Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
File: u0OX5un46iWRVggDysuzI5Ytn64.mft (raw, json)
Hash identifier: dvOo1WPTeuWB4AF86ntqrvqDCw/nREj0OFZnH2A+FJc=
Subject key identifier: 35:D4:4B:EF:F5:26:EE:3C:FC:1E:B4:65:4D:2D:01:F4:E8:D0:60:E3
Authority key identifier: BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
Certificate issuer: /CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Certificate serial: 019A71B8AB59C257EBC0F3805C79B0CCE11F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
Manifest number: 115F
Signing time: Tue 11 Nov 2025 07:01:59 +0000
Manifest this update: Tue 11 Nov 2025 07:01:59 +0000
Manifest next update: Wed 12 Nov 2025 07:01:59 +0000
Files and hashes: 1: u0OX5un46iWRVggDysuzI5Ytn64.crl (hash: 6KRCdmVA8/Etwl3pn4jQoKgD4Tqfh0kAFznRE5I7940=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:ab:59:c2:57:eb:c0:f3:80:5c:79:b0:cc:e1:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Validity
Not Before: Nov 11 07:01:59 2025 GMT
Not After : Nov 12 07:01:59 2025 GMT
Subject: CN=35d44beff526ee3cfc1eb4654d2d01f4e8d060e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4b:d1:14:6a:5c:98:7f:15:bb:aa:5c:a1:93:
44:1b:b5:80:6c:f7:50:89:d7:8d:0b:9d:a8:f2:c6:
2e:23:e3:a1:b7:e2:dd:db:0c:c6:38:48:53:93:be:
77:80:39:ad:56:63:ec:72:0c:4a:3e:aa:ea:6a:21:
4a:fc:45:6a:a5:0f:70:24:4c:11:c6:7b:a0:b4:57:
ee:49:64:50:64:90:ce:01:41:dd:32:8f:d9:42:73:
03:f1:52:f4:8a:b6:01:e9:8d:d0:5f:3b:5a:f4:23:
33:64:3d:54:3d:88:d1:92:a8:c0:b1:26:c9:71:31:
ef:a6:99:a5:ac:47:a1:b6:d6:f3:cc:28:78:5c:1c:
84:a8:e3:cc:3a:09:f4:46:4e:5b:41:75:b6:61:cf:
87:b9:ae:f9:6a:64:84:19:67:22:5b:79:80:12:ff:
82:cc:8d:a4:99:9f:a8:9c:2a:b6:79:a7:e8:e1:43:
cc:52:79:a9:97:25:ab:aa:16:e0:f4:2f:50:ae:e5:
33:10:ed:d0:89:6e:aa:c5:da:22:de:c2:ef:74:d6:
2d:86:22:d8:4d:d3:b2:9c:f2:da:94:fa:41:cc:b3:
86:8d:d9:94:d4:cb:89:ab:d7:3e:d9:5e:d8:ab:f3:
68:ea:97:4b:48:b3:6f:f4:e1:8f:f1:df:5d:10:54:
31:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:D4:4B:EF:F5:26:EE:3C:FC:1E:B4:65:4D:2D:01:F4:E8:D0:60:E3
X509v3 Authority Key Identifier:
keyid:BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:79:65:79:e9:9d:b2:17:4a:35:fc:80:0a:a2:9e:68:ff:4b:
07:35:28:83:ea:48:de:38:cd:75:75:ec:12:af:7f:32:10:05:
ed:5f:4e:01:28:60:0b:cf:9a:dc:1f:a9:52:22:b9:22:69:f5:
e5:d4:8e:de:29:47:f9:3d:0f:f3:d3:64:78:42:c5:fb:bc:73:
58:41:fd:2f:a5:48:4e:47:62:e3:9f:14:47:11:5f:e5:f9:17:
18:62:c9:4f:6d:42:22:72:5d:44:43:66:6a:a1:d5:12:73:04:
66:04:63:9e:00:41:39:df:53:a8:f9:73:32:54:d2:3f:4c:2e:
72:c9:b1:d4:9a:8e:83:87:82:a4:1a:06:70:d7:02:04:ea:a5:
e2:73:7a:60:a3:7e:27:23:0e:06:bc:22:33:06:8b:a3:9a:9a:
9e:34:1c:08:ef:fe:d7:e3:1d:7e:aa:f7:5b:78:df:1c:69:e7:
b1:b2:37:0a:8e:6a:8a:81:46:65:e2:01:5c:86:e9:e8:14:1d:
16:30:21:83:91:82:26:f8:99:13:41:c6:44:76:0a:34:38:7f:
ee:0f:b6:7e:20:3f:e6:5d:86:6c:6b:d0:16:56:2f:eb:d4:fd:
89:3d:fb:f7:61:1b:a9:95:33:06:41:0a:1a:3c:ad:31:26:45:
82:7d:18:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:12:29 2025 by rpki-client