Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft
File: bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft (raw, json)
Hash identifier: DSa+mxdYn8MLOP9N2xjYo19OenRdn7ZpUW5ZKXhidQw=
Subject key identifier: 8C:72:E8:D4:D3:1D:2C:5D:33:CA:EB:06:67:D7:BD:78:77:7E:65:74
Authority key identifier: 6F:06:04:74:08:86:06:EC:4E:E8:EE:D7:C4:1B:69:43:F8:9A:09:BD
Certificate issuer: /CN=6f060474088606ec4ee8eed7c41b6943f89a09bd
Certificate serial: 019A71B84EA7B20EEACAC0AD43AE306BB1CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft
Manifest number: 0A63
Signing time: Tue 11 Nov 2025 07:01:35 +0000
Manifest this update: Tue 11 Nov 2025 07:01:35 +0000
Manifest next update: Wed 12 Nov 2025 07:01:35 +0000
Files and hashes: 1: bwYEdAiGBuxO6O7XxBtpQ_iaCb0.crl (hash: 56gjLsJPwsR2eUMlbMF4ckZft/OEXEZBE1VaHvQi4Fc=)
2: xfilALq9xVm7LJX_uaRRDqm1ZX0.roa (hash: o3xsXXS0G1bR6xk5CmXK470ksv+YeZHYJ06DDMgu6J0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:4e:a7:b2:0e:ea:ca:c0:ad:43:ae:30:6b:b1:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f060474088606ec4ee8eed7c41b6943f89a09bd
Validity
Not Before: Nov 11 07:01:35 2025 GMT
Not After : Nov 12 07:01:35 2025 GMT
Subject: CN=8c72e8d4d31d2c5d33caeb0667d7bd78777e6574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:54:5b:00:36:e7:81:ed:a9:c4:52:8a:08:8d:
7c:aa:41:b7:a3:e0:fc:b1:4b:b6:07:d5:27:8c:7b:
f1:f5:95:e5:56:a0:1c:52:24:02:5d:30:50:84:e8:
16:ef:d8:39:cc:3e:6c:82:48:96:af:7c:97:3e:7d:
8d:c2:72:50:17:54:0d:44:ca:e8:9c:c5:5c:be:19:
8b:2d:5d:31:be:2c:00:bf:ef:c7:47:e9:0a:3a:04:
99:9d:ea:fd:38:09:da:09:e9:ff:69:f1:38:c1:28:
b7:16:8e:da:49:13:a9:cb:ba:3a:4e:57:52:bf:06:
05:bc:dd:16:be:42:b4:d7:79:5e:28:05:55:dc:21:
d8:a5:52:58:02:55:19:1e:d1:2e:18:b0:df:73:c9:
2f:a8:62:4b:9b:f8:72:15:93:9e:28:30:b7:c3:59:
5b:b5:13:2f:85:4e:f2:82:71:b9:61:47:7a:93:15:
31:db:a4:1f:5d:84:26:2f:7b:6b:7d:47:63:27:36:
cb:31:61:13:a8:f5:65:51:65:47:8a:34:9e:01:36:
c8:16:bb:db:90:cd:8f:aa:14:ba:78:60:0c:1e:33:
ed:ec:ca:2a:f1:4e:d0:92:8b:6c:07:23:7c:45:28:
a4:62:cf:4f:41:85:2c:12:a2:46:37:16:e9:b0:de:
43:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:72:E8:D4:D3:1D:2C:5D:33:CA:EB:06:67:D7:BD:78:77:7E:65:74
X509v3 Authority Key Identifier:
keyid:6F:06:04:74:08:86:06:EC:4E:E8:EE:D7:C4:1B:69:43:F8:9A:09:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e1:26:cf:b2:87:cd:c7:85:53:e5:5f:06:78:93:aa:4a:f8:1a:
52:b7:2b:a8:b9:31:8e:d9:aa:1a:a5:89:29:bf:93:76:07:b4:
58:71:f3:75:10:3f:36:c8:6e:8d:d6:7d:9f:e6:3b:b6:71:5f:
83:04:b7:55:55:22:ac:7b:24:f0:ea:fa:97:a7:01:5a:d4:02:
46:5f:bb:66:00:ed:d8:6b:e4:5c:e3:0b:85:0e:23:b4:a3:c3:
83:db:5a:7d:31:99:0b:9c:4b:f8:5e:53:2a:0c:6d:56:2e:55:
a4:f0:2e:bc:8a:eb:9a:d2:7f:c3:79:79:e7:55:9b:df:62:6b:
7d:80:43:cd:2f:53:65:79:bd:da:e7:1a:2b:2c:22:4d:d3:69:
8f:0a:99:36:4a:27:c9:86:ac:c9:82:05:fb:58:e4:65:f2:67:
95:90:c9:8d:68:b9:7a:71:e8:7d:b8:3a:6d:1e:09:58:ac:cd:
41:7f:49:61:f4:3c:19:90:0e:34:e7:cd:0a:af:59:50:d8:b2:
21:ce:ce:65:6f:93:da:6d:e1:85:01:38:9b:ad:78:6b:d8:41:
02:e7:0b:ac:14:56:3c:eb:c2:45:f1:bf:77:4d:f2:d2:a0:ce:
67:09:f9:9a:88:d5:8a:e5:f3:77:26:07:b1:66:80:37:bd:6e:
7f:11:47:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:45:14 2025 by rpki-client