Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a23404-f219-49f5-bf33-245650f842d5/1/bwXPdx2ZkucP9nQOayBiDOUtDYs.mft
File: bwXPdx2ZkucP9nQOayBiDOUtDYs.mft (raw, json)
Hash identifier: 3ExHp8NV6RZgXmgU1pwnMe0DOH3fE0F7Kc+JuAB5wtM=
Subject key identifier: 93:64:57:56:3D:B2:1B:34:8A:FC:76:4B:C6:85:78:C3:85:33:1E:FA
Authority key identifier: 6F:05:CF:77:1D:99:92:E7:0F:F6:74:0E:6B:20:62:0C:E5:2D:0D:8B
Certificate issuer: /CN=6f05cf771d9992e70ff6740e6b20620ce52d0d8b
Certificate serial: 019A2855708342482158BF00853BF082772C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwXPdx2ZkucP9nQOayBiDOUtDYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a23404-f219-49f5-bf33-245650f842d5/1/bwXPdx2ZkucP9nQOayBiDOUtDYs.mft
Manifest number: 0C98
Signing time: Tue 28 Oct 2025 01:01:19 +0000
Manifest this update: Tue 28 Oct 2025 01:01:19 +0000
Manifest next update: Wed 29 Oct 2025 01:01:19 +0000
Files and hashes: 1: bwXPdx2ZkucP9nQOayBiDOUtDYs.crl (hash: 04KKwRVuuh1vmaFpgdzQm6qmbYGHcLhHDAE6hsHvxDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/a23404-f219-49f5-bf33-245650f842d5/1/bwXPdx2ZkucP9nQOayBiDOUtDYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/a23404-f219-49f5-bf33-245650f842d5/1/bwXPdx2ZkucP9nQOayBiDOUtDYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/bwXPdx2ZkucP9nQOayBiDOUtDYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:55:70:83:42:48:21:58:bf:00:85:3b:f0:82:77:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f05cf771d9992e70ff6740e6b20620ce52d0d8b
Validity
Not Before: Oct 28 01:01:19 2025 GMT
Not After : Oct 29 01:01:19 2025 GMT
Subject: CN=936457563db21b348afc764bc68578c385331efa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b3:59:55:0f:ed:64:1c:a1:b0:2d:8e:a9:86:
72:e7:f6:24:58:58:23:75:a7:15:6d:8e:cb:c5:e5:
79:d3:8e:5b:fd:f3:3d:78:67:1a:f4:3c:9b:15:04:
be:94:d3:e5:93:11:46:46:00:3c:b9:fb:e1:c5:6f:
22:35:12:64:9e:14:9d:34:76:9b:be:44:66:23:e4:
b0:43:30:32:81:22:78:b6:1e:ec:42:31:59:6a:b5:
c3:91:4b:ee:08:05:4f:24:99:50:1a:49:cd:74:c8:
b3:57:85:f5:43:75:1d:f5:05:c3:cc:10:7e:7b:51:
8d:9b:89:30:15:b7:b0:cc:cb:ce:45:9e:c4:52:09:
4d:11:28:fe:04:3a:18:12:d7:53:67:77:fa:16:7e:
96:b2:4e:5b:4c:82:51:ef:5c:5f:ed:53:2b:7a:51:
ff:29:f2:ee:1d:f9:20:8e:0c:02:9e:5a:d4:e7:b4:
a6:e5:de:a1:48:fa:e1:17:17:4b:41:c6:cd:cb:1f:
fd:99:d2:1f:b4:cb:85:c3:65:34:fe:c1:80:76:b8:
7c:02:22:d1:60:6a:b8:e8:96:1e:8b:77:79:99:3a:
26:3f:5b:f2:2d:ee:20:f1:e9:76:b5:87:a3:fd:2a:
1b:7d:42:17:3c:d1:46:65:29:0d:62:83:68:f5:83:
b1:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:64:57:56:3D:B2:1B:34:8A:FC:76:4B:C6:85:78:C3:85:33:1E:FA
X509v3 Authority Key Identifier:
keyid:6F:05:CF:77:1D:99:92:E7:0F:F6:74:0E:6B:20:62:0C:E5:2D:0D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwXPdx2ZkucP9nQOayBiDOUtDYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a23404-f219-49f5-bf33-245650f842d5/1/bwXPdx2ZkucP9nQOayBiDOUtDYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a23404-f219-49f5-bf33-245650f842d5/1/bwXPdx2ZkucP9nQOayBiDOUtDYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:be:96:68:3b:5a:3d:52:71:61:03:76:5b:cb:dd:ad:a1:f7:
a4:74:7e:35:a8:db:79:38:5b:18:fd:fe:01:54:dc:a7:d1:48:
8a:f3:42:a0:40:c8:85:a8:a1:63:d8:74:d9:d6:1f:e4:da:7e:
31:ac:2f:2f:2e:d7:85:20:cf:a8:ac:74:0b:4d:82:96:bd:e4:
e1:88:b2:8f:5d:6e:61:93:bf:89:3b:b3:48:0c:72:7f:ff:aa:
05:fe:b9:e2:24:d2:8c:18:73:87:ed:90:26:32:dc:c0:58:a2:
58:ea:13:61:3c:81:40:54:79:a5:e5:d5:eb:b4:58:ac:8f:79:
cb:4b:dc:e2:0b:21:39:9a:b4:be:dd:99:13:7a:9b:fc:c8:4c:
25:47:d3:71:38:e1:9f:72:8b:03:c0:1c:4a:f1:ae:cc:13:9a:
3b:a1:84:31:68:f9:08:43:b2:7a:31:68:b0:17:37:26:75:5c:
18:2c:80:0c:04:4e:bf:22:10:06:51:e9:44:56:b5:55:b2:86:
ab:0b:4f:e6:5c:ec:6e:77:7d:95:09:53:9c:dc:11:46:d3:5b:
6b:bc:e8:dc:b0:51:ae:21:b5:f3:48:27:a0:49:21:2b:48:3e:
48:6e:76:af:3a:56:81:62:c8:a9:87:c6:2f:cf:0a:23:4c:96:
d7:38:bf:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 04:44:32 2025 by rpki-client