Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
File: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft (raw, json)
Hash identifier: Upu8kCaNeUTEzSdI1g2kaeYGMf3YUdLrbDM15M/iRMM=
Subject key identifier: BE:18:E9:E6:D2:97:BA:FB:92:AF:E4:DB:9F:F9:E3:63:D8:D4:13:1E
Authority key identifier: D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
Certificate issuer: /CN=d346e5d46291f6bc53b965865051ba399749eb2d
Certificate serial: 019A5AC1F9BB56459BC8C863305F6EA32405
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
Manifest number: 02BB
Signing time: Thu 06 Nov 2025 20:00:52 +0000
Manifest this update: Thu 06 Nov 2025 20:00:52 +0000
Manifest next update: Fri 07 Nov 2025 20:00:52 +0000
Files and hashes: 1: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl (hash: bSRFFIgOAeaMhvaOwOQCvHa7w+zxs5DgRSnZm6kFV6o=)
2: gYQl8tX6UzR3RDmi_Q8x7-FjoRo.roa (hash: Ql10T2YHVZxrbMNqGA2K5KVTFR5OZbWrykLTc4F+v5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 07 Nov 2025 20:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:5a:c1:f9:bb:56:45:9b:c8:c8:63:30:5f:6e:a3:24:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d346e5d46291f6bc53b965865051ba399749eb2d
Validity
Not Before: Nov 6 20:00:52 2025 GMT
Not After : Nov 7 20:00:52 2025 GMT
Subject: CN=be18e9e6d297bafb92afe4db9ff9e363d8d4131e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b7:13:67:95:a3:9b:a4:55:d7:2e:ec:64:86:
e5:87:00:52:c0:8f:80:0c:39:e4:6a:a0:b8:20:c7:
b2:d6:1f:d8:b6:b0:60:49:18:ad:87:88:60:5f:fd:
03:28:d9:23:f3:80:f5:b4:cb:57:2e:44:de:5e:81:
e9:b1:26:86:fc:da:63:6f:bc:90:d0:77:b4:c2:6d:
80:98:05:02:4c:37:0f:ab:60:57:fb:fd:f6:32:a6:
26:c4:06:eb:7c:ec:f7:37:76:ea:12:a8:5b:d7:da:
1a:6d:03:fa:c3:9d:2c:bb:3a:5a:c3:f5:da:6c:9f:
cc:ef:cc:69:7b:60:93:ad:7c:d7:35:56:f0:a1:77:
cc:1f:8d:ae:9b:11:a4:32:22:5c:03:3b:fd:67:05:
ae:c3:8b:44:b2:cd:05:02:d7:e2:0c:ed:1e:a0:5e:
1c:66:5d:d3:27:9c:cf:27:25:12:55:84:cb:84:ed:
0c:0a:c1:3d:e7:8f:cb:c8:03:82:c6:51:b2:c8:2f:
74:83:54:4b:22:4c:92:f7:69:46:9e:3c:7a:8d:0a:
9c:0d:7a:09:db:ec:32:08:8d:0a:87:66:0e:21:ca:
a9:89:6a:a9:f2:a3:99:25:bd:5c:68:5d:f4:38:6b:
54:39:1f:72:5e:6b:20:02:67:e9:39:35:2b:0e:da:
db:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:18:E9:E6:D2:97:BA:FB:92:AF:E4:DB:9F:F9:E3:63:D8:D4:13:1E
X509v3 Authority Key Identifier:
keyid:D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:5a:82:c9:46:9e:d3:7c:93:bf:53:15:77:30:df:92:b1:3a:
47:3c:9a:15:1d:21:18:ba:4e:22:da:42:f4:0d:d0:04:ce:0b:
3e:09:21:67:04:66:59:10:76:41:59:9a:0a:ba:d9:ef:16:ce:
85:b8:7e:8c:18:66:73:27:73:b4:92:8a:36:68:e4:12:86:d0:
6c:e9:47:e7:37:15:23:18:e2:ad:fa:aa:a2:c7:af:4f:8e:f5:
9c:ac:1b:86:93:bb:39:b0:d5:28:ea:09:22:95:c8:d0:54:c5:
e9:c1:64:ef:79:05:c3:93:41:10:53:6b:3e:79:5f:d5:1d:8a:
38:6d:16:d6:ed:39:0a:cf:af:d7:a2:63:f6:10:6f:1a:a1:7c:
3a:7c:bc:6b:e5:ff:6b:94:9e:8b:07:84:b1:10:7a:d6:26:76:
7b:04:79:24:e7:f6:b9:4f:18:ac:1e:f9:84:b7:0c:05:57:4e:
69:43:ae:17:36:15:59:95:83:d1:ce:a2:74:dc:d7:5a:5c:f9:
ac:d2:54:5b:a7:28:21:8a:2c:a1:79:f6:46:e5:a6:f3:b0:d3:
fc:7d:29:1a:f7:82:d4:6f:56:a7:db:60:d3:2c:ee:de:fe:79:
a7:ff:1f:d1:f4:8a:8a:a9:71:64:0d:de:2a:9d:65:c2:fc:7b:
b6:d1:0b:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 7 00:33:53 2025 by rpki-client