Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
File: bfhqH1cK4xUpAiqk9h79nsK5fQU.mft (raw, json)
Hash identifier: vMVEpzK/jNKMrlCsJrOf1coHcSwusT9TCPP0FiAZ4yk=
Subject key identifier: 53:39:44:64:DE:B3:59:8D:ED:4C:FF:AD:70:9E:D2:10:09:3D:F1:A9
Authority key identifier: 6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
Certificate issuer: /CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Certificate serial: 0198D84F396CEAD7249B2C0BA7A0EEFBC731
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
Manifest number: 14C6
Signing time: Sat 23 Aug 2025 19:02:07 +0000
Manifest this update: Sat 23 Aug 2025 19:02:07 +0000
Manifest next update: Sun 24 Aug 2025 19:02:07 +0000
Files and hashes: 1: BpLbGApyHXLB4qqgJyw3nGH9lH0.roa (hash: 4AoUx/2M994KEwtEdAKInOt11G1446xmTonI1qJPrOg=)
2: bfhqH1cK4xUpAiqk9h79nsK5fQU.crl (hash: +uo8JpQExnV18L1QLroJBVoZ5yRlkDNiyWZ5xblJJyY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 17:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:4f:39:6c:ea:d7:24:9b:2c:0b:a7:a0:ee:fb:c7:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Validity
Not Before: Aug 23 19:02:07 2025 GMT
Not After : Aug 24 19:02:07 2025 GMT
Subject: CN=53394464deb3598ded4cffad709ed210093df1a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1a:76:e3:d1:4a:ff:31:82:91:94:e0:fc:3f:
1e:29:b3:90:a9:86:59:95:ad:db:a9:29:c1:c8:f1:
db:8d:b3:bc:eb:db:c3:10:89:12:45:0e:2a:9a:cc:
22:b6:7a:63:e8:2d:a4:ee:7b:2f:e5:b7:71:24:d1:
ab:12:38:f0:18:30:2e:3a:d9:cb:bf:fd:8d:0e:7f:
bf:5a:55:cd:0a:2c:2d:f9:f9:ac:b9:bc:e5:7c:cb:
f5:58:22:08:5e:50:35:43:b8:8a:b2:56:0f:63:89:
24:4a:1c:2c:c4:70:fd:ef:f2:ae:b1:d7:a0:ae:a0:
24:2d:ec:f8:7f:90:b5:ee:f2:1b:65:fb:da:3a:22:
45:ec:b1:b6:ad:86:a1:de:aa:d0:29:e0:2f:c2:be:
30:ae:41:39:f7:9f:7f:6a:b5:f7:0c:a5:d5:0a:38:
72:f8:34:6d:21:31:98:d6:56:d7:c8:82:3c:b0:e0:
b5:81:2b:6f:07:cc:6d:d4:cc:7e:9d:86:c0:73:4f:
e9:85:a3:f6:bc:b0:db:e2:e4:5c:3e:1c:14:6e:0f:
0e:24:1a:64:ab:dd:7d:ca:8d:23:a5:08:f0:2f:ac:
87:6e:e7:f1:40:3c:b6:fc:0f:0c:43:2d:49:30:d9:
29:a5:26:ae:71:03:b9:df:26:89:45:f9:15:b3:e4:
0e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:39:44:64:DE:B3:59:8D:ED:4C:FF:AD:70:9E:D2:10:09:3D:F1:A9
X509v3 Authority Key Identifier:
keyid:6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:b7:bf:62:8c:df:93:2a:bb:97:68:e3:0e:de:35:1a:8e:15:
df:7b:90:b7:a9:45:2d:0d:a1:00:55:35:08:2e:d1:60:19:b0:
cf:a6:b5:52:9b:6e:cd:da:c4:a7:3c:6f:6b:7e:9c:6f:66:bf:
b8:61:33:79:07:36:fb:da:99:8f:7a:78:d5:ef:26:45:90:9d:
ea:b0:d3:40:9c:bf:9a:bd:e0:88:58:d6:27:2b:32:ef:49:75:
56:7c:7c:22:cc:62:a2:b9:94:7b:ff:aa:1f:57:3c:6c:8c:36:
1c:35:b2:ab:0f:c8:a8:e1:21:d7:a7:34:ac:58:2e:02:20:87:
2e:1b:80:d1:80:8a:a1:9e:f4:62:1c:01:b3:63:7a:13:03:2c:
a1:02:61:4a:5d:ce:36:c5:1a:39:48:cd:29:cc:01:ff:b8:8c:
ca:fb:6c:7b:86:b2:72:32:7d:83:32:e8:16:aa:96:68:18:e0:
62:86:e0:6d:0f:ac:54:9f:62:40:c4:08:b0:7d:a6:91:bb:5f:
01:5a:f4:88:33:c5:f1:2a:a0:0f:52:0c:37:bb:20:bb:72:f6:
10:ce:12:8c:32:da:b4:f0:19:68:36:af:08:65:52:91:59:8c:
43:47:1d:bd:15:03:42:6c:9e:bd:f1:83:c1:92:02:01:55:fc:
23:a3:72:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 03:11:22 2025 by rpki-client