Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
File: geTmB1l46pR2tkHOAIx4erKOXRM.mft (raw, json)
Hash identifier: vcsIWimKAH17SkA/7Xeapge7PVskRi3erI9mp3BoGsw=
Subject key identifier: BF:BE:ED:32:FD:8B:8D:90:20:8C:44:0E:79:AC:FE:6B:F5:52:59:39
Authority key identifier: 81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
Certificate issuer: /CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Certificate serial: 0197CC84077CFBD27C9F333FF02EA65580B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
Manifest number: 15BF
Signing time: Wed 02 Jul 2025 19:01:34 +0000
Manifest this update: Wed 02 Jul 2025 19:01:34 +0000
Manifest next update: Thu 03 Jul 2025 19:01:34 +0000
Files and hashes: 1: dBbI1Z81Mloa7W2OzhoKXchOrRQ.roa (hash: cFMz5yq3xJCpOCH1TXFzmCMMTxw6N/8cLdoB9ZDvza0=)
2: geTmB1l46pR2tkHOAIx4erKOXRM.crl (hash: 33PMGPQm3PWy3qbqddBF8LU/EZK7NvDJlRS35SR3Ed8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 19:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:84:07:7c:fb:d2:7c:9f:33:3f:f0:2e:a6:55:80:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Validity
Not Before: Jul 2 19:01:34 2025 GMT
Not After : Jul 3 19:01:34 2025 GMT
Subject: CN=bfbeed32fd8b8d90208c440e79acfe6bf5525939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:04:81:8c:c9:a7:79:26:79:7b:b4:bd:6b:01:
9f:b9:54:d5:09:a7:66:5d:d0:7a:10:0a:37:3a:34:
07:00:97:0c:58:14:9d:ef:e3:4b:8e:97:00:6f:6e:
18:4f:05:8e:ec:ae:db:bc:1f:98:60:42:b8:b7:c9:
0d:82:8e:ce:b4:bb:4e:33:10:28:3e:16:13:cf:4b:
65:11:55:c0:a2:4c:c1:da:9c:95:69:3a:47:e4:89:
3c:0f:f4:33:50:a0:e6:d8:f0:65:3c:88:22:1f:89:
df:e1:ae:82:7c:9b:9b:d6:7c:6e:34:99:2b:d3:d1:
ba:de:b4:e1:1c:69:17:d3:d9:66:99:33:20:67:db:
0c:bc:b5:93:ab:40:c5:d5:02:27:ba:f1:85:b7:cc:
0f:ef:ab:fe:e7:af:3f:92:a3:4b:9f:f5:a4:ec:c6:
97:16:71:68:a9:63:ac:cc:ba:36:12:11:48:a2:2d:
38:52:3e:13:87:b7:6a:26:15:6b:5c:31:99:68:39:
c0:1a:9d:14:c2:cb:57:c4:80:e4:dd:de:d9:ab:c9:
c8:92:84:fa:ea:ea:80:fc:2c:ad:cb:d7:88:51:b4:
c8:9c:5f:5b:71:44:4a:3f:94:42:73:2d:cf:d8:b9:
4f:69:b7:ef:e0:4e:20:9f:bb:8b:2a:0e:a7:43:ee:
08:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:BE:ED:32:FD:8B:8D:90:20:8C:44:0E:79:AC:FE:6B:F5:52:59:39
X509v3 Authority Key Identifier:
keyid:81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:3d:98:d3:aa:a2:56:72:02:95:23:89:66:ae:a0:6f:e2:da:
1e:8a:62:4d:7b:48:0c:35:fe:26:ef:0e:9a:14:54:4e:fd:ee:
61:63:71:f0:4e:60:f2:08:6a:67:d7:d8:a6:eb:bb:b0:5f:0b:
b3:70:1c:ee:2e:95:f4:59:66:ae:b6:4d:23:a4:01:1f:31:a6:
f8:37:0d:70:62:44:dd:63:f1:cd:54:00:b1:18:5b:5d:75:7c:
26:d1:cf:68:b7:9f:23:22:50:4f:9a:b8:12:24:9e:24:4a:82:
5b:1b:3d:2d:64:1a:4e:ba:7a:bc:68:0d:41:68:27:4b:79:c1:
82:d7:89:1c:a1:15:c8:a3:82:83:bd:3a:2a:6b:2c:7c:76:ff:
24:4e:d6:94:53:5d:7c:fe:65:58:62:b6:2e:80:a4:9b:cb:f2:
c6:28:63:bb:4f:b6:99:65:a1:9a:78:a7:4a:ff:a3:0d:65:e7:
89:62:8b:13:0e:fd:86:12:6c:8d:c0:3d:50:93:85:99:4f:6c:
76:49:65:27:c7:58:4e:d4:03:4c:57:8a:88:28:d5:43:3c:2b:
8c:d7:5a:a6:59:12:e1:57:2f:65:ff:c5:81:f7:9c:de:e5:fa:
d5:f4:29:55:d6:62:d8:fa:e6:3a:47:71:6c:db:8c:cc:54:d6:
7b:75:7d:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 23:00:12 2025 by rpki-client