Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
File: bIkO9qiKsz-logZ2B2jdMlHCOK8.mft (raw, json)
Hash identifier: h3JmHgFmMjAXawl+xQNkkzCzDT77CCjdCujQk6gah2M=
Subject key identifier: 37:C3:57:1D:93:B4:00:6A:88:7D:A0:5B:3F:58:DE:F2:97:46:D9:15
Authority key identifier: 6C:89:0E:F6:A8:8A:B3:3F:A5:A2:06:76:07:68:DD:32:51:C2:38:AF
Certificate issuer: /CN=6c890ef6a88ab33fa5a206760768dd3251c238af
Certificate serial: 019A2440A3C2B55C5488DE3856E030A73CD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
Manifest number: 16FA
Signing time: Mon 27 Oct 2025 06:00:07 +0000
Manifest this update: Mon 27 Oct 2025 06:00:07 +0000
Manifest next update: Tue 28 Oct 2025 06:00:07 +0000
Files and hashes: 1: OCK0xPSUR6N0XAXrrNIoVZTtCb8.roa (hash: zJFIUz1mYifZofZ0Na7vRc0V1qQdfg8lAP69hFan3Gw=)
2: bIkO9qiKsz-logZ2B2jdMlHCOK8.crl (hash: 1aWmGSRdUIezNJ9Pa0vgBmEXH5MN4ONT0bqx9tMFvBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 06:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:40:a3:c2:b5:5c:54:88:de:38:56:e0:30:a7:3c:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c890ef6a88ab33fa5a206760768dd3251c238af
Validity
Not Before: Oct 27 06:00:07 2025 GMT
Not After : Oct 28 06:00:07 2025 GMT
Subject: CN=37c3571d93b4006a887da05b3f58def29746d915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8f:ae:13:f7:b2:3c:cf:87:1c:18:47:0c:82:
82:e5:75:b2:e5:8e:83:04:9c:76:da:ac:9e:cf:8a:
94:03:af:35:8e:2a:88:e9:84:9a:9f:00:e0:0e:24:
57:d8:f4:0a:44:68:55:d8:87:84:9a:81:66:b0:9d:
86:0d:10:6f:c7:f9:fd:5d:d5:f4:a4:36:69:34:22:
66:72:49:98:88:d1:05:81:82:ca:68:87:30:46:0b:
58:b8:64:45:b3:33:cb:cd:eb:47:02:28:11:1b:6e:
65:d5:c4:d8:68:71:36:48:dd:35:f7:2e:d3:b7:ee:
fd:10:42:5a:1d:bc:38:dd:a9:5e:95:8f:fc:fc:8a:
96:0c:16:5d:97:88:95:ab:c0:97:84:2d:02:0a:88:
a7:6c:20:8c:7e:03:74:71:7e:52:53:06:86:cf:00:
a7:8a:d0:b9:89:d8:d3:54:c9:62:ab:91:2c:44:a2:
94:fa:4e:0c:68:35:12:e4:8d:99:95:67:b3:64:17:
c7:8a:32:cb:af:25:b8:da:26:e9:30:86:6b:65:97:
61:78:35:83:f2:4e:0b:45:0e:6d:9a:08:c9:6a:69:
d1:90:5d:2f:4a:b2:81:0f:66:90:e6:4d:45:bb:e1:
d3:d3:48:8d:f3:4b:00:2e:25:26:0a:44:70:84:0c:
0c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:C3:57:1D:93:B4:00:6A:88:7D:A0:5B:3F:58:DE:F2:97:46:D9:15
X509v3 Authority Key Identifier:
keyid:6C:89:0E:F6:A8:8A:B3:3F:A5:A2:06:76:07:68:DD:32:51:C2:38:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:00:41:7f:62:7c:7f:72:df:a8:c9:0a:be:77:81:b0:03:68:
d5:71:9b:d7:10:76:83:ca:8a:82:bf:84:0e:27:39:fa:a7:37:
d5:3f:18:3b:ea:22:36:95:fd:6c:ac:ac:e1:fb:c7:81:16:b3:
8b:ca:40:6f:64:8f:45:89:03:f4:ed:6d:37:48:f0:e9:af:da:
3b:47:25:18:92:99:21:d3:5f:60:c3:e5:2e:c4:56:2e:92:b0:
69:9b:ee:01:bb:c5:0b:78:b3:a0:40:31:2e:e3:9e:8c:5e:b4:
ef:19:76:5f:6a:6d:cb:85:ef:02:51:ba:12:84:7d:14:f6:30:
da:9d:1e:3f:52:76:98:22:5a:ab:eb:1c:ab:b0:42:89:40:09:
56:0d:0d:47:03:51:0d:08:6f:9b:5d:e3:a2:6e:8b:11:76:f8:
0c:89:48:8d:44:60:85:6b:6e:6c:3d:e8:a9:d0:70:5d:65:e5:
92:f0:59:bd:64:ea:af:21:18:40:4e:d1:aa:30:e1:23:f4:9d:
03:d3:86:0b:06:06:da:ad:c7:bb:75:07:0e:b4:d0:ee:2c:c3:
ef:58:9d:a4:43:e8:12:1a:ca:dd:04:62:ea:2c:74:38:bb:c1:
b3:3a:80:7e:34:b4:de:66:1a:57:00:d8:1c:5b:c3:e3:b9:67:
0d:8b:34:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 12:08:17 2025 by rpki-client