Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
File: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft (raw, json)
Hash identifier: QJ+BGKAj+aja0cEhiXFUrAlQCmSn/wZilgQeWD3ZVIg=
Subject key identifier: AE:8B:4C:BE:5E:FE:B6:B2:62:2C:B3:37:F5:4D:B1:60:82:85:14:29
Authority key identifier: 6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
Certificate issuer: /CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Certificate serial: 0197C0ED303AD03C18F8BB92F5FB6B79CCE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
Manifest number: 0347
Signing time: Mon 30 Jun 2025 13:00:59 +0000
Manifest this update: Mon 30 Jun 2025 13:00:59 +0000
Manifest next update: Tue 01 Jul 2025 13:00:59 +0000
Files and hashes: 1: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl (hash: vlEJwATG2Lb+ZC8Kb6AZXjFGLfWg6c6gvy2ruiCjCBg=)
2: xfuYQjKIwNsH8n8qNl-5nn5swlA.roa (hash: EURGAPm/xAIC/hIpJIK0VPaCfzGhmdAUIaI/It3KKIY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 13:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c0:ed:30:3a:d0:3c:18:f8:bb:92:f5:fb:6b:79:cc:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Validity
Not Before: Jun 30 13:00:59 2025 GMT
Not After : Jul 1 13:00:59 2025 GMT
Subject: CN=ae8b4cbe5efeb6b2622cb337f54db16082851429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c2:c6:21:c9:e2:2a:bb:5d:bd:3f:fb:c6:69:
7d:9e:1e:8c:b6:c3:f6:e7:83:2d:2e:6c:18:02:74:
67:50:73:10:c9:3b:d2:9e:3d:33:4f:17:9e:c7:c0:
14:11:2a:e8:b9:31:76:4e:ce:60:f8:f2:0b:3e:a8:
33:4f:1e:29:b2:1f:4a:66:bc:01:82:16:59:7f:a8:
bc:bc:6c:73:94:b4:67:f9:c9:3f:50:85:a7:ad:bd:
7f:6d:a1:60:59:6e:6f:34:59:77:fa:02:3c:fa:bf:
85:d0:a5:32:56:6f:ff:3c:2d:8b:7c:37:f0:ef:15:
7c:f2:39:c0:51:fd:d8:4f:cc:3f:77:04:3b:01:ca:
d2:14:ac:5f:84:e6:a8:d0:37:d7:26:78:a0:87:92:
11:39:39:4d:4b:e9:5a:3e:05:77:42:6c:cc:2d:68:
2b:07:d5:4d:fe:f3:88:74:b1:a4:ce:bb:b1:5b:c7:
ca:23:4e:07:9f:d0:06:87:9e:de:03:d5:08:ec:c5:
fc:bd:97:58:20:14:d7:1b:fb:63:3b:0f:87:2f:c1:
aa:39:2f:8d:6c:94:95:bf:42:09:40:30:ed:00:b3:
92:3b:f3:8e:ec:1a:2d:3d:9c:a1:b4:6b:7d:18:9b:
29:c8:f5:31:1e:ff:88:d7:bd:a6:df:22:9c:6f:ef:
2b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:8B:4C:BE:5E:FE:B6:B2:62:2C:B3:37:F5:4D:B1:60:82:85:14:29
X509v3 Authority Key Identifier:
keyid:6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:d0:fc:54:ee:40:c2:29:9f:16:e3:cd:a9:51:88:f8:69:91:
96:bf:88:2e:c7:ae:22:85:e1:2b:fc:85:1e:05:f7:2d:d3:16:
d0:c8:d8:93:4f:71:4e:8b:85:84:45:54:4f:e2:f6:29:06:c1:
3d:8b:77:9b:4f:84:e5:69:d3:10:06:52:45:18:51:50:4c:8a:
f7:40:d3:f0:c7:12:d9:d5:d2:fb:c9:91:4a:78:d4:44:42:a9:
af:88:4e:89:e1:c6:4b:ee:4f:28:b5:8f:85:25:fb:fe:63:31:
d1:40:fa:c6:71:33:cd:23:8c:4f:8e:43:83:1a:7c:08:94:00:
94:6f:2e:b8:0d:b3:ae:7e:1c:1a:74:c1:7f:d6:ac:40:36:6b:
33:bb:98:b9:54:84:c0:3d:fb:e9:b8:f4:82:95:a3:f3:70:55:
36:d3:46:30:fe:14:9f:2c:d9:b6:2d:cd:00:5b:99:6d:c3:57:
f9:9d:9b:9d:6c:37:54:72:21:06:2f:07:18:af:1e:6d:c7:a4:
93:79:4c:1d:89:43:f2:ac:8c:a3:bb:1e:e9:6b:bb:a0:dc:b5:
95:fc:b6:e2:3c:11:5e:a6:e6:0b:c1:92:e3:35:c2:a6:e8:bb:
d0:8c:68:ec:b3:fc:01:84:9e:f7:47:21:ec:57:67:34:1e:c0:
ed:0b:91:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 19:27:17 2025 by rpki-client