Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
File: BaO2FkB7l-JhFjNId8aqkoqq7rI.mft (raw, json)
Hash identifier: A7bdRNCc3XLbxcBsVKIqGbO4vhZEooHUnZo1043W9dU=
Subject key identifier: 30:81:C0:F8:B8:3D:AB:D4:CB:19:CF:E2:32:77:B3:52:CB:60:20:2C
Authority key identifier: 05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
Certificate issuer: /CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Certificate serial: 019A25C180B7DF71F53796770D27F8F44793
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
Manifest number: 0AE6
Signing time: Mon 27 Oct 2025 13:00:29 +0000
Manifest this update: Mon 27 Oct 2025 13:00:29 +0000
Manifest next update: Tue 28 Oct 2025 13:00:29 +0000
Files and hashes: 1: BaO2FkB7l-JhFjNId8aqkoqq7rI.crl (hash: jaJMITvTtunDH0YCNIFmOnsH+AGAM52rf0wk0O0o93Q=)
2: bDkAt0CCYnB2xqRfpALpEK1gmgo.roa (hash: HzyjrIASJdGjjHtk6b54LHkaX+3Gt8eRcO+z/aYxOaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 13:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:c1:80:b7:df:71:f5:37:96:77:0d:27:f8:f4:47:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Validity
Not Before: Oct 27 13:00:29 2025 GMT
Not After : Oct 28 13:00:29 2025 GMT
Subject: CN=3081c0f8b83dabd4cb19cfe23277b352cb60202c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:13:b3:0f:9a:f5:b3:c6:c1:d7:e1:25:2b:4b:
0e:8f:48:9d:be:87:2c:d5:9d:af:41:12:23:63:8e:
90:b7:4d:9f:ad:45:33:92:b0:a7:9b:15:40:f6:56:
89:46:46:b3:77:21:0a:7b:d6:5b:7d:d2:eb:e1:f9:
5c:22:8a:c0:be:34:03:ac:e0:3d:84:86:84:52:e6:
95:0c:cb:8f:23:54:6f:68:dd:29:b1:82:bb:ac:c8:
57:e3:ff:c2:36:b1:0c:8f:b6:a8:38:a3:9e:dd:31:
2a:cc:02:28:0c:0b:dc:58:d0:1d:f0:6f:f5:96:79:
5a:1f:dd:13:b9:5a:63:22:74:a3:d6:9d:02:d8:88:
e5:db:84:1d:23:1b:f1:b3:38:7b:18:45:0f:e3:78:
e6:f9:a5:61:2f:31:92:29:9a:47:50:f3:df:cc:fe:
c1:88:8c:69:3d:20:82:4e:16:e8:68:71:8a:1c:cf:
ca:71:47:bb:8b:07:fd:9f:d7:d7:08:41:68:1e:3d:
54:a2:2b:c7:3d:c2:29:43:0d:ce:20:c9:84:0b:8e:
15:88:f9:20:55:42:08:5e:26:0c:4f:db:98:df:8a:
ac:81:75:46:f6:11:a7:b1:4c:9c:e8:6c:40:25:0c:
c7:ba:b7:d8:14:8d:8a:19:88:14:83:1d:13:53:b9:
e8:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:81:C0:F8:B8:3D:AB:D4:CB:19:CF:E2:32:77:B3:52:CB:60:20:2C
X509v3 Authority Key Identifier:
keyid:05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:7b:ff:93:3c:d3:31:80:04:19:63:e0:8f:4b:b6:f4:c2:68:
a3:a3:59:fb:b5:4e:7b:b1:55:91:09:15:ba:e3:30:37:ad:cb:
7a:e0:1a:e8:71:96:35:61:81:79:2a:18:b1:54:39:c9:c6:39:
41:e5:49:81:21:8f:36:3d:32:58:60:fb:b3:39:47:5c:67:9c:
a9:54:b5:ae:9c:97:6c:87:4d:69:2e:c5:e5:00:b1:99:4b:1b:
a3:10:55:05:0f:e1:65:0a:e0:14:cc:66:6d:aa:62:6e:04:4e:
de:6f:60:96:f7:ae:0c:6f:9f:60:fe:9e:01:d6:01:65:4f:b8:
e3:70:d5:c9:fd:2c:3c:64:db:93:e6:6f:65:e9:5f:a8:97:02:
00:13:02:f4:09:46:d5:22:0a:1e:ef:55:3c:e9:2c:21:e3:67:
48:00:a6:5e:a9:31:99:ff:61:8c:04:3f:b9:0d:08:3a:e5:78:
fe:99:59:2f:8c:80:fc:31:e1:f3:63:e8:ed:01:c9:90:a2:6f:
ca:06:b8:72:e1:03:f3:80:a8:f0:88:3b:71:a9:13:b9:cb:ca:
f4:ac:ff:0c:54:ff:d0:4c:53:47:c0:8d:a4:11:72:12:92:68:
57:84:5c:a4:3d:44:7e:82:c2:d3:57:84:26:11:bc:82:55:2f:
86:9f:13:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 18:22:32 2025 by rpki-client