9d:db:ce:48:a5:a2:b7:c2:3b:7b:26:e0:51:
4b:a6:41:51:29:af:24:a1:e3:41:23:00:dc:b4:aa:
b3:4a:46:86:e6:77:9e:9d:92:58:a6:2c:20:20:32:
8a:cf:75:78:84:c3:be:20:dd:5d:70:ef:fc:f7:2c:
0a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:4D:2A:75:5B:71:4B:D0:5D:92:BE:55:9D:7C:42:4C:61:96:4C:02
X509v3 Authority Key Identifier:
keyid:05:2B:10:E5:47:E8:9F:F6:C7:B3:9B:6C:A9:7F:B1:6B:3F:DF:BE:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:8e:fb:4f:a4:87:a2:c7:ca:b9:f1:ef:7d:ce:57:ed:7a:ae:
46:c2:53:36:06:f6:e0:41:72:9c:b5:a5:34:7a:c3:57:18:a7:
9f:02:39:47:3e:2d:cd:4c:c7:a4:5a:b4:7e:ae:6b:64:2f:b5:
f7:61:6d:47:3f:be:62:22:6c:98:71:6d:9e:d7:12:27:06:ed:
e0:66:c0:ca:ee:54:79:f6:54:3f:bc:cb:41:44:b5:80:6d:13:
9f:34:9f:17:bc:52:e1:64:3e:cf:08:38:c3:41:c3:d9:75:cc:
73:d7:5d:f1:53:bd:6e:96:8c:b2:6b:47:98:cb:b6:63:55:94:
57:6b:1d:7b:a1:21:63:c7:81:24:8d:4e:6c:19:5e:41:61:dc:
1c:77:99:50:34:94:25:82:ea:0e:6d:fa:2f:96:68:88:fb:3a:
4f:60:c7:97:ad:71:6b:c7:9e:a0:3a:b4:02:dd:09:6b:26:15:
9f:84:25:63:70:03:60:dd:04:3f:77:c8:fb:01:e6:02:f9:41:
d3:83:2b:35:db:62:b2:36:22:a8:16:29:02:55:5f:c7:16:ac:
fb:29:02:85:9c:1e:af:49:71:9a:92:fb:29:4d:01:ef:e5:7e:
d8:81:76:6a:dc:00:60:19:64:e3:d2:1b:bb:ab:bc:35:0e:33:
6d:7d:01:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:52:34 2025 by rpki-client