Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft
File: bJHX1fXOV5JskDlz7L8RK_rhUw0.mft (raw, json)
Hash identifier: +TED4x2a2ufeyvpvfmOEIfTCjEw58Dybr2umzbKoi5M=
Subject key identifier: 78:7A:08:93:AF:FB:69:FF:A4:E6:41:1E:E7:40:79:3D:AD:71:7A:A3
Authority key identifier: 6C:91:D7:D5:F5:CE:57:92:6C:90:39:73:EC:BF:11:2B:FA:E1:53:0D
Certificate issuer: /CN=6c91d7d5f5ce57926c903973ecbf112bfae1530d
Certificate serial: 019A7149DFF66F70C86087755B368E786008
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft
Manifest number: 171F
Signing time: Tue 11 Nov 2025 05:00:58 +0000
Manifest this update: Tue 11 Nov 2025 05:00:58 +0000
Manifest next update: Wed 12 Nov 2025 05:00:58 +0000
Files and hashes: 1: bJHX1fXOV5JskDlz7L8RK_rhUw0.crl (hash: JBXL5ruVFtM7JcaBV2eoaPTh6Q16AcdNRuhsvF5uz6A=)
2: eEvrSYjLUGg5GhW7JvZI3HWYfcI.roa (hash: GMSu0KMyD4SKyVpe+o1Z3AHIVpLBmKGk+5TuUmweIis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:df:f6:6f:70:c8:60:87:75:5b:36:8e:78:60:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c91d7d5f5ce57926c903973ecbf112bfae1530d
Validity
Not Before: Nov 11 05:00:58 2025 GMT
Not After : Nov 12 05:00:58 2025 GMT
Subject: CN=787a0893affb69ffa4e6411ee740793dad717aa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d2:ef:30:90:ae:98:4e:fc:50:b4:dc:a0:78:
c1:62:f5:9c:70:4b:6f:05:bb:60:23:e8:de:0c:73:
af:c7:5c:26:4d:ff:36:9d:c2:f5:2b:4c:64:c9:2b:
bf:12:68:d3:6c:e2:7c:a9:85:20:81:0b:ce:02:f8:
af:31:64:a2:57:0c:57:a0:28:64:35:22:a9:87:2a:
eb:ef:0f:62:02:6f:97:6e:13:ac:23:5d:7c:c8:5b:
f1:f8:c3:94:25:68:36:f7:73:f6:23:90:79:76:2d:
5a:57:56:b7:ae:63:c3:63:1c:8e:f0:a3:2c:bf:05:
43:b9:f9:19:ad:fc:c3:d6:08:fe:d5:8d:19:78:3e:
81:ed:8f:45:db:c1:9b:49:4c:73:e4:0f:98:99:2a:
63:fe:5a:08:9d:33:ae:49:b1:70:b3:a6:d3:e6:8b:
7c:3b:ee:4f:42:60:a8:20:47:6b:b2:e2:0b:f4:29:
86:7d:f9:12:63:ef:60:9b:07:3b:a6:ab:7f:80:60:
c5:8c:63:05:a6:45:f7:3e:67:b5:ad:95:06:1b:48:
26:96:96:70:50:70:1b:d2:2d:37:29:67:ba:30:b4:
59:5a:c1:c1:33:ff:86:30:44:c7:5a:bf:36:d3:f1:
2d:db:63:35:f2:71:50:eb:d0:24:d9:fe:c5:0c:25:
ea:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:7A:08:93:AF:FB:69:FF:A4:E6:41:1E:E7:40:79:3D:AD:71:7A:A3
X509v3 Authority Key Identifier:
keyid:6C:91:D7:D5:F5:CE:57:92:6C:90:39:73:EC:BF:11:2B:FA:E1:53:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:79:3c:bb:72:89:d1:70:b5:0e:e3:d9:a8:5f:04:dd:e9:16:
76:a1:39:74:4b:4e:52:06:d5:b6:b4:28:43:81:fe:e2:75:be:
0e:08:b4:f9:0f:c0:57:28:93:9c:7e:ca:89:e7:e7:2a:7b:40:
43:f1:41:e3:d4:0d:0e:38:96:a2:cc:7d:51:65:4b:6a:72:5d:
0b:94:14:21:6a:05:e1:21:3e:ba:8c:d1:33:f0:2a:43:dc:15:
85:21:de:35:aa:6d:6f:6f:07:cf:c1:0d:fa:6e:9c:0f:81:fb:
7e:f5:58:03:91:cc:ae:26:1c:4f:a4:83:3a:7c:f8:c9:2b:db:
0c:07:bd:84:06:13:d7:16:30:ed:35:39:01:a5:ee:bb:66:85:
ac:61:a1:6a:32:39:69:88:87:c3:3d:ec:46:ce:17:8e:51:31:
94:e0:f2:65:ff:75:17:62:39:cd:02:b3:ba:b3:f3:8b:81:9e:
1e:94:06:85:42:50:ab:e4:a0:6d:16:95:bb:32:d7:c1:70:1e:
61:14:4c:24:4b:a3:69:a4:c9:7d:b8:ac:1e:03:8c:41:d2:d7:
6a:eb:5f:46:6c:29:00:b2:d5:bb:7d:11:77:24:de:a4:fd:8e:
0d:e1:80:9d:d9:1b:74:f4:62:64:29:49:42:0c:4a:f6:a7:62:
d8:6f:71:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxSd/2b3DIYId1WzaOeGAIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjOTFkN2Q1ZjVjZTU3OTI2YzkwMzk3M2VjYmYxMTJiZmFl
MTUzMGQwHhcNMjUxMTExMDUwMDU4WhcNMjUxMTEyMDUwMDU4WjAzMTEwLwYDVQQD
Eyg3ODdhMDg5M2FmZmI2OWZmYTRlNjQxMWVlNzQwNzkzZGFkNzE3YWEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAntLvMJCumE78ULTcoHjBYvWccEtv
BbtgI+jeDHOvx1wmTf82ncL1K0xkySu/EmjTbOJ8qYUggQvOAvivMWSiVwxXoChk
NSKphyrr7w9iAm+XbhOsI118yFvx+MOUJWg293P2I5B5di1aV1a3rmPDYxyO8KMs
vwVDufkZrfzD1gj+1Y0ZeD6B7Y9F28GbSUxz5A+YmSpj/loInTOuSbFws6bT5ot8
O+5PQmCoIEdrsuIL9CmGffkSY+9gmwc7pqt/gGDFjGMFpkX3Pme1rZUGG0gmlpZw
UHAb0i03KWe6MLRZWsHBM/+GMETHWr820/Et22M18nFQ69Ak2f7FDCXqPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHh6CJOv+2n/pOZBHudAeT2tcXqjMB8GA1UdIwQY
MBaAFGyR19X1zleSbJA5c+y/ESv64VMNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkpIWDFmWE9WNUpza0RsejdMOFJLX3JoVXcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9kZDNmYzgtNDdkYy00YTM2LTg3MzQt
NDVkODRkYTM5ODc0LzEvYkpIWDFmWE9WNUpza0RsejdMOFJLX3JoVXcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC9kZDNmYzgtNDdkYy00YTM2LTg3MzQtNDVkODRkYTM5ODc0
LzEvYkpIWDFmWE9WNUpza0RsejdMOFJLX3JoVXcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUHk8u3KJ
0XC1DuPZqF8E3ekWdqE5dEtOUgbVtrQoQ4H+4nW+Dgi0+Q/AVyiTnH7KiefnKntA
Q/FB49QNDjiWosx9UWVLanJdC5QUIWoF4SE+uozRM/AqQ9wVhSHeNaptb28Hz8EN
+m6cD4H7fvVYA5HMriYcT6SDOnz4ySvbDAe9hAYT1xYw7TU5AaXuu2aFrGGhajI5
aYiHwz3sRs4XjlExlODyZf91F2I5zQKzurPzi4GeHpQGhUJQq+SgbRaVuzLXwXAe
YRRMJEujaaTJfbisHgOMQdLXautfRmwpALLVu30RdyTepP2ODeGAndkbdPRiZClJ
QgxK9qdi2G9xhA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:54:04 2025 by rpki-client