Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft
File: b1frSRlt0uBgbVl3wrdLEBt5vAs.mft (raw, json)
Hash identifier: U4k21QEv6h2rYq5dgT0hyboMLS3FuqIcCZuSa01nTHI=
Subject key identifier: 3E:FE:E9:ED:40:5B:9A:F3:79:F5:2A:CB:49:59:AE:FD:B8:58:C6:B5
Authority key identifier: 6F:57:EB:49:19:6D:D2:E0:60:6D:59:77:C2:B7:4B:10:1B:79:BC:0B
Certificate issuer: /CN=6f57eb49196dd2e0606d5977c2b74b101b79bc0b
Certificate serial: 0198D5BC154F4B7C6321C010B96798E53D38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b1frSRlt0uBgbVl3wrdLEBt5vAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft
Manifest number: 08D9
Signing time: Sat 23 Aug 2025 07:02:09 +0000
Manifest this update: Sat 23 Aug 2025 07:02:09 +0000
Manifest next update: Sun 24 Aug 2025 07:02:09 +0000
Files and hashes: 1: b1frSRlt0uBgbVl3wrdLEBt5vAs.crl (hash: fsCkiUnQnHnq0luO/TmBatWdW5HOG4M5+VRc3Otoug8=)
2: qPQvBbAxayZH2DtXKePm47b3aIg.roa (hash: +EzjnlPCeBdtqBhNoYoGX7VYz3jpTXt4JQidHMxpNYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/b1frSRlt0uBgbVl3wrdLEBt5vAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:15:4f:4b:7c:63:21:c0:10:b9:67:98:e5:3d:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f57eb49196dd2e0606d5977c2b74b101b79bc0b
Validity
Not Before: Aug 23 07:02:09 2025 GMT
Not After : Aug 24 07:02:09 2025 GMT
Subject: CN=3efee9ed405b9af379f52acb4959aefdb858c6b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:23:fb:1a:2d:2f:c7:d6:91:e4:10:47:5f:32:
82:02:ff:96:f6:2b:b6:ed:f5:4f:39:f7:02:9b:1d:
8d:4e:b5:0b:8b:3c:d6:3c:70:2d:fd:7d:63:ab:ee:
e0:ee:f4:59:2e:c2:7d:57:75:99:0a:a5:34:9e:4b:
04:02:cc:8c:9e:08:2d:7a:62:e6:72:1f:d3:4d:65:
77:1c:23:b4:4f:7e:81:d0:cf:00:f4:cb:06:c3:7e:
38:74:87:4a:17:6d:1f:31:e2:b3:d6:39:09:ca:7a:
ae:bf:fb:46:a2:60:e3:6b:65:02:ce:3b:64:5e:b7:
00:3c:db:91:4f:19:10:b4:5a:05:1b:2e:a0:d8:f1:
60:55:ea:de:b7:2b:a3:76:dc:87:86:de:e9:e7:ce:
48:8a:87:79:65:a1:fe:26:97:72:8f:6a:cc:78:e6:
1e:41:5e:cd:bc:f2:72:b3:f2:60:5b:91:a6:a8:bc:
79:b3:d2:f9:54:9d:0d:ac:fb:0b:78:56:ee:18:7a:
6d:5b:ee:c6:05:3a:ab:20:9d:0e:fa:fa:1c:ad:48:
70:63:99:f4:8b:a6:f1:e8:52:5d:7b:b8:34:06:a7:
31:94:14:50:47:9b:e9:b2:94:5a:43:46:4a:fe:55:
52:08:d3:30:b6:90:63:de:3b:d0:e8:63:28:b1:67:
91:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:FE:E9:ED:40:5B:9A:F3:79:F5:2A:CB:49:59:AE:FD:B8:58:C6:B5
X509v3 Authority Key Identifier:
keyid:6F:57:EB:49:19:6D:D2:E0:60:6D:59:77:C2:B7:4B:10:1B:79:BC:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1frSRlt0uBgbVl3wrdLEBt5vAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:d6:e8:5f:6b:e3:c2:d3:c5:2b:ff:f3:1d:8f:24:04:18:f5:
54:89:76:87:77:da:2f:6a:15:69:a7:85:be:c3:06:5f:21:d1:
8f:e3:ea:b2:ed:da:82:6f:8e:4a:f8:52:cd:4f:80:11:96:e5:
ba:f1:d7:46:72:d3:5e:4d:6f:d2:fd:e9:c9:d7:76:3f:db:bb:
c0:d5:b6:6a:01:e2:73:8a:f7:f9:57:18:33:d8:43:7d:a5:fd:
7c:dd:33:bb:e2:89:e9:12:cf:c3:20:87:e3:a3:fa:c9:56:2e:
5d:54:34:1f:cc:25:b3:25:7b:9e:7c:90:8b:6c:a8:66:9d:25:
37:15:3a:97:47:48:68:17:f0:1f:2d:46:85:43:f6:c5:17:f1:
ec:81:eb:29:e6:d1:2b:c7:7a:08:da:60:ee:d1:27:ee:5c:05:
49:65:df:2a:47:df:3c:94:3e:88:23:a1:62:00:d2:dd:9b:ec:
24:1c:a2:64:18:21:cc:f5:b4:5b:11:86:ac:ed:36:1f:3d:af:
74:f1:a6:55:72:b9:67:96:8f:d4:18:03:39:95:04:bd:67:e1:
63:c2:df:1e:18:1e:b7:1c:e1:92:61:1c:09:6e:fa:29:51:f2:
3c:7d:4a:0f:08:9b:a1:66:e7:21:d5:59:eb:ab:b0:fc:f8:7b:
7d:7a:43:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:07:36 2025 by rpki-client