Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
File: bzHGTD5afeEED0Daj-3EfDj-Wfo.mft (raw, json)
Hash identifier: wpnS5r3O+IcXBWmmjWEjV7Yorw0YQ4VTKVBKgW3s3qI=
Subject key identifier: C8:B9:73:3A:CB:A1:0D:C0:6D:EE:02:3B:FC:7D:A6:62:D3:15:E6:81
Authority key identifier: 6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA
Certificate issuer: /CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa
Certificate serial: 019A72264857DF7926C9022AE4793524A34E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
Manifest number: 0FCB
Signing time: Tue 11 Nov 2025 09:01:42 +0000
Manifest this update: Tue 11 Nov 2025 09:01:42 +0000
Manifest next update: Wed 12 Nov 2025 09:01:42 +0000
Files and hashes: 1: V-ziE9ps9Cl1x9ik1a79A00SdKk.roa (hash: vAv5TpbiymJ0TO2JtzeVr/xllon/oJLZTZGZk+qEl8o=)
2: bzHGTD5afeEED0Daj-3EfDj-Wfo.crl (hash: 8kEi3fDU5GPhrJhkjYJCe5/AbeDQHaTi3T3N6LQzzGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:48:57:df:79:26:c9:02:2a:e4:79:35:24:a3:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa
Validity
Not Before: Nov 11 09:01:42 2025 GMT
Not After : Nov 12 09:01:42 2025 GMT
Subject: CN=c8b9733acba10dc06dee023bfc7da662d315e681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ce:f1:60:81:ac:f0:4b:55:b7:ce:59:ee:c1:
5f:23:08:36:e0:1c:56:61:1a:07:a9:7c:c8:6a:1f:
ee:e0:37:4d:55:48:57:ca:84:ca:fd:18:a5:67:58:
9d:1a:4e:ec:c5:d5:9a:02:80:0f:d7:76:45:0a:f3:
d1:bd:7c:d4:05:2d:1e:fd:05:9d:30:88:e7:fe:74:
dd:db:9a:72:0e:21:f8:71:98:ba:f2:3c:7e:8f:98:
2a:0b:3c:94:18:85:ca:2a:c2:1d:53:09:14:05:02:
67:f1:75:4b:a8:a4:5b:9e:92:df:ad:32:b8:5d:07:
fe:e3:e1:70:79:c6:74:01:55:c5:b7:8b:61:a0:a1:
4b:6d:2c:80:2e:46:0a:60:3c:3e:43:5a:15:d5:b0:
93:a5:54:35:fa:17:3a:90:71:a0:10:4e:e5:a1:31:
a6:17:59:2b:da:73:4f:dd:e4:5a:21:19:b1:b3:2b:
0f:e4:d4:d1:3e:c8:87:61:56:c5:51:ff:f0:f5:77:
af:f4:ec:58:93:b5:4d:d5:ab:63:5c:2f:bb:af:09:
e6:17:0b:88:a9:f6:83:2d:ae:dd:79:f6:be:d4:83:
3e:9a:4d:e0:00:24:f5:84:df:e2:19:c8:2d:c6:1b:
5c:85:8e:27:46:34:a6:c2:d5:ed:6f:ae:d4:09:42:
ee:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:B9:73:3A:CB:A1:0D:C0:6D:EE:02:3B:FC:7D:A6:62:D3:15:E6:81
X509v3 Authority Key Identifier:
keyid:6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:a9:bd:45:25:34:13:4b:23:a8:94:cf:07:9f:70:a1:f3:2f:
a5:e6:d5:a4:32:0d:30:f3:aa:65:3d:2b:57:ff:fe:20:40:0d:
54:10:50:85:f5:ae:62:01:30:04:d5:60:69:13:73:0c:b0:aa:
73:4d:18:ce:9d:c7:56:f1:2c:03:82:fc:61:eb:39:cf:56:02:
4e:e8:b2:0b:00:1d:1f:9c:6f:88:53:95:a9:c6:eb:4c:99:c4:
cd:45:1d:7c:75:32:75:14:07:6d:8a:e9:93:0f:48:3e:2a:d5:
f3:87:19:6e:1c:ae:6d:4b:85:66:77:d5:9f:f0:a1:da:92:c8:
7d:20:c4:82:6f:5e:91:0d:7d:60:bc:75:0d:c6:d7:97:8b:b8:
96:4b:49:1b:d2:e2:a3:ea:ee:81:6f:70:d6:03:a6:5c:1e:44:
b3:d5:6d:45:54:07:bf:50:e4:c9:21:c1:ba:24:ad:25:e9:0d:
49:e6:eb:a9:c6:a5:55:00:ef:30:54:44:7e:14:3b:1b:50:94:
d2:c7:fa:8a:d0:c3:ea:ad:5d:3a:7d:05:73:8b:13:80:0f:ad:
79:5f:5d:da:81:23:ad:df:0e:aa:ef:c4:33:09:a1:7f:27:b5:
5b:70:dd:03:b0:e1:a8:d0:21:a3:79:9b:59:3f:d5:88:38:84:
05:a6:bc:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:18:57 2025 by rpki-client