Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.mft
File: bQBRmLdFcqFWq2PyMIWJe9PM1Bs.mft (raw, json)
Hash identifier: +THEO/6m+Go3u+Ga/tkqfXF5WuutU1Sr2PLbNetbovA=
Subject key identifier: D9:CE:D9:DA:45:F4:73:B6:1A:E7:E6:C1:CC:2E:59:39:01:6E:B1:59
Authority key identifier: 6D:00:51:98:B7:45:72:A1:56:AB:63:F2:30:85:89:7B:D3:CC:D4:1B
Certificate issuer: /CN=6d005198b74572a156ab63f23085897bd3ccd41b
Certificate serial: 0198D7A9433A1759DC5E8DD258E597E2790E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.mft
Manifest number: 026F
Signing time: Sat 23 Aug 2025 16:00:50 +0000
Manifest this update: Sat 23 Aug 2025 16:00:50 +0000
Manifest next update: Sun 24 Aug 2025 16:00:50 +0000
Files and hashes: 1: bQBRmLdFcqFWq2PyMIWJe9PM1Bs.crl (hash: meYQCiY+nhYlFHYSuyPwJuF1IXtMOzhYZQ/R7gXPJ+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a9:43:3a:17:59:dc:5e:8d:d2:58:e5:97:e2:79:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d005198b74572a156ab63f23085897bd3ccd41b
Validity
Not Before: Aug 23 16:00:50 2025 GMT
Not After : Aug 24 16:00:50 2025 GMT
Subject: CN=d9ced9da45f473b61ae7e6c1cc2e5939016eb159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9b:c9:0b:17:cd:0b:fb:30:c2:4c:80:f2:1c:
cf:10:c4:2f:bb:4d:70:bb:03:a2:99:4e:14:8f:93:
70:ed:26:7c:c3:33:8a:90:1c:1c:77:ae:c5:07:4b:
20:a9:7a:ae:d8:bc:ed:a7:c5:cd:22:21:a1:6a:a1:
c1:05:33:7b:db:da:ff:97:bf:25:e4:ef:a8:be:4b:
b4:c8:59:be:0d:df:83:63:f2:2c:e3:7b:69:c8:cd:
93:70:35:80:a2:7c:4b:e7:94:ee:43:23:14:eb:fa:
9e:dd:35:ba:40:9d:ca:3c:39:43:6b:26:f0:19:f1:
b4:10:7e:41:75:7b:a6:4a:c3:fd:fe:79:8c:53:82:
9b:00:17:58:be:a2:f9:cc:fc:f3:01:9a:4c:77:58:
6d:3b:d2:39:a6:12:a4:6f:51:9f:6f:a4:97:6d:df:
6a:37:ef:d7:9a:82:4a:75:65:3d:d2:6d:cb:23:c6:
d8:b5:68:d0:99:66:53:b5:42:37:c4:92:d5:31:71:
91:09:56:96:43:c0:fd:bd:d2:4d:75:aa:b1:75:f1:
89:ea:3d:1e:a7:9f:91:6c:82:65:02:e1:05:68:25:
1e:1d:37:12:ed:ac:80:85:cb:2c:53:42:e7:43:89:
f8:b4:a6:4e:90:31:e7:66:47:66:b4:00:25:07:ed:
68:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:CE:D9:DA:45:F4:73:B6:1A:E7:E6:C1:CC:2E:59:39:01:6E:B1:59
X509v3 Authority Key Identifier:
keyid:6D:00:51:98:B7:45:72:A1:56:AB:63:F2:30:85:89:7B:D3:CC:D4:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:81:06:ac:97:36:0f:35:6e:e7:fd:49:a1:c5:26:17:7d:e6:
bf:07:23:c0:28:fc:8a:be:57:14:ce:d1:6f:48:f9:a8:82:51:
79:3c:be:3a:e7:d8:2e:40:5e:e5:4b:7d:44:a3:99:f6:39:82:
ae:b4:25:7d:81:dd:6b:0d:94:67:a5:05:d2:ef:8b:c9:74:6a:
23:58:03:ad:90:a2:ed:83:9a:3a:23:74:26:92:5b:18:50:f3:
92:e5:6a:17:31:a7:28:52:71:9b:1d:63:28:e1:e9:8e:74:c5:
c4:15:d3:96:ef:d6:a4:42:57:cf:f1:28:6d:76:59:a8:4d:2f:
57:cb:82:67:2d:36:f1:be:18:ad:2c:57:ef:63:36:dd:4c:00:
0f:01:00:56:a9:37:2a:c0:2e:9a:cb:79:6f:6a:36:9d:e3:e5:
f3:b8:50:36:5e:33:7d:19:be:ae:9d:1e:c8:e7:89:87:9d:cc:
51:42:83:ba:0f:bb:0b:12:b6:ef:8c:c7:f5:f9:09:20:fa:44:
70:a8:cb:e8:a9:d0:c9:67:8a:b0:6d:e0:91:a8:a9:d1:37:08:
2e:0c:b9:4b:7c:4b:d6:4b:a5:d7:a6:c5:0d:7b:1f:82:f2:21:
f6:fb:e2:c2:a6:cf:f0:dd:77:46:fa:99:22:aa:af:69:ed:69:
a9:56:36:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:41:34 2025 by rpki-client