Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
File: MXBn6Bphoh_cFIWY72ull1f6A4A.mft (raw, json)
Hash identifier: vhExE2xlLkNMk4vbg7Fc/N3Ay0u2Ok/V5rv35+qeGxA=
Subject key identifier: 05:09:8A:44:C8:BB:A6:67:E9:F4:77:37:C7:EB:D9:72:CB:CC:F9:59
Authority key identifier: 31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
Certificate issuer: /CN=317067e81a61a21fdc148598ef6ba59757fa0380
Certificate serial: 019A7226556D8018EA139333C6D80A78F253
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
Manifest number: 09A6
Signing time: Tue 11 Nov 2025 09:01:46 +0000
Manifest this update: Tue 11 Nov 2025 09:01:46 +0000
Manifest next update: Wed 12 Nov 2025 09:01:46 +0000
Files and hashes: 1: 1kHURLGCgDrhi9IHuZm9V5RPr7o.roa (hash: QOJumlfbHeKteqZFgdexa+53Le46L9xrcfm0BrIrj/w=)
2: MXBn6Bphoh_cFIWY72ull1f6A4A.crl (hash: Q3HGcp92aLJBQfuWkKFh1UJvyAwfAYYYUEptNF9QzFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:55:6d:80:18:ea:13:93:33:c6:d8:0a:78:f2:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317067e81a61a21fdc148598ef6ba59757fa0380
Validity
Not Before: Nov 11 09:01:46 2025 GMT
Not After : Nov 12 09:01:46 2025 GMT
Subject: CN=05098a44c8bba667e9f47737c7ebd972cbccf959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2c:41:d4:46:1a:41:b6:d0:5a:aa:b2:99:41:
6d:b9:8d:97:7f:80:65:7c:74:50:14:ec:32:48:46:
fe:0d:0b:d8:11:df:a5:f6:95:95:e9:f7:fe:97:fe:
58:ac:9a:2f:0e:43:e9:c0:a1:a5:5d:77:2e:83:b2:
52:a7:05:c9:16:a2:c8:5c:ff:df:f3:0b:52:38:73:
14:6f:11:51:7c:13:42:24:6f:0d:4e:58:eb:d7:84:
6c:49:05:8b:07:e8:a6:db:d4:dd:a2:c8:db:0c:b3:
0f:92:1d:0e:0b:a1:a6:62:74:27:9e:9d:85:8e:34:
79:9e:db:d7:2f:08:61:81:84:a4:ab:18:3b:18:e0:
08:9f:98:f5:44:20:bb:c9:e9:34:a6:3c:a4:70:f0:
3e:7e:1e:d7:32:a8:27:3e:60:89:fe:4e:9f:ef:8b:
9d:81:83:b1:3a:c8:a0:5a:88:d4:5e:93:e1:4b:81:
53:f6:7f:c0:8a:c8:05:8c:be:27:b2:63:39:2c:d9:
b2:15:55:9c:42:59:ff:6b:27:0d:d4:2e:de:b7:0b:
eb:04:92:1a:0d:65:0d:e0:d0:e0:78:ca:ac:f0:ed:
ec:67:bb:39:8d:15:ce:b3:07:79:de:e8:93:54:5e:
1d:99:0c:7d:bf:9f:2f:ec:29:cc:da:39:88:60:95:
a7:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:09:8A:44:C8:BB:A6:67:E9:F4:77:37:C7:EB:D9:72:CB:CC:F9:59
X509v3 Authority Key Identifier:
keyid:31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:3c:32:2d:f1:c3:ce:64:9e:1d:bf:61:4f:cb:43:16:a2:a6:
d0:e3:b7:a5:2f:85:c5:42:fb:f5:f2:25:83:87:2d:35:f8:14:
73:44:23:55:4d:10:b3:52:4d:85:33:8c:d6:40:05:4c:92:d8:
93:76:32:18:e7:95:c8:dd:a1:1f:91:8d:b7:3a:3c:c5:45:8b:
da:e9:61:57:03:ca:7e:d8:41:42:f0:69:0c:bf:06:52:27:fb:
33:01:be:06:10:f4:47:a3:4c:e2:1d:c8:bc:c2:58:ca:74:dc:
cf:40:83:b9:38:79:34:29:da:ae:ee:db:6b:e0:66:cc:67:3a:
26:2f:c2:90:b3:7f:3a:25:e9:e8:2b:e9:d0:c6:78:13:76:97:
af:3e:2d:aa:2f:9e:f6:04:b6:aa:6b:e1:82:b4:83:ca:b2:80:
eb:68:e1:f7:79:fd:32:98:04:eb:d4:7f:f7:4d:dd:8e:26:73:
4f:ec:b3:38:af:a8:03:bf:90:79:a2:d5:2c:e4:22:ee:fd:38:
65:ac:e7:c9:dd:ee:aa:9c:c4:b7:ec:53:80:75:ae:7d:0f:2b:
b8:83:07:2f:bf:69:8f:7c:e5:73:40:ae:03:85:ac:d0:2c:b2:
a6:46:a9:2c:53:53:9e:e7:5c:0e:8e:eb:00:03:29:44:f7:fb:
56:be:e6:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:07:31 2025 by rpki-client