Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.mft
File: Bn3PV3ZU3KF6YQua9PLKdCHcu4E.mft (raw, json)
Hash identifier: AnYsBqtIdbCo8mgcAoJsxzpDEFANixsTIvalgWbavrc=
Subject key identifier: AC:1D:43:70:20:BF:44:8F:2A:83:19:AD:78:2F:7F:D3:31:26:6D:BD
Authority key identifier: 06:7D:CF:57:76:54:DC:A1:7A:61:0B:9A:F4:F2:CA:74:21:DC:BB:81
Certificate issuer: /CN=067dcf577654dca17a610b9af4f2ca7421dcbb81
Certificate serial: 0199179ABCFAC93890FB1F5E2ADAD01E4A5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.mft
Manifest number: 11FA
Signing time: Fri 05 Sep 2025 02:00:40 +0000
Manifest this update: Fri 05 Sep 2025 02:00:40 +0000
Manifest next update: Sat 06 Sep 2025 02:00:40 +0000
Files and hashes: 1: 1GqtXlpLHOQrMWA32pTa86lAWYQ.roa (hash: tnU3CSzBIjcvcUTrt2DgQBxjNJjtnLH3C2y91tIJFC8=)
2: Bn3PV3ZU3KF6YQua9PLKdCHcu4E.crl (hash: 6AYbqJsR9VUWU2at8JpFn9R2krw3rEzwl/8XFGzAPFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:9a:bc:fa:c9:38:90:fb:1f:5e:2a:da:d0:1e:4a:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=067dcf577654dca17a610b9af4f2ca7421dcbb81
Validity
Not Before: Sep 5 02:00:40 2025 GMT
Not After : Sep 6 02:00:40 2025 GMT
Subject: CN=ac1d437020bf448f2a8319ad782f7fd331266dbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:37:34:34:6e:9a:b0:0d:d3:b7:00:18:e5:2e:
46:02:7d:55:e5:b9:35:0f:17:8e:59:df:50:ba:50:
78:ea:ef:79:0d:cb:0f:8f:35:ec:ec:42:1f:48:49:
f1:2e:0d:f9:3d:ee:cd:2b:7c:ee:52:99:00:b2:23:
bc:ae:8c:3d:46:aa:cb:c4:cf:a8:de:40:3f:e9:b2:
54:01:33:95:ae:f9:2b:e1:6e:49:6a:05:2b:76:7a:
32:b6:0e:4b:80:7f:57:0d:bc:c0:9e:11:38:3a:85:
ee:68:57:aa:95:88:01:0d:22:57:13:be:13:2d:69:
bd:cd:56:26:00:57:f3:86:9e:b4:11:6b:a7:a6:2f:
c5:7c:a0:de:a1:0a:bf:b1:1b:8b:02:66:15:d3:98:
21:3b:7d:97:1a:63:b9:2c:ff:97:11:69:3d:e7:7b:
3b:3f:06:5e:ad:5d:19:75:09:8e:14:fb:d8:9b:61:
e6:64:d6:4b:f6:78:49:42:47:87:be:ad:1a:fc:67:
e8:54:39:2b:ba:2a:51:68:15:20:5c:7e:d3:1e:bd:
86:78:9a:86:17:11:88:01:e5:fb:72:35:0f:e1:1c:
e1:0c:56:35:f8:48:5b:f5:1c:af:fb:2b:68:a8:08:
d8:a6:ed:df:7e:8e:1d:f3:14:f8:0d:51:f5:aa:46:
55:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:1D:43:70:20:BF:44:8F:2A:83:19:AD:78:2F:7F:D3:31:26:6D:BD
X509v3 Authority Key Identifier:
keyid:06:7D:CF:57:76:54:DC:A1:7A:61:0B:9A:F4:F2:CA:74:21:DC:BB:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:0c:12:43:62:c2:3e:ea:52:67:63:56:07:ca:62:3c:22:4f:
07:83:15:7a:21:28:97:4d:f9:3a:38:4f:5e:09:6d:7a:25:f2:
99:67:c6:39:3f:45:5b:e2:d4:6e:cb:55:4b:09:93:5f:93:35:
e7:e1:7c:1c:0b:92:27:f2:0d:85:13:90:be:4a:06:4a:34:a3:
01:f2:f3:6c:74:62:91:95:e4:7f:cd:5f:cb:b3:91:90:28:48:
dd:2c:ea:f0:58:65:b8:1c:eb:90:15:9c:72:3d:23:19:23:29:
c3:4b:ac:51:f7:08:1d:30:53:45:22:e0:e2:18:f3:61:a3:b3:
42:5d:fd:28:93:75:78:54:28:14:63:f7:9b:df:42:7f:7c:b3:
fd:67:35:ec:9d:9b:9c:6e:ae:12:c8:7d:22:3f:be:bc:8e:e0:
68:59:17:b1:87:43:e5:10:48:af:1c:b9:17:74:8d:51:bd:48:
fb:1d:2a:3b:56:fe:bb:92:f5:94:e4:53:bc:86:c8:d1:e0:dc:
e0:7b:18:bc:61:dd:4d:ad:7f:f3:04:a2:3c:26:db:c1:0e:94:
a5:57:73:f7:e8:8a:6d:04:50:01:10:60:ad:9a:0d:74:a4:b6:
ab:2f:3c:f6:60:1e:55:89:43:6f:22:b1:dc:c0:37:a1:e6:cf:
77:17:b1:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:05:29 2025 by rpki-client