Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
File: bdLO01LwH3613HYZ7XFMa2pceR4.mft (raw, json)
Hash identifier: 5dUPd24R6Wm4h0VZ7pFHwZqAMs5tNdZonNIH9Zn1XYY=
Subject key identifier: D8:FF:72:98:2C:A5:28:47:91:EE:22:CF:F5:89:25:00:62:54:A3:82
Authority key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
Certificate issuer: /CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Certificate serial: 0197B88F2DE9E3F15C0A9901730C4DD9818F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
Manifest number: 01B3
Signing time: Sat 28 Jun 2025 22:01:20 +0000
Manifest this update: Sat 28 Jun 2025 22:01:20 +0000
Manifest next update: Sun 29 Jun 2025 22:01:20 +0000
Files and hashes: 1: bdLO01LwH3613HYZ7XFMa2pceR4.crl (hash: Ti3r4Lcjh3xau17XSfgwlSh4/96+UiOUjm1Cx38e2JI=)
2: ldaG2ZtwFXa0D8MT2zJfF9j3gsg.roa (hash: Iho31engw2p2ICkoCri0OTvpMAFdFfQ9ZJ+brUIBG2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:2d:e9:e3:f1:5c:0a:99:01:73:0c:4d:d9:81:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Validity
Not Before: Jun 28 22:01:20 2025 GMT
Not After : Jun 29 22:01:20 2025 GMT
Subject: CN=d8ff72982ca5284791ee22cff58925006254a382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:2f:20:74:6e:bc:16:94:bf:fd:9f:1b:84:55:
6b:1b:3b:72:79:e0:57:fc:18:5a:f7:07:f7:83:b7:
c1:f8:f7:02:bc:56:b3:3d:4c:31:d2:33:f7:a9:3e:
c9:90:48:60:4d:54:a2:9e:31:32:81:6c:2d:d6:12:
30:1e:7d:f6:4b:d7:6b:8a:10:46:e7:1d:fe:07:89:
cb:1a:7d:c0:35:84:24:1a:77:24:09:93:0d:50:cc:
0e:e3:86:17:f8:f5:23:4a:f4:9d:09:57:52:cb:36:
26:60:cc:00:36:44:ab:a7:2f:a3:f8:35:12:0a:15:
69:aa:08:c3:0b:52:f1:6d:df:bb:e8:6e:18:74:a9:
17:cc:55:93:03:a6:bd:32:04:a1:f4:48:6f:b1:ac:
06:85:9a:2e:99:f0:dd:36:37:c6:c5:bf:ab:50:df:
ce:53:d3:39:1d:65:5f:cf:f8:e8:b5:6e:38:6f:81:
22:45:62:83:c7:47:9a:a4:36:29:b8:be:60:d6:2d:
ca:f1:29:c6:dd:c7:0a:d2:4f:c7:0e:10:5e:01:22:
61:10:48:a4:7d:7e:47:b8:6f:bd:83:a0:af:03:86:
64:28:69:5c:24:62:78:ea:22:3f:61:04:b0:e6:4f:
02:64:b9:7f:6f:58:ca:f5:d6:f3:3b:29:41:8c:ab:
c1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:FF:72:98:2C:A5:28:47:91:EE:22:CF:F5:89:25:00:62:54:A3:82
X509v3 Authority Key Identifier:
keyid:6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:34:7b:36:2f:62:6f:05:98:8c:e1:e3:46:db:b1:23:53:2d:
a4:32:cb:5c:32:cc:54:74:1c:2d:85:d3:ad:62:7b:2e:0b:2b:
0a:d3:2d:9d:ad:6d:48:b9:f3:cd:e8:15:00:e9:19:37:b9:32:
a2:48:b9:8c:cf:33:4a:62:2d:33:bb:03:52:e5:1a:b5:27:08:
0a:e5:dd:9c:a5:c5:bc:85:ed:e9:e7:8f:78:1c:2c:96:9c:51:
52:b8:15:5d:e6:e2:69:86:e0:97:b4:f7:79:a4:eb:a6:e1:f1:
7d:c5:73:3b:69:cf:53:04:85:77:c5:68:df:17:b2:fc:ce:40:
e4:c9:20:4f:4b:21:c7:4f:b7:cd:b2:b9:20:ca:37:16:5f:71:
7c:8c:20:1e:9b:cb:f0:5f:f6:2c:7f:49:dd:c9:5f:9e:65:a3:
bc:54:81:42:b0:0b:ba:e8:58:3a:cc:fd:f3:21:08:67:ad:ac:
7c:56:04:56:9b:6f:26:86:f7:13:bb:72:11:48:c2:5b:fd:e3:
38:8d:16:b5:dc:fe:70:15:26:97:9b:45:b7:12:a7:50:4e:1b:
24:f2:e9:d1:3a:1a:7d:70:ff:38:9b:74:3d:32:59:d3:20:6d:
31:a7:9c:e8:75:ca:00:bf:96:71:bd:e0:5a:c4:a6:31:07:21:
b1:c1:39:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:21:10 2025 by rpki-client