Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.mft
File: b2oouFuReYIHK59PQG1-sJmROjE.mft (raw, json)
Hash identifier: RGqi/DBg48e6Pc3Unv31bPyTQWbK4GtdT3UTlR48TqI=
Subject key identifier: 63:B1:5B:58:01:21:83:4E:CA:DF:C7:4B:1C:4E:CE:8F:86:C3:CA:15
Authority key identifier: 6F:6A:28:B8:5B:91:79:82:07:2B:9F:4F:40:6D:7E:B0:99:91:3A:31
Certificate issuer: /CN=6f6a28b85b917982072b9f4f406d7eb099913a31
Certificate serial: 019A28C27ADBD0766AB437385475E2727E3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b2oouFuReYIHK59PQG1-sJmROjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.mft
Manifest number: 072A
Signing time: Tue 28 Oct 2025 03:00:25 +0000
Manifest this update: Tue 28 Oct 2025 03:00:25 +0000
Manifest next update: Wed 29 Oct 2025 03:00:25 +0000
Files and hashes: 1: ZwdlOhTaB9mfI0Lixy338yhL9bw.roa (hash: JhlKbHsGhRiWUq0ABUz1j/K5IY2i4ZC4XvyEDFpDUMk=)
2: b2oouFuReYIHK59PQG1-sJmROjE.crl (hash: c+8iJct7DWkFgo1tPGqoS5rbrl77RpKQJtlC2TpAoNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.mft
rsync://rpki.ripe.net/repository/DEFAULT/b2oouFuReYIHK59PQG1-sJmROjE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:c2:7a:db:d0:76:6a:b4:37:38:54:75:e2:72:7e:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f6a28b85b917982072b9f4f406d7eb099913a31
Validity
Not Before: Oct 28 03:00:25 2025 GMT
Not After : Oct 29 03:00:25 2025 GMT
Subject: CN=63b15b580121834ecadfc74b1c4ece8f86c3ca15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7f:cb:62:81:fb:cd:17:1c:34:19:95:6b:f5:
32:e1:38:78:95:8a:a8:64:df:a2:90:91:bb:f1:cf:
15:95:3f:c5:fe:59:e4:59:47:3f:7c:58:7a:87:02:
14:43:86:62:c4:9e:c7:b3:fa:35:65:56:67:1e:4b:
75:4a:c3:89:fc:53:e8:47:26:9c:0b:f2:cc:4a:b8:
73:00:bb:5e:7b:8d:9a:ae:c5:b8:6d:47:8f:4e:a1:
75:ad:86:25:0e:5f:40:72:b1:f1:b2:16:34:b9:a8:
a4:e4:0b:38:aa:8b:c8:c6:7a:29:ba:da:f2:b0:e8:
bd:8f:b9:44:c5:79:fc:be:d3:e6:25:8f:3f:c0:ff:
cd:d3:4b:44:1d:3f:0b:79:b0:6a:f7:0b:f5:2d:f2:
78:d5:07:a5:1d:f4:f3:5e:b7:86:57:07:0c:b7:5f:
ed:c9:cc:dc:3c:94:7f:ee:e6:c5:64:b2:fc:cf:d8:
11:66:da:6d:4a:59:d7:fa:34:0c:46:25:62:8f:19:
6d:19:ab:b7:d7:aa:05:ed:b7:ae:7d:cc:bc:ed:7a:
7d:96:04:23:37:5b:a1:96:06:d8:76:c9:d0:05:d3:
90:ef:c8:4a:ab:a7:0c:30:e6:2b:e5:0c:a0:83:98:
21:b5:26:36:3a:bd:65:0d:7f:5b:72:61:a5:e7:0e:
d5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B1:5B:58:01:21:83:4E:CA:DF:C7:4B:1C:4E:CE:8F:86:C3:CA:15
X509v3 Authority Key Identifier:
keyid:6F:6A:28:B8:5B:91:79:82:07:2B:9F:4F:40:6D:7E:B0:99:91:3A:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2oouFuReYIHK59PQG1-sJmROjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:2a:6b:9d:4a:04:fa:60:f3:76:d7:ab:57:d1:e6:b2:47:00:
52:6a:6f:7b:dd:59:c3:14:25:ba:67:0e:a0:10:f0:a3:31:ad:
cc:c8:c3:a7:ce:0b:a3:54:0a:02:5c:26:1e:7e:e7:c3:38:e6:
1b:58:50:23:6c:4f:96:17:80:04:25:85:c6:12:29:55:95:30:
46:fa:d4:5f:1f:91:b7:fc:37:6b:c4:9b:49:dc:b8:4f:72:a9:
ca:b6:2a:da:56:e1:06:45:0c:f1:f6:01:b5:f3:05:59:b3:85:
a7:90:c0:74:db:bb:6c:0d:4c:c2:52:d7:eb:d6:d1:13:ec:70:
3b:4c:21:b1:0f:51:cd:fc:80:fc:9e:cb:1a:6a:9e:53:b2:2d:
5f:b3:8f:d2:32:d0:4e:bb:1a:b5:48:c2:6f:c7:31:91:d6:a9:
14:c3:bc:45:51:bd:98:df:e8:85:86:d3:8e:29:87:c7:b5:31:
5f:75:4a:5d:d7:dd:48:6c:22:7e:4d:e2:51:d3:5b:5f:b5:a7:
5e:71:d0:0b:28:ca:80:2f:c5:f8:54:b0:f7:ad:39:63:52:86:
27:04:f2:9b:4f:13:f2:27:5a:71:12:78:6d:8b:08:ee:34:c0:
40:fc:f3:2d:4e:4a:d8:0a:a8:85:98:2e:ed:d5:9e:fb:e8:b9:
96:44:36:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 07:31:13 2025 by rpki-client