Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
File: bRRgVvD7veYYv_ARwPIrp0pYMrc.mft (raw, json)
Hash identifier: EUkasEKtQ1S1WP/+Mr0sz0TwKvKAqMfI4acJNtIT/Wc=
Subject key identifier: 8F:B6:AC:67:02:4B:54:C3:4D:3B:0A:A4:7F:41:F5:68:DF:5C:E8:06
Authority key identifier: 6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7
Certificate issuer: /CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
Certificate serial: 019A72933D8D30CF3176BF0296203F813CAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 11:00:43 +0000
Manifest this update: Tue 11 Nov 2025 11:00:43 +0000
Manifest next update: Wed 12 Nov 2025 11:00:43 +0000
Files and hashes: 1: PWSDM2wQmRNxztAKQ8wgaZS7VDM.roa (hash: d9Wa5FwcE+PxgkYEzEZPmnpoKU1tHYNjbElNCRhvEFk=)
2: bRRgVvD7veYYv_ARwPIrp0pYMrc.crl (hash: gS2oUPaOzpWcrI3I3JbB88iHmcTaaTRL8BR9945romw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:3d:8d:30:cf:31:76:bf:02:96:20:3f:81:3c:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
Validity
Not Before: Nov 11 11:00:43 2025 GMT
Not After : Nov 12 11:00:43 2025 GMT
Subject: CN=8fb6ac67024b54c34d3b0aa47f41f568df5ce806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b4:05:5a:36:92:f9:86:f4:0e:81:48:b3:78:
07:9d:13:67:6f:8a:36:a4:82:1d:09:46:67:f6:d8:
a4:21:e0:3c:e2:93:c1:df:56:e4:40:c2:30:b5:8f:
6a:ea:5f:a9:e0:57:87:da:fa:02:c2:81:ac:51:7d:
e3:28:e4:5c:5d:f6:d1:9f:ff:b8:a7:54:c8:c4:8c:
79:47:6b:e0:a3:55:c2:5a:61:1b:26:0f:95:66:c3:
36:62:54:c1:49:e9:0d:63:5a:43:3b:3f:a0:78:7b:
95:2f:50:69:a3:c0:a5:3c:da:d7:e6:d6:b0:4f:d0:
92:c0:9a:c6:38:c2:5b:cf:14:fe:9c:c2:0d:4a:80:
5d:6e:d7:62:79:3f:03:cd:32:c2:0c:27:fa:42:48:
ca:4e:98:51:c7:57:93:4f:7c:aa:d9:2a:5c:f5:27:
26:d0:ae:39:9c:82:68:9d:67:bd:5b:43:40:43:1f:
52:a8:7f:66:dd:66:42:f6:77:df:6a:13:46:c0:07:
65:9b:23:e9:9b:74:61:e3:a2:1a:7c:8f:42:56:29:
fb:49:8c:60:da:62:db:66:3e:41:73:a4:b2:a3:b5:
a5:e3:3f:db:90:23:a1:7e:e4:1f:76:77:c5:e1:53:
74:88:f9:6e:9e:45:39:4e:a4:bf:c9:97:3b:fd:91:
14:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B6:AC:67:02:4B:54:C3:4D:3B:0A:A4:7F:41:F5:68:DF:5C:E8:06
X509v3 Authority Key Identifier:
keyid:6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:8e:4a:74:38:22:a6:9e:2e:7d:9b:1b:da:65:11:57:ca:20:
a7:e8:c5:22:24:8d:29:ae:b1:c0:c4:c1:c8:29:c9:be:86:cc:
c6:d0:61:4b:7e:80:b9:e4:dc:41:c9:14:2d:eb:8b:52:33:08:
90:51:14:be:ce:98:cb:cf:5b:39:5e:10:2b:87:64:d4:4e:1f:
bd:a1:06:57:ce:d0:05:38:cf:e1:e4:40:49:dc:17:b1:26:d8:
8d:5a:95:dd:b0:8e:2d:e0:f8:d2:35:13:91:96:de:a8:82:dd:
da:1f:37:d2:04:47:6f:4b:f4:de:7f:92:0d:bf:94:ad:43:69:
d5:57:a7:2e:d9:d5:66:9e:f7:3d:1d:7f:62:aa:18:7c:85:4a:
4c:72:a2:f2:46:6b:5e:e7:6d:bd:44:79:09:d6:e7:77:d1:5e:
49:f6:a9:0b:be:08:c6:d7:47:2c:72:ad:e3:ca:92:ba:e5:8b:
2b:22:e8:6e:82:73:53:73:aa:ef:3c:0d:f4:37:71:a5:21:de:
a4:4d:51:37:97:c3:bc:2d:be:ef:b0:83:6a:df:93:84:8b:19:
1b:cc:e6:1d:a3:59:07:8c:83:14:a8:94:f3:1f:a3:df:dc:f7:
56:1c:71:f3:2c:60:0a:99:20:95:98:32:1a:61:0c:a5:4a:d3:
54:db:f3:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:18:33 2025 by rpki-client