Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
File: bMdYWreoPsgLVauVe_N7eR52UBY.mft (raw, json)
Hash identifier: 6XpO7BKykvT8X+cKvHb7SUBck5NXNh0r5HohAxR/WsI=
Subject key identifier: E9:42:C6:92:6E:77:C5:67:A0:9C:F9:2C:75:2A:33:6C:ED:2A:DF:62
Authority key identifier: 6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
Certificate issuer: /CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Certificate serial: 019A71B7BF7D72E3DCE3EAF40DFC234B0133
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
Manifest number: 148A
Signing time: Tue 11 Nov 2025 07:00:58 +0000
Manifest this update: Tue 11 Nov 2025 07:00:58 +0000
Manifest next update: Wed 12 Nov 2025 07:00:58 +0000
Files and hashes: 1: JJLEui4261ZXJVAJCMhhZuF8jH8.roa (hash: /ixKOls/TcJQuO85TTUBz1567wbeYHBB+Wz+IfsDjR8=)
2: bMdYWreoPsgLVauVe_N7eR52UBY.crl (hash: 57gnnna9MZKGbpov8QWEJ4Nd5MKl4lfYYG0W/O25EN8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:bf:7d:72:e3:dc:e3:ea:f4:0d:fc:23:4b:01:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Validity
Not Before: Nov 11 07:00:58 2025 GMT
Not After : Nov 12 07:00:58 2025 GMT
Subject: CN=e942c6926e77c567a09cf92c752a336ced2adf62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:20:2a:1b:a4:de:6f:d0:bc:68:09:c3:74:af:
7e:d3:d8:f7:43:5e:e5:63:04:0f:06:e6:bb:0f:c0:
b1:aa:fb:88:d2:3a:f6:bc:4d:17:91:6e:61:d4:fc:
bf:e0:e5:53:ee:4a:a2:65:8a:93:55:06:2f:e8:c8:
6f:0c:87:4d:47:62:49:dd:a0:a5:54:1d:7d:b7:c6:
03:3d:ee:7d:33:cf:01:23:16:39:da:b4:44:1d:ee:
95:e9:fd:b7:1c:8f:be:18:9a:d5:11:43:95:ea:90:
94:82:a5:5e:b1:45:4f:b8:2f:55:bd:83:d7:8d:f4:
f5:4a:a3:2b:66:1d:22:b8:97:2e:2f:8a:18:f4:e5:
56:f6:78:61:8d:4e:4e:29:e1:d6:8c:03:7f:3d:c6:
96:7d:f4:85:07:9f:32:69:70:5a:f5:f0:85:8a:2e:
53:60:90:ec:04:89:09:a8:0b:97:3f:6c:61:bc:57:
21:99:ed:2f:79:27:e7:4b:f8:2d:38:91:09:f4:f7:
21:8c:e7:0f:90:2c:7a:9b:2b:00:2e:a5:8c:a2:9a:
b9:32:a8:3a:19:1d:c1:c9:e9:b1:1b:cd:59:84:d2:
2a:bd:01:31:c1:dc:e6:0e:b5:09:e0:e6:05:ca:8d:
c0:da:af:e6:9f:22:83:9e:30:ef:a0:3b:f2:91:60:
cb:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:42:C6:92:6E:77:C5:67:A0:9C:F9:2C:75:2A:33:6C:ED:2A:DF:62
X509v3 Authority Key Identifier:
keyid:6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:4f:2b:d8:1b:95:39:c1:63:3e:cc:36:23:cd:9e:dd:3b:a6:
93:e8:3e:6d:1a:d8:a0:f3:e8:7a:7a:24:d5:01:d2:46:67:1d:
8c:7a:b1:a5:98:0a:cf:1b:31:96:84:3b:55:13:04:fa:ff:60:
c9:09:71:5a:6f:4d:d5:e0:61:01:ff:97:27:71:e2:af:76:50:
7a:0e:14:87:75:55:af:22:3b:cb:11:8b:b3:e4:a9:d8:45:15:
06:53:d3:64:12:9b:e6:6a:5e:a4:1e:47:cf:b1:18:2b:87:33:
e2:4a:fd:41:e9:74:a7:cc:11:19:cf:36:25:21:d4:5b:ea:d2:
97:51:08:31:42:15:91:c2:f2:ca:21:40:13:4f:d7:fd:f1:02:
2e:b6:c8:32:bf:3c:c2:01:89:7f:70:b9:f3:26:67:fd:5b:24:
57:b1:3e:d7:fa:f8:5b:cb:17:c6:a0:a0:eb:54:58:b3:b8:a3:
0c:c3:ff:ac:ff:f8:d2:7b:94:ca:6b:33:3e:c5:ef:d7:ed:1a:
5d:11:8a:4a:a6:b2:e9:e2:bc:4e:6a:dd:8b:8d:23:3f:26:74:
7b:1b:de:0d:51:67:0d:24:72:97:8e:c2:65:59:a2:13:29:6a:
21:45:9a:56:82:ed:d0:39:09:fe:75:0f:6f:70:1f:2b:c5:77:
9c:76:09:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:49:41 2025 by rpki-client