Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.mft
File: bxfKsp3wkGVUwRzpqynGDR56Z1w.mft (raw, json)
Hash identifier: oE7IGcyMpGN0yl1To6kCHseu+bdid7nFAJDjE9C27iE=
Subject key identifier: DC:B1:9D:C8:87:CC:DE:75:C8:E9:A5:AE:24:59:0D:BB:CC:B9:19:66
Authority key identifier: 6F:17:CA:B2:9D:F0:90:65:54:C1:1C:E9:AB:29:C6:0D:1E:7A:67:5C
Certificate issuer: /CN=6f17cab29df0906554c11ce9ab29c60d1e7a675c
Certificate serial: 019A725CA1F20C0191CD60C2B8C2F12D568D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxfKsp3wkGVUwRzpqynGDR56Z1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.mft
Manifest number: 05F6
Signing time: Tue 11 Nov 2025 10:01:04 +0000
Manifest this update: Tue 11 Nov 2025 10:01:04 +0000
Manifest next update: Wed 12 Nov 2025 10:01:04 +0000
Files and hashes: 1: bxfKsp3wkGVUwRzpqynGDR56Z1w.crl (hash: VYnvi9AVEDsftEujSQHmfG/r2ovCrCJtVwvkqo4+UNA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/bxfKsp3wkGVUwRzpqynGDR56Z1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:a1:f2:0c:01:91:cd:60:c2:b8:c2:f1:2d:56:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f17cab29df0906554c11ce9ab29c60d1e7a675c
Validity
Not Before: Nov 11 10:01:04 2025 GMT
Not After : Nov 12 10:01:04 2025 GMT
Subject: CN=dcb19dc887ccde75c8e9a5ae24590dbbccb91966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:58:0c:ec:41:44:aa:34:b5:73:a4:a1:65:ca:
54:c3:24:fa:0c:70:b5:6c:21:d3:b9:65:58:bf:a8:
fd:8b:1a:8d:93:39:01:46:b3:94:57:ca:49:9b:2d:
8d:50:e5:e9:af:b9:5e:48:0b:39:cb:73:7c:e7:e0:
3c:85:bb:ad:0b:ad:25:6c:49:34:46:fe:fb:17:27:
1c:d3:b9:8b:ee:13:cf:19:ed:7b:2c:af:52:bb:d1:
29:2e:fa:71:76:28:7c:92:0e:c8:6a:38:90:44:33:
50:c0:4a:5b:25:16:8b:10:62:70:5e:a2:e1:ae:7f:
1f:6b:1f:18:b0:7e:bc:49:c0:d8:96:ec:91:21:a4:
60:c4:a9:aa:37:99:12:14:cb:d5:57:58:4d:ca:07:
c2:20:ea:e3:ee:ef:9b:99:fb:f7:0c:c7:2f:f4:1b:
b7:b5:06:93:80:16:5c:69:66:16:a4:ce:ee:8e:34:
39:da:3d:4d:a6:fe:80:72:04:34:02:04:56:e0:ca:
4b:df:42:21:7b:c0:64:f1:77:f1:08:d8:90:2b:24:
8f:5a:85:7c:be:65:2d:33:05:bd:71:64:dc:f4:e3:
82:ed:db:ae:13:55:41:07:6a:ea:56:72:fa:ef:8c:
e2:54:21:85:a9:64:54:2b:98:0d:75:9e:bb:0a:0b:
ee:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B1:9D:C8:87:CC:DE:75:C8:E9:A5:AE:24:59:0D:BB:CC:B9:19:66
X509v3 Authority Key Identifier:
keyid:6F:17:CA:B2:9D:F0:90:65:54:C1:1C:E9:AB:29:C6:0D:1E:7A:67:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxfKsp3wkGVUwRzpqynGDR56Z1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:db:87:4d:f0:8d:1a:5a:dc:47:c3:a8:01:3c:9d:f9:17:62:
1b:ec:0a:f0:a3:de:cd:6e:55:67:72:2a:0c:94:7d:34:2f:cb:
5d:03:e6:45:59:dd:65:fd:68:f2:61:2b:54:b7:a0:17:b5:81:
25:5c:a3:f6:bb:21:52:3c:96:09:08:9a:73:8d:39:97:52:4f:
20:f3:40:79:1c:9b:4b:10:e0:49:49:ff:39:c6:21:23:c3:99:
5c:59:99:8a:bb:ac:8b:50:06:95:b1:72:50:9d:ad:7b:f7:8b:
ca:0c:5d:8c:ee:a0:3d:ca:bc:a6:8a:ca:cd:75:d6:f1:a0:b4:
c7:d7:81:47:9e:5c:ea:fc:4f:8f:2b:ef:68:e4:74:3a:ec:f9:
a1:ae:2e:e9:12:a1:90:16:d8:0d:c0:f8:a0:ab:cf:28:1a:d9:
0c:86:e2:cd:7f:14:0b:a2:3d:1c:7e:c4:5f:8e:2c:39:b4:81:
e1:c4:66:0e:55:42:17:30:f7:2c:ca:d4:f2:a1:e4:5e:ca:cc:
4b:9d:5d:ea:b3:58:fa:54:a7:21:1f:a6:97:3c:4a:3a:38:a0:
42:df:ea:70:a6:29:d7:b0:87:8a:13:b6:38:e4:33:83:74:ff:
03:aa:d2:4e:6a:b7:d6:d6:42:ea:37:cb:37:c8:31:3a:68:76:
0e:af:b8:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:18:48 2025 by rpki-client