Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft
File: bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft (raw, json)
Hash identifier: i1kgtzZdO6oZE3bOQ4FvhWb4V5lFlprcFR1KQg0DI6M=
Subject key identifier: 64:BD:EF:DD:69:A8:5F:01:77:01:07:94:01:B6:8A:D4:57:E2:F4:8B
Authority key identifier: 6D:8E:0E:7E:86:77:5B:41:5D:3D:57:80:CE:4C:FE:C0:C8:59:18:9C
Certificate issuer: /CN=6d8e0e7e86775b415d3d5780ce4cfec0c859189c
Certificate serial: 0198D7A92E64DA9FC153A21A9A6C383C0165
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft
Manifest number: 13D9
Signing time: Sat 23 Aug 2025 16:00:45 +0000
Manifest this update: Sat 23 Aug 2025 16:00:45 +0000
Manifest next update: Sun 24 Aug 2025 16:00:45 +0000
Files and hashes: 1: bY4OfoZ3W0FdPVeAzkz-wMhZGJw.crl (hash: m2mIr7u3FGeeqcl0HjM0jOJfYohottNxekyL2MsGoIw=)
2: qgSgsUNmjGc3XOuValdIkwwl07g.roa (hash: K6iu6N/DtzSRuE8h4cXXnk/shnPgBX6kLrlWrpVPx3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft
rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a9:2e:64:da:9f:c1:53:a2:1a:9a:6c:38:3c:01:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d8e0e7e86775b415d3d5780ce4cfec0c859189c
Validity
Not Before: Aug 23 16:00:45 2025 GMT
Not After : Aug 24 16:00:45 2025 GMT
Subject: CN=64bdefdd69a85f017701079401b68ad457e2f48b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:40:1d:78:22:d3:92:f5:87:c2:d0:5f:99:41:
99:0d:75:d3:3f:f7:95:fd:04:10:38:67:5e:bb:1a:
c9:96:f8:de:1b:51:1e:ce:35:c3:ed:45:b8:4d:0f:
69:7c:63:f2:25:8a:78:4c:c1:15:c0:31:63:ca:9b:
28:08:de:96:f2:e2:47:9d:79:0c:28:c6:1d:f4:80:
ed:75:71:a3:63:07:fc:56:74:37:7b:03:21:a6:ad:
5a:4e:ee:fe:a8:f4:ff:cc:a4:5c:46:80:d5:75:26:
3b:6f:85:64:9c:bc:bd:ef:db:2d:aa:0d:ff:df:7e:
fd:db:2b:8a:6f:91:e7:41:e6:29:17:6c:e0:e5:07:
a7:c7:14:c2:88:a1:54:1f:60:14:32:56:22:cd:fa:
a1:52:fa:42:34:d8:fb:fc:43:d5:46:f8:63:07:bc:
6f:8c:12:0b:1a:f9:d4:2b:d3:c2:b1:47:f9:29:ed:
5b:b9:c6:bf:c4:0e:f3:87:87:e3:a5:e4:df:89:ed:
b2:73:60:e5:d9:9a:03:1a:7f:9a:f2:23:7a:0d:41:
df:b2:3f:d6:67:a8:30:c0:77:f1:e7:82:04:27:97:
27:a7:b9:e6:83:4d:27:8a:1d:a6:06:f8:14:d6:93:
09:24:5d:d0:79:fb:f2:e5:2a:94:60:fa:58:41:b9:
5a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:BD:EF:DD:69:A8:5F:01:77:01:07:94:01:B6:8A:D4:57:E2:F4:8B
X509v3 Authority Key Identifier:
keyid:6D:8E:0E:7E:86:77:5B:41:5D:3D:57:80:CE:4C:FE:C0:C8:59:18:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:33:12:12:f9:b7:9a:e6:a1:6d:ca:54:58:5b:7a:ed:58:ae:
28:7a:a5:b8:55:d4:17:e4:99:ec:68:54:53:ce:2c:2e:f0:e3:
84:5c:02:61:06:5d:e4:e3:d5:76:ce:7a:b5:b7:e8:b3:72:65:
90:22:85:3a:34:b6:35:e2:14:c8:9f:d8:7f:c4:18:d1:1a:aa:
45:f7:b1:66:0d:86:35:1e:5c:a7:ca:23:87:d0:be:fc:53:55:
18:35:cf:8b:a6:3b:77:f5:24:ee:11:25:df:60:8b:ba:48:6f:
f2:a3:17:f8:2b:47:a6:36:24:12:e8:98:b2:de:d7:e7:67:ee:
20:61:97:63:2f:19:29:85:c2:15:0b:eb:4c:d0:b6:9b:9d:19:
43:02:65:b4:71:28:c9:7d:49:76:20:4f:46:4b:1a:b0:e6:df:
54:fc:41:fd:7d:11:25:23:9c:7a:ee:24:12:2b:a1:8d:6d:a1:
3d:7a:5c:0b:fa:97:fb:89:e1:c4:33:2c:70:3f:0a:dc:2e:0d:
71:57:d2:a3:c8:1c:68:00:4b:f2:45:5b:7d:e1:8e:91:90:6c:
4e:03:09:69:47:25:cd:58:80:7a:b0:a1:2a:ce:88:df:28:6d:
b4:8a:8b:d7:31:4b:8d:cd:8a:18:4a:18:66:59:9b:3a:52:07:
7a:84:bb:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:13:36 2025 by rpki-client