Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.mft
File: bUmIt5OIS3moT-NFY9A581RsGF8.mft (raw, json)
Hash identifier: 4tuWGVKCMB/27J9LRnEia3knhHQIVHLF2wBnWYgpHSw=
Subject key identifier: FE:6A:FD:62:CD:4F:89:93:D7:90:0F:B4:88:E7:95:FA:61:28:07:43
Authority key identifier: 6D:49:88:B7:93:88:4B:79:A8:4F:E3:45:63:D0:39:F3:54:6C:18:5F
Certificate issuer: /CN=6d4988b793884b79a84fe34563d039f3546c185f
Certificate serial: 0198D6984EA6ED1072666F851568C62498E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bUmIt5OIS3moT-NFY9A581RsGF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.mft
Manifest number: 0D
Signing time: Sat 23 Aug 2025 11:02:42 +0000
Manifest this update: Sat 23 Aug 2025 11:02:42 +0000
Manifest next update: Sun 24 Aug 2025 11:02:42 +0000
Files and hashes: 1: PbKFQNF-KRL6ofwi4j3Bg5k5waE.roa (hash: YTTgn2RJvO9vy8iO3c6Slj7449QcwGlGTqJtOMaavFU=)
2: bUmIt5OIS3moT-NFY9A581RsGF8.crl (hash: GA3IHZYar3eOe/INcFN76+cboGByk/OIywEuJQpgg4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bUmIt5OIS3moT-NFY9A581RsGF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:4e:a6:ed:10:72:66:6f:85:15:68:c6:24:98:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d4988b793884b79a84fe34563d039f3546c185f
Validity
Not Before: Aug 23 11:02:42 2025 GMT
Not After : Aug 24 11:02:42 2025 GMT
Subject: CN=fe6afd62cd4f8993d7900fb488e795fa61280743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d1:05:db:b7:34:90:cb:13:df:f0:6d:6f:b9:
d8:8e:a4:f4:be:18:71:41:31:40:a1:98:68:3d:41:
6d:e7:13:ba:d9:c3:6e:04:59:25:e1:2b:e4:99:b6:
30:9a:70:57:b7:71:aa:73:06:3a:98:fb:59:d2:27:
de:3f:92:76:32:74:26:49:4d:eb:b2:33:dd:00:e7:
5f:0a:d6:de:b5:c9:1f:95:74:54:3b:75:81:7b:56:
13:04:c8:6c:d5:a2:95:f0:19:2c:eb:10:1f:42:3e:
b3:5d:cf:9a:ef:dd:30:c2:d3:a9:ee:99:c5:0c:e2:
51:3f:5a:fa:20:53:64:87:f3:62:78:e1:8e:9c:5d:
02:c6:bb:e9:15:52:2e:20:2d:fc:81:35:cd:2a:6c:
98:03:8e:05:13:97:e5:f6:04:75:36:48:68:64:fa:
6c:f7:f5:92:80:da:14:1c:62:71:3b:7e:96:23:11:
a0:04:0f:b9:34:8c:9f:e9:6c:ef:a9:e9:6c:00:24:
c5:6c:75:17:7b:c9:8c:28:1d:c4:93:6e:a2:71:b6:
bd:d0:de:dd:d7:0f:bb:70:6c:da:a6:8b:d0:ec:77:
c6:25:a1:33:be:f5:22:1c:2b:bb:40:5c:c5:bf:89:
3e:48:1d:8f:95:a7:b7:76:31:99:53:27:40:f4:65:
2c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:6A:FD:62:CD:4F:89:93:D7:90:0F:B4:88:E7:95:FA:61:28:07:43
X509v3 Authority Key Identifier:
keyid:6D:49:88:B7:93:88:4B:79:A8:4F:E3:45:63:D0:39:F3:54:6C:18:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bUmIt5OIS3moT-NFY9A581RsGF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:18:31:19:88:6a:1a:f1:88:08:8c:29:a2:d1:ea:ae:f3:ee:
8e:73:96:62:fe:5a:1a:43:3a:5c:dd:79:ed:64:88:f3:a4:82:
1d:b4:e3:af:7d:f1:d6:a1:04:c2:9f:34:cc:a9:e8:05:d3:e9:
b0:3e:f8:15:0e:3a:44:05:24:fb:79:9e:c5:58:18:8d:c4:c0:
01:0c:ff:35:83:d2:2f:a3:bf:88:41:c2:55:ef:8f:cb:9e:2e:
b7:51:39:71:fa:a5:93:3d:5d:b0:41:a6:70:06:a4:c7:0d:ab:
57:6a:56:9b:a1:e9:95:7b:eb:d5:e8:ea:0a:d3:52:10:11:d3:
7c:8d:79:e3:5c:be:bb:ff:22:65:37:a9:35:33:7c:b0:c3:08:
84:81:b3:08:74:e0:18:5d:3c:d6:98:91:7b:a3:fa:51:c6:df:
c6:f4:6a:44:b2:d6:ee:f1:ef:2f:dc:91:61:c8:11:09:dc:d9:
1d:dd:f9:6a:95:c0:24:b5:26:27:e5:35:7a:94:ed:8d:99:1f:
b9:59:7b:33:4e:25:f8:e0:11:0d:09:ad:4c:47:67:d1:4d:b7:
c3:c6:03:5d:9f:cd:ff:58:aa:5a:bc:38:53:8e:95:c4:41:90:
16:13:3b:15:4b:d5:ae:2c:74:86:f6:b0:35:3c:7d:e2:49:bd:
52:b8:3e:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:40:41 2025 by rpki-client