Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
File: b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft (raw, json)
Hash identifier: KietbGivjkkzv9f2ulbH9qSi+j8Wiy81KhIJccm7KzE=
Subject key identifier: EA:3F:57:BE:37:F5:0F:2F:14:F9:69:26:70:B2:78:D7:9F:85:66:20
Authority key identifier: 6F:64:8E:3C:AB:60:9B:D1:48:3C:A3:E5:19:11:CE:AA:53:F0:C6:A1
Certificate issuer: /CN=6f648e3cab609bd1483ca3e51911ceaa53f0c6a1
Certificate serial: 019A7293BAB84562F32679ED8540C2BFEE0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
Manifest number: 1117
Signing time: Tue 11 Nov 2025 11:01:15 +0000
Manifest this update: Tue 11 Nov 2025 11:01:15 +0000
Manifest next update: Wed 12 Nov 2025 11:01:15 +0000
Files and hashes: 1: b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl (hash: Vw6kaae5yTIzARoU5nnXGPyne2rBYyi70G+RH7qKrzc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:ba:b8:45:62:f3:26:79:ed:85:40:c2:bf:ee:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f648e3cab609bd1483ca3e51911ceaa53f0c6a1
Validity
Not Before: Nov 11 11:01:15 2025 GMT
Not After : Nov 12 11:01:15 2025 GMT
Subject: CN=ea3f57be37f50f2f14f9692670b278d79f856620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:70:26:05:4a:d3:f0:fd:3b:6e:f5:4d:c9:fc:
7c:13:dc:bd:8d:65:f3:50:28:a7:25:72:0d:b1:cc:
bd:bc:e7:66:1c:ce:81:4a:28:9c:72:ae:57:6e:5c:
61:03:cc:af:32:c3:c4:c2:0e:87:26:05:29:ed:38:
a3:94:ec:26:f0:df:96:5b:e8:f8:ee:d7:ed:2f:ef:
d4:39:8e:de:6b:9f:27:41:51:8e:3e:92:24:2b:43:
dd:3b:68:48:3b:0d:22:64:1a:10:c2:e0:9c:14:45:
ee:e1:0c:b1:e0:4a:df:dc:bc:97:c0:3f:ed:8f:98:
a0:bc:a2:48:76:7e:4e:4d:65:0f:ba:87:31:d3:e1:
0e:8c:47:35:c1:ca:29:d6:21:5c:ef:af:fd:e2:cc:
0b:ba:04:f7:57:0c:9b:8b:e5:4b:da:d4:8b:1a:07:
ac:a2:e4:b3:a4:55:78:04:38:54:19:a4:a8:56:44:
63:55:b0:c8:ce:6e:67:74:29:ba:01:b3:06:85:40:
b9:5c:14:e6:1d:97:a2:50:cd:21:82:af:67:13:c5:
f4:1a:9d:c3:59:fb:98:ed:5b:8f:4b:b6:a7:09:91:
ba:00:b4:c2:a0:db:48:1a:8b:94:9e:99:ee:66:c7:
9e:21:4b:fa:00:c0:5f:1f:2e:e0:e2:5b:0b:00:a6:
13:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:3F:57:BE:37:F5:0F:2F:14:F9:69:26:70:B2:78:D7:9F:85:66:20
X509v3 Authority Key Identifier:
keyid:6F:64:8E:3C:AB:60:9B:D1:48:3C:A3:E5:19:11:CE:AA:53:F0:C6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:a4:e5:7c:4f:ea:f2:f4:e1:a3:94:1e:92:aa:cb:97:87:33:
06:6f:f2:9b:e1:0b:03:a6:88:03:72:13:e6:12:16:2f:78:ba:
8e:f4:ea:39:ce:ec:e6:cf:74:d0:48:49:c7:44:4a:7c:51:1a:
27:71:0e:f3:46:3a:f8:af:b5:b7:63:69:1e:b0:3e:82:10:c2:
f2:5e:18:b6:21:56:25:fc:32:dd:e9:0b:a6:cc:4c:23:3b:d0:
be:62:55:65:33:19:a2:ff:9e:8c:c2:4a:e9:75:3d:7b:cf:5e:
95:61:1e:2b:5f:8f:59:23:f4:8b:f9:24:ef:5d:c2:42:b0:de:
d4:2f:0d:ff:7b:87:26:a5:4a:b6:64:fc:d7:d6:61:bb:13:e8:
9e:59:5b:d2:e2:aa:c6:82:fc:84:58:2e:d1:4d:f5:d6:4c:34:
30:72:39:f6:45:34:97:9e:45:e0:f4:e6:e1:93:eb:2e:4e:e4:
e6:65:e6:70:29:7e:90:5c:49:e3:da:8b:25:dd:f0:3a:87:f6:
07:3a:ff:25:e4:29:2d:49:f9:71:14:7a:25:17:1f:7a:f7:0e:
94:27:c6:d5:0c:dc:2d:ee:85:4c:1e:6e:95:31:c9:dd:42:c3:
25:8c:8f:45:2f:01:ff:ab:d0:bc:63:91:d4:7e:72:5f:bc:84:
24:72:51:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:19:16 2025 by rpki-client