Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
File: bfHIcky70DS6t6Da3wq0uZ_2b_8.mft (raw, json)
Hash identifier: 24L78Z3+Y1hGrTu7uwCaWEw6aX6DUhk2F4/gS8jyTxc=
Subject key identifier: 48:52:FC:65:09:A4:FF:86:6D:45:22:EB:8A:24:2B:CA:AC:47:0E:3C
Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Certificate serial: 0198D5BBAC21E1E5B06FA218CE8AC32CF4BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 07:01:42 +0000
Manifest this update: Sat 23 Aug 2025 07:01:42 +0000
Manifest next update: Sun 24 Aug 2025 07:01:42 +0000
Files and hashes: 1: 3gASlQlN9UdPtrWqrdLITdzt5Ew.roa (hash: ramhN8+V67WDz+dJge66wgSFRzcM7UnMyKgsybDZiQA=)
2: bfHIcky70DS6t6Da3wq0uZ_2b_8.crl (hash: SSDHoNvSlIQPd3+wOdbjfWJzB2vSPqdIpMT+A0gEX80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:ac:21:e1:e5:b0:6f:a2:18:ce:8a:c3:2c:f4:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Validity
Not Before: Aug 23 07:01:42 2025 GMT
Not After : Aug 24 07:01:42 2025 GMT
Subject: CN=4852fc6509a4ff866d4522eb8a242bcaac470e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2b:e8:df:01:ac:a8:b6:4e:9a:f0:76:8f:d4:
f1:56:09:e9:de:b6:29:c2:b9:37:1c:51:f5:1f:4e:
2c:52:37:da:31:70:40:e2:be:74:5e:e2:05:d6:83:
c7:18:11:fc:9e:95:83:ba:55:bb:fc:79:b8:08:fd:
d9:27:e5:5a:d6:54:c3:68:89:c1:fe:af:34:74:a2:
10:8c:ff:19:ae:cc:a1:39:74:6c:1e:f0:dc:2c:30:
1e:11:df:e3:3d:04:52:2e:94:d7:91:e1:10:b4:4c:
b0:99:7f:45:b0:e4:37:19:5b:4e:2f:92:e1:d8:7f:
18:0e:70:02:ff:f2:88:a0:44:b6:b8:db:5d:92:fd:
4a:b1:5f:95:f9:af:95:2d:9e:5d:6f:42:4b:90:38:
a8:ed:46:53:9f:e5:62:90:c9:cd:46:7f:1b:5b:26:
cb:7e:9b:7f:ad:7c:9d:d0:9d:bf:5a:0d:80:30:ef:
f9:8d:7f:17:8c:5e:87:31:b4:82:76:28:57:7f:63:
c3:06:00:55:6f:c8:b3:70:55:33:1c:1c:c2:98:14:
7d:42:a1:66:db:9d:c0:86:d9:d5:ba:eb:24:6d:a1:
db:4d:b7:14:18:82:44:35:26:f6:4e:5a:d1:d6:81:
0a:2c:60:11:05:49:47:2c:51:cd:59:44:e1:89:98:
13:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:52:FC:65:09:A4:FF:86:6D:45:22:EB:8A:24:2B:CA:AC:47:0E:3C
X509v3 Authority Key Identifier:
keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:4f:05:40:ef:db:da:b1:b9:4f:88:c2:34:98:73:7b:df:71:
f9:cf:22:69:21:79:61:a7:fa:3b:78:be:20:7c:06:bd:19:64:
88:db:52:13:97:2b:f0:98:a3:01:c3:7e:13:53:81:89:72:11:
da:cb:b2:da:8c:84:8b:0f:2f:63:70:52:7a:65:f3:32:63:49:
50:f0:7a:86:85:be:64:2c:b7:38:a0:19:58:3f:9d:33:da:5e:
b8:14:de:7a:61:df:28:0d:20:aa:2d:e9:3b:cf:41:de:8a:64:
29:c3:01:98:df:a2:8b:3b:7b:ea:94:e6:83:e9:a9:4c:c0:95:
00:5e:4a:a4:c0:0b:c1:a9:f2:5f:cf:23:ec:a7:72:cd:bc:d2:
33:9f:34:72:64:12:6c:17:cb:99:52:ec:e8:7a:f9:f9:94:fb:
ee:01:85:de:10:b0:99:e5:aa:6b:48:e3:b2:92:f4:7a:13:4d:
49:b5:92:d3:d9:0a:e4:65:da:b6:f6:7f:5e:91:a4:0e:18:c2:
97:58:a5:d1:ec:80:3c:85:45:73:c9:10:59:5d:82:b1:88:67:
de:ee:37:7d:be:bc:78:44:16:c1:2d:44:ea:11:ff:e9:1f:d1:
08:6a:6e:d2:6b:02:dc:54:48:56:f7:78:3f:9d:2e:59:e6:7a:
a2:ed:58:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:40:50 2025 by rpki-client