Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
File: bfHIcky70DS6t6Da3wq0uZ_2b_8.mft (raw, json)
Hash identifier: byisoC8aM/ThGBit5AXX/ZRqAVre2me05Q7YJ7U1SwU=
Subject key identifier: 3E:1C:09:4F:21:62:E2:15:3D:0B:CE:DD:35:B5:9F:21:53:11:D0:2C
Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Certificate serial: 0197B7EACA9DAB54538642C9BA17AC1F357B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 19:01:47 +0000
Manifest this update: Sat 28 Jun 2025 19:01:47 +0000
Manifest next update: Sun 29 Jun 2025 19:01:47 +0000
Files and hashes: 1: 3gASlQlN9UdPtrWqrdLITdzt5Ew.roa (hash: ramhN8+V67WDz+dJge66wgSFRzcM7UnMyKgsybDZiQA=)
2: bfHIcky70DS6t6Da3wq0uZ_2b_8.crl (hash: CONhn38pwiHKMTIlqU/BcPotXZZV3XdOYn7HFluZSks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:ca:9d:ab:54:53:86:42:c9:ba:17:ac:1f:35:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Validity
Not Before: Jun 28 19:01:47 2025 GMT
Not After : Jun 29 19:01:47 2025 GMT
Subject: CN=3e1c094f2162e2153d0bcedd35b59f215311d02c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:ff:3b:3d:7a:9b:53:a8:cb:ee:ed:ad:bc:5b:
6b:54:f4:5c:1e:c1:2f:8e:ed:08:98:e4:78:8a:5a:
6f:b6:27:9b:11:33:de:83:16:9a:a4:1d:84:9f:18:
e1:a3:d0:63:6c:ea:ba:ec:07:16:1e:e5:60:18:b9:
8e:9a:9d:ce:1d:66:8a:04:c4:f1:60:3b:60:99:f9:
db:bc:9d:a1:26:8f:af:34:48:bb:9b:bc:12:ed:ed:
6f:6b:fa:50:e3:c4:e5:6e:50:e1:b9:02:a3:38:30:
9c:05:46:6a:00:73:b5:3a:27:7a:c1:37:d2:02:6f:
04:bf:ff:d7:d0:3a:25:7a:9d:6c:d5:01:58:cb:fc:
03:e1:ec:46:24:ea:3d:20:62:7f:76:2d:d9:08:b0:
ac:19:55:01:32:3f:57:ab:b5:77:41:f7:fd:c3:0e:
44:19:38:fe:e0:08:26:9c:18:1d:9f:c7:39:23:18:
de:7b:a1:7d:58:9e:46:b3:2b:34:2a:1f:ec:9e:03:
c5:4c:e8:e0:f7:fe:4a:f4:20:9b:75:7e:17:a5:18:
68:d6:be:98:d6:a1:a1:6a:0d:95:3f:1a:e8:a6:62:
d4:8b:8c:dd:6f:24:b4:77:80:85:8d:ec:61:82:08:
19:98:38:a5:c2:a5:b5:be:d5:29:91:15:21:9d:bb:
d7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:1C:09:4F:21:62:E2:15:3D:0B:CE:DD:35:B5:9F:21:53:11:D0:2C
X509v3 Authority Key Identifier:
keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:fd:5c:01:b3:98:75:56:5a:e0:e9:66:14:3f:3c:3f:60:c3:
ab:a4:35:01:fa:de:63:81:25:7e:1e:b3:1c:aa:2d:7a:7a:e7:
dc:9c:96:26:1e:07:3d:db:e9:36:fb:57:64:85:fd:0e:76:ce:
4e:35:18:75:f1:78:c2:e5:8e:4b:8e:ef:5b:1d:95:0c:c7:32:
aa:ee:15:c1:dd:65:28:ac:95:93:ab:d3:fb:23:65:dd:e5:b3:
50:dc:78:21:60:4b:07:e0:91:95:03:8b:2d:18:4c:cd:4d:d3:
33:8e:7d:d1:4e:3f:cd:4d:80:4b:5c:f5:86:92:d9:94:a6:e5:
2a:2a:ea:bf:43:2b:c7:0b:77:46:4a:0d:ae:55:15:27:c3:d2:
e1:d2:b6:47:69:4c:df:02:67:db:73:22:2c:8a:ac:5c:75:14:
29:32:43:57:62:ed:83:45:0a:9a:11:6a:56:f5:fb:52:9e:db:
88:2e:a9:41:77:b2:5a:b8:0c:28:98:bb:05:44:fa:e6:b9:a5:
68:86:bd:19:36:ef:3f:1e:b0:cd:1c:78:91:94:b5:46:11:92:
ee:78:cf:79:3e:d9:18:98:c6:51:ad:5a:8f:65:f4:51:08:3f:
93:f3:0c:14:d2:00:fd:7b:1b:71:1e:41:64:72:46:f0:5e:67:
7b:dc:7e:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:29:48 2025 by rpki-client