Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
File: BmNp4nBctDPbBlirZm0ItnsVUdw.mft (raw, json)
Hash identifier: H9Zh2P8t3dejMeuTPAIlfOwt8tpgTEoxyhQSN13PAvw=
Subject key identifier: 3B:50:56:08:13:04:3A:A3:C5:EC:14:B3:3A:A1:ED:94:50:ED:6D:E3
Authority key identifier: 06:63:69:E2:70:5C:B4:33:DB:06:58:AB:66:6D:08:B6:7B:15:51:DC
Certificate issuer: /CN=066369e2705cb433db0658ab666d08b67b1551dc
Certificate serial: 0198D5F1AABD3BF55714FD9C73BC6230E462
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
Manifest number: 156F
Signing time: Sat 23 Aug 2025 08:00:41 +0000
Manifest this update: Sat 23 Aug 2025 08:00:41 +0000
Manifest next update: Sun 24 Aug 2025 08:00:41 +0000
Files and hashes: 1: BmNp4nBctDPbBlirZm0ItnsVUdw.crl (hash: 9LVtL9A/DgHtuFRdGR1yEGgLqdyS4Im/HpNP7t5LqEc=)
2: jCf5g0MNk7dChvixSvofxX26UqQ.roa (hash: EtFQAu+QfH/I3yhnfzxyM188HrZPVxzTPSpuxFHhJDw=)
3: osJ9_DR-TYLXPhwmG2ma04NJTWc.roa (hash: J9O9DuXjiOjoHZT0sNnMyGnclsGi579GC3bqlBQWEYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 08:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:aa:bd:3b:f5:57:14:fd:9c:73:bc:62:30:e4:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=066369e2705cb433db0658ab666d08b67b1551dc
Validity
Not Before: Aug 23 08:00:41 2025 GMT
Not After : Aug 24 08:00:41 2025 GMT
Subject: CN=3b50560813043aa3c5ec14b33aa1ed9450ed6de3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:09:c0:28:7b:a4:5f:57:43:f1:8f:bf:30:c3:
d9:d3:c3:9e:5b:04:9e:1c:15:82:7c:64:d5:bd:e6:
3a:54:33:53:e6:28:1c:e9:0c:ea:d7:04:4d:4f:41:
52:c0:4e:9a:47:f6:b0:87:3e:a9:72:a3:95:38:09:
1e:7c:33:12:cd:2a:df:e3:c3:85:80:e7:00:2d:46:
53:ab:52:4f:bf:e2:cc:2a:d5:34:16:58:c6:0d:45:
02:8f:19:4a:94:c5:5f:8a:38:c8:99:8b:57:a5:18:
d9:e1:6d:99:96:53:8f:73:77:bf:b2:c4:71:eb:be:
62:e8:56:a8:e4:c8:35:e7:5a:42:71:b8:5e:95:5e:
16:63:a9:1c:0e:a0:59:8b:cd:35:5b:a7:a0:ce:58:
4c:e8:de:e0:82:dd:ad:c4:b2:39:bf:cb:98:d4:4c:
f4:fd:23:0a:87:39:07:9b:b7:f5:f5:34:ab:77:c2:
38:7f:e9:dc:5f:62:a0:da:3b:a5:c7:1d:c1:43:74:
c2:e1:75:43:4a:49:24:fa:92:4d:8e:7b:80:a4:40:
13:80:0f:8a:89:71:bd:5c:6a:29:5c:d0:ca:c5:5e:
a1:7c:ab:9a:8d:2b:d3:78:80:df:36:b8:81:f1:02:
ec:2f:0d:55:58:ca:65:4f:31:67:8f:d7:8d:b2:4a:
fd:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:50:56:08:13:04:3A:A3:C5:EC:14:B3:3A:A1:ED:94:50:ED:6D:E3
X509v3 Authority Key Identifier:
keyid:06:63:69:E2:70:5C:B4:33:DB:06:58:AB:66:6D:08:B6:7B:15:51:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:89:d4:d1:e6:2b:ae:1d:28:14:d0:d7:94:05:11:81:67:8e:
b4:d6:54:94:22:04:c6:e0:a7:4f:e6:0e:24:37:3a:58:16:f3:
a3:6e:75:6a:57:af:bc:8b:59:95:f6:80:cb:66:7c:e1:60:dc:
70:f3:16:3d:df:20:7e:4f:3d:8e:6c:c2:22:84:81:7b:db:03:
9a:4c:2d:ef:fe:95:2b:c8:f2:68:c4:12:5d:75:f2:86:9d:94:
18:e2:eb:fa:81:dc:23:60:81:2f:c5:a8:9d:b3:42:77:c2:1e:
4f:35:b4:dd:6e:83:3b:fc:ba:49:d1:af:6e:a6:56:3d:87:1a:
2b:62:5e:66:75:8b:15:f8:a3:40:d6:2b:44:c4:b3:58:35:64:
ea:2f:59:5f:7b:4d:00:89:0b:c1:f6:eb:4b:f4:f7:6a:80:97:
1c:b0:5f:53:38:19:92:b1:43:79:e9:1f:fd:c0:5b:05:64:ee:
bf:3b:9c:93:42:d8:d1:d4:29:03:4d:68:e3:ed:70:d9:da:73:
fc:5a:c0:1e:a9:7b:45:9e:f2:89:46:29:dd:0e:26:e8:23:1e:
9a:74:ab:d6:c6:da:5f:2c:fc:d2:ef:19:8e:04:14:70:72:66:
d7:c0:64:97:8d:dd:ac:3d:4a:3a:f9:d8:a3:8b:8c:0c:a2:98:
17:58:1e:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:00:28 2025 by rpki-client