Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
File: BDqcNdnhovTTSnVPom0gNleEchg.mft (raw, json)
Hash identifier: u/7mc9wVlh1PvInK/5e0qLa0OPLHIADSEE8aQIumLd4=
Subject key identifier: 18:4A:87:64:C6:60:10:23:B3:36:55:0D:5A:8B:43:45:2F:AF:39:49
Authority key identifier: 04:3A:9C:35:D9:E1:A2:F4:D3:4A:75:4F:A2:6D:20:36:57:84:72:18
Certificate issuer: /CN=043a9c35d9e1a2f4d34a754fa26d203657847218
Certificate serial: 0198D54DC41E249C29C612118BF652B4B9FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
Manifest number: 1482
Signing time: Sat 23 Aug 2025 05:01:39 +0000
Manifest this update: Sat 23 Aug 2025 05:01:39 +0000
Manifest next update: Sun 24 Aug 2025 05:01:39 +0000
Files and hashes: 1: BDqcNdnhovTTSnVPom0gNleEchg.crl (hash: bb3y3lgD6ZFPKLqPudmb9HojO0+MqX/QYlQ/t9UAkgY=)
2: dXeaBJl10vB-B0zSVkLwNY_iIs4.roa (hash: F86Ia5myX5pjFnoQkxccwMDKgx5XnQXJd15fpxB0f8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:c4:1e:24:9c:29:c6:12:11:8b:f6:52:b4:b9:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=043a9c35d9e1a2f4d34a754fa26d203657847218
Validity
Not Before: Aug 23 05:01:39 2025 GMT
Not After : Aug 24 05:01:39 2025 GMT
Subject: CN=184a8764c6601023b336550d5a8b43452faf3949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ac:7c:2e:06:31:58:78:6f:f1:c3:c1:4c:40:
b0:34:7a:0c:b4:1d:01:50:e3:d3:56:d1:9d:1a:e3:
f9:ca:65:46:83:c5:90:eb:56:54:0b:08:d1:ce:ca:
e7:2b:a6:2e:c0:66:b3:0e:c3:7d:a0:fd:65:06:0f:
a3:15:7e:9c:c2:0d:f4:94:07:4a:2e:3a:0c:68:93:
ab:f3:1c:5b:ff:7e:88:f6:09:8b:71:65:4e:4f:b5:
01:53:3d:52:0b:80:9c:5a:11:7c:e8:ae:c7:1b:a0:
8b:83:7f:b0:ad:9a:76:f8:e7:3e:52:f4:1b:20:95:
82:c2:c4:5e:cc:ab:49:13:e9:f0:40:ed:49:41:ad:
18:71:39:18:52:de:7b:95:a2:0d:c6:fe:6b:f3:d3:
d4:ef:b3:67:e4:5a:59:ff:7a:8a:6b:73:f5:39:1f:
81:15:7b:24:47:dd:4a:23:d5:b9:7f:c1:78:22:04:
a1:16:3e:b7:08:22:f7:42:95:0d:69:56:53:c9:12:
35:8b:ac:92:bc:a8:f7:5c:da:b0:b9:8f:aa:99:0b:
63:8b:39:0d:7d:8d:e6:81:8e:74:e7:93:91:c9:37:
91:a3:07:d6:16:7f:d5:15:3f:cd:cb:86:79:24:02:
98:91:d6:5a:a8:c3:32:f0:91:7f:c5:0f:5b:f7:b1:
85:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:4A:87:64:C6:60:10:23:B3:36:55:0D:5A:8B:43:45:2F:AF:39:49
X509v3 Authority Key Identifier:
keyid:04:3A:9C:35:D9:E1:A2:F4:D3:4A:75:4F:A2:6D:20:36:57:84:72:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:48:74:97:7a:1c:b2:33:27:16:6b:b6:45:58:03:82:b6:e9:
c7:4c:f2:8d:59:8f:72:75:49:b8:56:db:58:14:e6:51:36:87:
2a:fe:7f:6f:b1:8f:8d:11:cb:7d:e4:d4:6a:a1:b2:2f:bb:2d:
f3:25:2c:98:b0:04:6c:1c:49:b8:32:13:9f:43:9b:7c:43:e9:
4d:d5:f0:f4:23:01:18:d0:bb:88:a8:a3:d4:b8:0d:aa:5d:2d:
5d:8b:5b:60:61:0d:2e:82:37:27:ad:ca:0c:6d:d1:01:91:98:
bb:1f:ce:5a:6b:3f:6f:eb:3d:5c:cf:f0:24:8d:4b:d3:7d:9f:
04:2c:4b:ab:69:70:66:fc:08:7f:be:3d:00:74:6c:5c:b5:ca:
95:d0:f7:08:54:e7:3c:c3:3a:eb:66:6f:15:3d:d0:6c:e5:26:
d7:8b:aa:24:87:b4:18:0e:4e:49:36:5b:5e:ce:bb:13:fb:c5:
7f:30:98:6d:05:8d:68:20:5a:1e:a5:0c:5a:88:4d:fe:7a:22:
a1:a1:c0:e7:eb:75:54:26:92:56:19:b4:a5:21:6a:01:fa:dd:
22:8b:26:71:26:0a:b5:b9:fa:04:d2:fd:08:9c:e0:9c:49:06:
6d:66:ed:b3:62:d2:31:15:dd:7d:1a:c6:45:af:41:a3:3f:58:
31:f3:18:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:12:34 2025 by rpki-client