Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft
File: b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft (raw, json)
Hash identifier: YnmzYM+NukN+PqnVAfBI2KpaWKRjOz+W2HpS2+nHr/M=
Subject key identifier: 7F:0A:8E:5D:59:C4:DB:09:CA:5A:D1:3F:D7:F7:A5:F8:26:AA:EF:53
Authority key identifier: 6F:A4:8E:96:19:74:26:E4:C5:EE:B4:23:E0:FD:9C:2E:95:2C:41:77
Certificate issuer: /CN=6fa48e96197426e4c5eeb423e0fd9c2e952c4177
Certificate serial: 019A7112B3519AD669C8B7F36D8F3EE7F550
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft
Manifest number: 1662
Signing time: Tue 11 Nov 2025 04:00:42 +0000
Manifest this update: Tue 11 Nov 2025 04:00:42 +0000
Manifest next update: Wed 12 Nov 2025 04:00:42 +0000
Files and hashes: 1: 9eMR4FNJDVauWkWIUPQVpbQ5CXg.roa (hash: u33y8H6nVy03TdakAVCKdnmWlusbHupRimP8Gevy98g=)
2: b6SOlhl0JuTF7rQj4P2cLpUsQXc.crl (hash: /VVuXZWwKijXYwfIMCEt5WplEYGwqtAWJPtu8SSr/tc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:b3:51:9a:d6:69:c8:b7:f3:6d:8f:3e:e7:f5:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fa48e96197426e4c5eeb423e0fd9c2e952c4177
Validity
Not Before: Nov 11 04:00:42 2025 GMT
Not After : Nov 12 04:00:42 2025 GMT
Subject: CN=7f0a8e5d59c4db09ca5ad13fd7f7a5f826aaef53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a4:6f:7c:1b:62:08:87:ab:da:04:ff:4f:ce:
21:91:a2:a4:89:3d:c2:74:f2:34:be:11:27:9a:1c:
03:fe:69:2b:20:c1:3b:14:c2:f9:29:ed:44:da:cb:
23:a5:65:f1:8e:af:19:3a:49:75:46:07:b3:84:e0:
90:11:29:e2:e6:cc:ff:df:60:52:f7:41:cc:ac:de:
4c:a5:47:d6:38:4c:de:b8:43:13:6c:a5:fc:2e:59:
ba:e5:16:27:f4:42:60:cb:08:80:d2:27:6c:ad:22:
29:89:5f:22:e6:0a:38:d5:a1:b9:28:55:f4:f1:56:
4d:ef:9d:e7:a4:c4:ab:a8:2f:e3:22:77:80:ae:f2:
7c:98:67:0f:a4:05:a1:96:ab:26:24:b7:94:9d:8f:
2a:a1:5b:dd:9c:2f:f2:38:fd:f6:66:62:3a:5c:73:
bc:a3:53:39:1c:fa:03:c9:4b:6e:03:a9:17:1c:1f:
1c:cd:04:ac:0b:30:74:2a:ce:04:dc:ad:2f:78:42:
01:27:79:d4:67:76:14:5b:6f:2a:81:aa:bc:0a:53:
2f:d4:b5:fa:8e:65:d5:b0:a5:0c:7a:f6:a3:78:28:
5e:7a:38:d7:ed:5f:16:0a:16:e1:4e:36:d0:1c:bc:
d9:d8:46:95:2c:79:23:76:e7:6e:e1:38:de:fd:9f:
0a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:0A:8E:5D:59:C4:DB:09:CA:5A:D1:3F:D7:F7:A5:F8:26:AA:EF:53
X509v3 Authority Key Identifier:
keyid:6F:A4:8E:96:19:74:26:E4:C5:EE:B4:23:E0:FD:9C:2E:95:2C:41:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:76:06:7e:8a:8c:c4:2c:86:83:ea:6e:07:9a:d6:bb:14:2e:
f5:a4:cd:74:b4:d7:f8:9e:19:47:bf:61:4b:fb:3e:bc:24:8f:
e6:ba:d4:75:35:84:28:ae:19:96:c9:f9:d8:af:5a:ff:fa:64:
43:44:9a:a5:56:45:43:40:99:71:bc:25:67:57:9c:df:88:9e:
96:eb:a0:af:4b:58:46:c9:07:a6:93:63:f1:68:f3:28:5f:bd:
c6:e1:6b:49:3a:93:e3:58:78:76:1c:2c:25:a5:63:03:02:17:
54:48:32:c6:2e:47:a4:68:5b:d1:d0:6b:41:3f:de:7a:3d:12:
cd:f1:49:4a:1a:09:da:b6:69:7f:76:72:91:a0:8d:25:c1:f6:
a7:b8:fb:1b:60:1b:18:db:90:88:3f:85:d7:bc:45:cc:78:61:
16:86:ac:9b:79:8e:78:2a:53:33:7e:32:03:5a:28:3e:51:f0:
f4:87:d9:c6:7d:f3:92:dd:c5:f4:f9:39:63:7a:94:d9:60:e9:
72:bf:c4:3a:eb:3a:6b:9f:68:dd:09:e8:14:af:b3:d0:f8:51:
9f:a8:8a:3f:48:3c:d6:35:4f:e8:d3:e6:14:b1:68:9e:15:7d:
75:82:60:4d:6d:e0:8d:55:49:e6:a5:fc:18:50:9a:28:25:d6:
5d:b9:63:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:51:34 2025 by rpki-client