Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
File: bdLO01LwH3613HYZ7XFMa2pceR4.mft (raw, json)
Hash identifier: ipHUgFb4nkmRAorMi116BQX+fOzZwhJyXOmu45GvdYI=
Subject key identifier: 1A:91:FD:B0:D2:6E:71:63:21:45:D1:F7:80:A0:94:89:50:F3:A8:55
Authority key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
Certificate issuer: /CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Certificate serial: 0198D84FDCD3134F59D62831A3E1802F7B23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
Manifest number: 0248
Signing time: Sat 23 Aug 2025 19:02:49 +0000
Manifest this update: Sat 23 Aug 2025 19:02:49 +0000
Manifest next update: Sun 24 Aug 2025 19:02:49 +0000
Files and hashes: 1: bdLO01LwH3613HYZ7XFMa2pceR4.crl (hash: 2MAcw+Au4XDGnhDHSkbFxqfMhXu1A98FLlqs7vD7uwA=)
2: ldaG2ZtwFXa0D8MT2zJfF9j3gsg.roa (hash: Iho31engw2p2ICkoCri0OTvpMAFdFfQ9ZJ+brUIBG2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:4f:dc:d3:13:4f:59:d6:28:31:a3:e1:80:2f:7b:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Validity
Not Before: Aug 23 19:02:49 2025 GMT
Not After : Aug 24 19:02:49 2025 GMT
Subject: CN=1a91fdb0d26e71632145d1f780a0948950f3a855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2e:65:76:34:62:0f:08:ce:2f:81:99:49:7c:
8b:d1:c0:0f:9d:21:47:7d:30:03:4d:ba:fb:24:fb:
21:24:40:42:67:7c:28:cb:67:2f:a4:d6:e4:08:45:
36:82:bc:d0:0f:8e:78:d2:a0:f8:97:5b:0e:4c:17:
79:eb:c9:38:81:40:7c:c3:c3:2c:a3:4e:7a:57:1e:
30:82:07:2f:51:f7:a2:1d:3d:83:2e:49:96:3b:6f:
04:bf:14:a1:6a:ca:1e:cf:a9:6d:f3:1a:b5:cd:42:
f2:66:ec:fe:ac:f6:af:28:32:5c:4f:56:88:e4:f8:
b7:36:ae:20:9d:a2:b1:dd:08:d2:1f:44:4f:5a:0d:
f6:d5:96:23:87:11:bf:cb:f9:59:a0:de:f3:9a:45:
a1:93:e5:0d:41:3f:94:31:75:e3:71:4d:cc:69:58:
6d:f2:2a:0e:5c:4a:39:cd:6a:c0:c1:96:b9:cd:3c:
25:84:a5:bc:f4:9d:c0:3d:a5:a5:b0:b6:7c:a9:b6:
61:fb:26:26:c0:03:5d:64:cf:8e:9e:85:12:ef:52:
9b:0a:96:f4:2e:cf:7d:2f:4a:4f:d0:9b:10:85:4a:
e0:28:91:c1:f3:84:51:e1:d6:7d:07:1e:e7:ef:fe:
31:a0:86:46:66:3f:8c:a2:26:0d:dc:d5:ac:51:a4:
61:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:91:FD:B0:D2:6E:71:63:21:45:D1:F7:80:A0:94:89:50:F3:A8:55
X509v3 Authority Key Identifier:
keyid:6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:d7:59:2c:f8:51:91:b3:ff:c4:8a:f1:55:93:d2:54:e4:29:
3c:9d:5a:6e:1b:52:d8:98:c7:1f:d2:a4:33:0c:5c:e3:1e:eb:
f9:e1:c1:fc:46:bd:d3:4e:76:d4:3d:20:50:8f:fd:33:d1:55:
98:1d:e6:bc:c3:fc:9a:7d:c1:56:d4:cc:8d:f2:84:6e:62:6b:
30:63:cf:d7:e9:68:c2:12:48:a9:ae:f1:77:51:6e:8e:8a:27:
18:aa:80:1d:b1:44:92:6c:21:2d:bd:86:28:30:39:24:d1:10:
e9:2f:84:b8:f4:3b:26:07:dd:c9:fb:f7:3b:a3:3c:6a:d5:6c:
41:5f:42:bb:73:3f:30:21:1e:e7:00:ea:fc:77:97:83:27:41:
93:4a:ab:d6:b0:27:ff:a3:3e:d8:ed:88:04:ab:1e:51:e3:df:
cc:0f:55:7e:80:f7:1d:13:0e:e9:12:ce:a1:5b:df:49:34:3d:
fb:38:69:3c:5c:53:ad:9f:8a:1e:dd:dc:ed:d2:40:22:d4:1a:
ee:6a:15:ba:f7:0e:b1:02:e4:4e:87:27:22:40:ba:39:02:1e:
3f:bc:30:50:3c:89:d2:2b:c2:04:ee:23:47:45:6a:d9:b4:99:
de:8a:cd:33:08:a5:75:15:7f:f1:a9:53:9c:a8:cd:5f:85:46:
5c:05:40:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:33:47 2025 by rpki-client