Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.mft
File: Bn3PV3ZU3KF6YQua9PLKdCHcu4E.mft (raw, json)
Hash identifier: MVwc7rCiJcaaxWgdJJnJkeikrfZnB/1rtGnb9rGpzmI=
Subject key identifier: 51:3E:14:A1:94:A7:B0:AB:54:19:75:74:01:ED:D3:10:9C:55:C1:04
Authority key identifier: 06:7D:CF:57:76:54:DC:A1:7A:61:0B:9A:F4:F2:CA:74:21:DC:BB:81
Certificate issuer: /CN=067dcf577654dca17a610b9af4f2ca7421dcbb81
Certificate serial: 019A7149C33BE1C70E4C38D8A55951900CB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.mft
Manifest number: 12AD
Signing time: Tue 11 Nov 2025 05:00:50 +0000
Manifest this update: Tue 11 Nov 2025 05:00:50 +0000
Manifest next update: Wed 12 Nov 2025 05:00:50 +0000
Files and hashes: 1: 1GqtXlpLHOQrMWA32pTa86lAWYQ.roa (hash: tnU3CSzBIjcvcUTrt2DgQBxjNJjtnLH3C2y91tIJFC8=)
2: Bn3PV3ZU3KF6YQua9PLKdCHcu4E.crl (hash: DJE0Edml3E2DixaHqkJDhbDzRdhfa8Gf+yjYlVlKPRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:c3:3b:e1:c7:0e:4c:38:d8:a5:59:51:90:0c:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=067dcf577654dca17a610b9af4f2ca7421dcbb81
Validity
Not Before: Nov 11 05:00:50 2025 GMT
Not After : Nov 12 05:00:50 2025 GMT
Subject: CN=513e14a194a7b0ab5419757401edd3109c55c104
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4f:5b:b8:22:e8:47:72:46:f2:63:b4:24:af:
52:00:d8:79:61:ac:ec:de:9d:b4:d3:17:5e:04:60:
6d:36:7d:fd:85:6c:a0:47:6c:83:92:ff:37:9d:a4:
d9:82:c8:64:11:4a:a7:e1:9d:75:7b:f3:d7:ee:e7:
e4:98:7d:60:02:c6:9e:52:67:2c:07:83:c7:41:93:
3b:5e:a3:10:68:26:32:3c:1d:d8:07:ae:a5:ec:ec:
4a:16:17:eb:71:20:ce:ea:02:fd:aa:14:7a:c5:22:
bf:85:f4:19:17:da:8b:de:5d:08:a1:41:8a:23:03:
ce:0b:a4:1e:3d:e8:b8:30:9b:ea:5a:5e:50:d2:14:
b2:75:99:c3:fc:1d:8b:44:f8:0a:d4:4b:a0:2e:7b:
48:2d:31:f1:2d:f6:29:00:11:23:10:82:e3:65:69:
03:db:f2:5f:09:8f:fc:eb:85:33:19:d5:88:ff:d0:
23:b8:75:c3:c9:ee:e2:97:ff:ca:2c:51:c1:c2:df:
3c:12:dd:ba:83:3e:b1:41:fa:24:33:ff:0d:f1:48:
60:80:88:3b:c3:97:be:b7:3c:01:ad:d0:50:a1:a8:
f7:9e:ef:fa:cf:f1:5d:66:5e:3e:ea:a8:ec:8c:81:
23:cc:38:14:c0:e1:22:27:4b:16:e6:3a:ac:85:2f:
e8:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:3E:14:A1:94:A7:B0:AB:54:19:75:74:01:ED:D3:10:9C:55:C1:04
X509v3 Authority Key Identifier:
keyid:06:7D:CF:57:76:54:DC:A1:7A:61:0B:9A:F4:F2:CA:74:21:DC:BB:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:9b:e8:8f:98:29:48:69:0d:d8:1c:7f:35:98:f0:64:ec:a0:
66:ea:ad:a7:75:e9:91:a5:83:7e:7b:66:15:e8:24:00:2e:2b:
ad:71:09:fd:82:26:47:19:4b:7a:1b:59:f5:e8:e3:3d:25:ff:
e1:56:44:48:60:89:80:3d:a1:6c:4a:ed:00:5c:6b:48:b1:df:
d3:2c:6d:ea:20:81:d4:0d:26:7c:52:a4:80:87:d7:b2:f8:1b:
cc:75:d5:cf:5c:3e:fc:ef:fb:fc:0f:99:44:d3:75:b8:25:73:
44:d0:69:4e:fd:ed:a8:61:c2:02:f4:c2:32:06:3e:38:94:f2:
83:01:70:19:21:c2:48:58:2a:62:9a:b0:bd:6d:7d:61:04:2d:
22:a4:36:11:77:83:6e:4c:50:ea:ac:27:0f:32:f1:ed:b1:63:
79:d2:80:13:be:86:72:71:d7:e8:9b:fd:5a:87:be:70:81:db:
b8:db:a8:89:e7:36:2e:52:46:01:dd:c9:65:46:fa:7f:f7:9d:
73:82:5c:36:16:8d:22:6e:fa:78:4d:ce:2c:50:99:38:10:1f:
43:84:a7:97:b0:36:8a:c5:21:82:b9:3b:db:89:06:55:c7:85:
97:0e:9b:5a:c5:37:98:87:fd:da:7b:f2:70:de:7f:51:d7:f2:
f2:ef:87:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:51 2025 by rpki-client