Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
File: bzOv1B6gEvsoA8cnRSPI7D8mExE.mft (raw, json)
Hash identifier: 3sxdgf2gzDP0dyY2WtStazaPYi3av5h+sAWFwGq+P14=
Subject key identifier: 69:21:00:7C:E5:5D:91:88:FB:D2:AB:1B:90:5A:8A:C7:55:B2:67:1D
Authority key identifier: 6F:33:AF:D4:1E:A0:12:FB:28:03:C7:27:45:23:C8:EC:3F:26:13:11
Certificate issuer: /CN=6f33afd41ea012fb2803c7274523c8ec3f261311
Certificate serial: 019A270B5D6E58A5B3B2612FDB83F0D77D2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
Manifest number: 16F8
Signing time: Mon 27 Oct 2025 19:00:47 +0000
Manifest this update: Mon 27 Oct 2025 19:00:47 +0000
Manifest next update: Tue 28 Oct 2025 19:00:47 +0000
Files and hashes: 1: bzOv1B6gEvsoA8cnRSPI7D8mExE.crl (hash: t2SwWAEJSYUE+5bYbhURVxUqM6x+PpRoFsizOgy6W2c=)
2: v8tpm7-4VwDQ4BW9MfFdtqRUZ9c.roa (hash: Xcaj7PWNKHBPkwnwanmCNYJ/FSFogXNO8sh3nrmk3Ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:27:0b:5d:6e:58:a5:b3:b2:61:2f:db:83:f0:d7:7d:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f33afd41ea012fb2803c7274523c8ec3f261311
Validity
Not Before: Oct 27 19:00:47 2025 GMT
Not After : Oct 28 19:00:47 2025 GMT
Subject: CN=6921007ce55d9188fbd2ab1b905a8ac755b2671d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:db:21:7e:e9:cd:f0:69:01:6f:6f:03:da:66:
05:db:e9:ea:85:91:18:e8:56:7f:3c:8d:72:10:29:
71:6d:2d:2f:eb:60:ac:46:34:0d:84:4f:af:ff:47:
80:55:06:d5:9d:1a:83:a8:e9:5a:80:19:4f:ac:32:
75:9c:6a:3e:9d:52:c9:94:f4:aa:99:c4:66:b7:1d:
8f:24:71:a5:2d:0c:b4:49:45:ef:d5:2f:ef:48:9d:
cf:ef:e4:ec:cd:37:a2:f4:c3:1d:0e:39:8a:3a:91:
c9:30:1a:72:af:8d:51:a8:6d:a8:97:14:3f:c5:fe:
e2:7d:a8:4f:cd:b6:f8:3c:f6:c3:e2:57:d6:dd:15:
ac:08:c1:ed:ef:d3:9b:e1:57:f4:79:8f:a0:6c:4d:
93:47:e9:c5:f5:2c:31:4a:7e:5a:71:b2:67:97:ab:
dc:53:40:91:f4:40:8e:d7:8c:61:30:4f:08:1c:3e:
3f:fa:39:a6:96:97:2b:40:c8:96:80:95:4b:25:9f:
63:19:f7:a2:6a:4b:fc:a8:75:4c:4e:4f:4c:f7:b2:
55:e6:44:0f:1a:4a:18:43:e4:19:62:fd:89:af:3a:
10:aa:80:15:62:ae:de:f8:27:c7:f5:49:c7:fc:2f:
a5:c7:87:4d:e6:76:fa:97:36:ba:48:45:9e:cb:c7:
df:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:21:00:7C:E5:5D:91:88:FB:D2:AB:1B:90:5A:8A:C7:55:B2:67:1D
X509v3 Authority Key Identifier:
keyid:6F:33:AF:D4:1E:A0:12:FB:28:03:C7:27:45:23:C8:EC:3F:26:13:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:52:27:5b:3c:fe:65:f6:8d:43:0f:26:1f:20:b4:82:66:75:
4b:18:16:cb:eb:64:82:8f:29:44:2e:a4:aa:d2:15:36:18:4f:
65:c5:6f:51:4b:b8:6f:28:e9:58:16:03:83:6c:e4:a8:63:04:
04:ee:98:15:b7:cf:1d:da:d9:81:10:65:5c:ce:e5:7e:64:76:
ae:dd:45:ae:9e:d2:08:ae:aa:dd:d6:13:75:0d:4a:ef:92:0b:
be:6e:a5:e9:d0:ee:18:08:05:0a:03:7c:72:13:2c:a9:25:c4:
8a:fb:99:34:a2:80:ce:42:e4:3e:2b:e2:10:51:d6:21:23:0d:
d5:7b:4b:81:52:81:4e:07:ed:cf:de:29:f2:65:44:f6:c8:20:
e9:e2:44:4d:f8:e2:07:7b:ec:38:a1:c2:02:eb:e6:29:9a:9e:
58:52:60:39:8a:98:95:5b:52:fd:10:cc:d1:21:64:88:d5:ab:
02:81:28:2b:5c:9d:da:73:91:c5:9d:01:c3:29:6a:59:ab:aa:
80:d8:bf:98:73:b3:b3:05:21:cb:1e:c8:90:79:55:34:b8:a1:
2c:32:52:fb:13:0e:ee:fb:ce:87:91:77:f5:92:49:04:d3:23:
f6:5a:e0:ae:04:76:04:26:2d:90:84:28:ea:d1:84:c7:e2:c5:
ac:00:d1:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 22:19:49 2025 by rpki-client