Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
File: bZYBl_5YkhTCJZ9q6olsThAH6YY.mft (raw, json)
Hash identifier: jiwmRjR1A7VuusST3fsPTLv4lbIxzyjfs6r7eeje1Uk=
Subject key identifier: AC:BF:6C:A5:C4:A8:04:6B:7C:2F:18:6F:2C:0E:38:3C:12:D0:1D:77
Authority key identifier: 6D:96:01:97:FE:58:92:14:C2:25:9F:6A:EA:89:6C:4E:10:07:E9:86
Certificate issuer: /CN=6d960197fe589214c2259f6aea896c4e1007e986
Certificate serial: 0198D4744D4A1F7559246C5E0FEEEE0576D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
Manifest number: 08E6
Signing time: Sat 23 Aug 2025 01:04:08 +0000
Manifest this update: Sat 23 Aug 2025 01:04:08 +0000
Manifest next update: Sun 24 Aug 2025 01:04:08 +0000
Files and hashes: 1: bZYBl_5YkhTCJZ9q6olsThAH6YY.crl (hash: YUdwf9S/sSuxY7M8x6vR8nRxeg73RaIP0x9MBPbx7GM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:04:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:4d:4a:1f:75:59:24:6c:5e:0f:ee:ee:05:76:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d960197fe589214c2259f6aea896c4e1007e986
Validity
Not Before: Aug 23 01:04:08 2025 GMT
Not After : Aug 24 01:04:08 2025 GMT
Subject: CN=acbf6ca5c4a8046b7c2f186f2c0e383c12d01d77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:23:6d:ab:6b:0c:e2:0a:7c:2c:f6:74:f7:a6:
44:48:e9:29:14:e6:2f:fa:13:4f:e8:98:56:94:b3:
9d:9a:e7:dc:ad:19:90:29:10:3a:ba:b2:f2:88:cb:
4a:bc:25:68:8e:a4:53:1e:50:4b:e3:de:58:e0:08:
89:21:eb:00:59:0c:56:f6:f0:48:a0:27:c2:10:81:
2c:b9:bb:a0:8e:1e:3f:43:58:74:63:6e:d4:aa:43:
dd:36:ac:2b:08:6f:66:10:72:f3:50:fc:4d:77:37:
b8:23:66:c9:ef:ac:4e:e3:5d:62:c4:b8:2d:11:38:
06:f3:99:e4:8d:96:1d:94:6f:f6:12:e7:2d:ff:83:
59:2d:ae:8d:20:ed:4e:7b:c3:5b:af:be:71:4d:af:
45:d4:c9:c7:5b:61:ef:42:00:75:64:34:79:11:0f:
06:88:79:e0:af:48:6b:58:85:98:19:0f:6c:21:df:
cc:78:cc:90:2f:8b:20:51:9a:99:af:a6:88:8e:cc:
6d:07:9a:61:11:5c:8d:df:b4:ec:64:68:7f:ae:f0:
a4:f8:70:39:aa:b6:d9:c4:77:3f:3e:5a:3b:31:03:
0d:46:d5:4d:4f:90:58:1e:e2:7d:40:e8:3d:2f:dd:
99:0b:7c:c7:2d:73:62:25:df:25:c6:2f:f3:e2:0d:
5b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:BF:6C:A5:C4:A8:04:6B:7C:2F:18:6F:2C:0E:38:3C:12:D0:1D:77
X509v3 Authority Key Identifier:
keyid:6D:96:01:97:FE:58:92:14:C2:25:9F:6A:EA:89:6C:4E:10:07:E9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:bb:a4:4f:20:bd:cf:a3:97:f5:bd:9e:ab:1f:4e:9b:79:bf:
5f:08:99:a6:2a:e8:6e:28:9d:98:8f:e3:b3:0c:5b:68:c8:51:
56:f8:bd:c3:57:09:d6:a3:ef:19:23:83:4b:d0:92:48:8b:49:
46:b1:3a:27:44:3e:83:fb:65:c6:78:59:f3:a8:ef:59:d9:84:
64:c1:ea:7c:81:d9:e5:86:d1:e8:c9:c0:fc:0b:ed:26:f0:f6:
19:ae:54:b8:54:a1:30:34:60:c9:90:bf:af:ce:da:5c:68:df:
9a:76:70:3d:15:7d:07:2a:90:33:c4:80:6e:b4:fb:d8:2a:a6:
e1:af:d9:13:45:fc:66:35:dc:ef:36:73:1a:69:f4:37:05:a1:
30:eb:8e:a8:e5:54:60:19:03:6d:70:61:2f:db:4c:d5:3d:2c:
73:a3:b1:64:b2:f0:94:7a:55:66:eb:57:8f:18:ba:d4:7d:44:
fd:86:6c:76:8b:79:50:38:bd:e5:6c:22:54:d1:53:e3:81:fd:
ce:d4:27:13:1e:80:f5:9b:62:73:48:8a:ca:7c:ee:29:16:c3:
a9:aa:67:37:68:bb:de:92:c0:7e:0d:01:ff:fc:df:0f:87:d3:
65:57:08:41:01:45:eb:66:4f:3b:e0:a0:8a:ae:e7:21:61:6d:
e8:12:85:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:44:26 2025 by rpki-client