Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
File: bSPOewwQBo-8RMAhlD4zkBPyruA.mft (raw, json)
Hash identifier: dtQIDnkolenc3qwsORB2FdO/Cm/S9fTygfS97ggmBrs=
Subject key identifier: BE:89:C4:B4:45:D3:39:EC:BD:56:43:70:73:7F:E8:B6:36:E0:43:17
Authority key identifier: 6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
Certificate issuer: /CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Certificate serial: 019A25C171B0B9AA63F12CF1564EAA6DDE0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
Manifest number: 16F7
Signing time: Mon 27 Oct 2025 13:00:25 +0000
Manifest this update: Mon 27 Oct 2025 13:00:25 +0000
Manifest next update: Tue 28 Oct 2025 13:00:25 +0000
Files and hashes: 1: LQcm0nhQTgxfcAEHFSpSeQFsVHo.roa (hash: ScQNvXtsK5w/Wj3QzlqfHMAUcdIYUpFbtGKhSGmn1FI=)
2: bSPOewwQBo-8RMAhlD4zkBPyruA.crl (hash: W+OIEjw7yV+qXCTumw7VmcWWbdJIOFrECaQ/wRoe1/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 13:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:c1:71:b0:b9:aa:63:f1:2c:f1:56:4e:aa:6d:de:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Validity
Not Before: Oct 27 13:00:25 2025 GMT
Not After : Oct 28 13:00:25 2025 GMT
Subject: CN=be89c4b445d339ecbd564370737fe8b636e04317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:31:3b:c5:07:88:6f:68:de:ee:e4:d1:35:d8:
13:8e:63:cb:d7:1a:10:af:1a:d5:7a:3d:8f:0c:60:
ee:34:07:a9:56:04:cb:ac:be:34:03:fa:c3:ef:e4:
56:b7:56:e8:86:5f:07:3f:47:f6:ca:fc:b0:b3:d8:
e2:16:65:c6:2d:11:17:1d:62:63:8c:7c:ea:85:4e:
a3:d1:38:a0:d8:fe:fc:d7:66:91:3e:a4:68:45:c9:
ad:3d:31:09:00:3a:a7:52:18:0f:cf:35:4e:f5:92:
7f:47:a5:f0:bb:15:0c:fd:a3:aa:0c:f1:b0:e8:ca:
ea:19:fb:ae:62:30:46:f1:16:f4:33:93:15:f1:45:
ab:65:ab:cf:7a:9e:02:4f:ef:0e:b7:7a:9e:e9:c0:
24:75:04:15:8e:ff:28:ea:6f:3f:51:aa:4c:dc:73:
8f:60:d3:38:13:e9:62:de:2f:f1:15:c8:18:f2:ce:
7b:33:38:e7:16:40:1e:01:a7:c7:7c:fe:88:3a:fd:
5d:ff:8a:90:9f:4a:c2:3f:ff:cc:1e:e5:63:6e:02:
5c:ed:ba:ed:db:73:87:d3:f1:fb:f8:b5:64:82:9b:
ca:d7:73:f0:e9:d0:a1:cf:3a:2b:8b:34:28:3b:3d:
62:23:3a:56:d1:90:b3:09:4a:31:7a:2e:ab:62:77:
eb:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:89:C4:B4:45:D3:39:EC:BD:56:43:70:73:7F:E8:B6:36:E0:43:17
X509v3 Authority Key Identifier:
keyid:6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:e2:05:f3:e1:f5:af:54:8b:8e:95:cf:26:51:df:69:ac:6e:
88:f9:ee:0d:9f:c6:91:2e:6a:f5:2a:98:80:6d:3d:57:cd:01:
32:a4:51:96:ca:02:d0:0b:fe:b7:e9:cc:b1:46:aa:66:39:7b:
a6:4f:73:56:3b:46:8e:42:e4:50:6e:e8:67:a0:5d:41:19:6d:
1b:8c:cb:fa:89:e8:1c:fe:fe:2d:e6:e0:4a:6a:d7:7e:1a:d8:
39:e4:d5:25:d6:d6:04:09:8c:2a:41:10:a6:8f:cb:ad:26:e2:
f3:7c:e4:5f:fa:f0:82:0a:df:da:4e:75:12:b8:0c:8d:5e:f1:
80:ba:f8:23:3c:7e:7b:36:46:f9:e5:e7:90:33:4a:b0:0e:ac:
e6:bf:9b:d4:d6:56:58:31:5b:d5:60:3a:34:37:97:99:58:c4:
f2:c3:0a:80:91:49:08:2e:70:55:04:23:7e:2e:52:bb:a0:0e:
35:99:41:8f:c2:11:7c:63:e9:0b:2c:5a:22:7d:13:8c:a7:b3:
0c:90:bb:64:59:c8:e9:9c:61:b1:30:ee:32:c6:10:d6:fe:2c:
7e:51:c8:ce:ad:a4:9e:dc:07:4d:df:bc:3c:17:de:e6:5c:90:
4b:e7:5f:ed:ca:4f:6f:31:de:e3:7d:95:47:4a:da:af:1c:3a:
4f:0a:9b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 15:45:17 2025 by rpki-client