Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
File: BPD3XK7T8miFrGVjD_qu53pw69k.mft (raw, json)
Hash identifier: 2UmHpQqIUAZzSpGUP0pjlYiWWW2aAGgT1IqzOLU6IEE=
Subject key identifier: 41:84:E2:3F:5C:8B:8F:39:F1:60:6D:78:02:EB:28:AF:14:36:5A:D5
Authority key identifier: 04:F0:F7:5C:AE:D3:F2:68:85:AC:65:63:0F:FA:AE:E7:7A:70:EB:D9
Certificate issuer: /CN=04f0f75caed3f26885ac65630ffaaee77a70ebd9
Certificate serial: 0198D7E176ED2AF6805DB912B1F00E44F863
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
Manifest number: 13EA
Signing time: Sat 23 Aug 2025 17:02:14 +0000
Manifest this update: Sat 23 Aug 2025 17:02:14 +0000
Manifest next update: Sun 24 Aug 2025 17:02:14 +0000
Files and hashes: 1: BPD3XK7T8miFrGVjD_qu53pw69k.crl (hash: hIV4paCGJbaZHPj4sKGtguyin9fX537Xcq1zm4pIg1U=)
2: ilRpOqqhCRrukRL5kvILbezdwjw.roa (hash: 09XWT+P0AZf+EnMM2PlCmZMY0UVdVh5S35frUm5Llew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:e1:76:ed:2a:f6:80:5d:b9:12:b1:f0:0e:44:f8:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04f0f75caed3f26885ac65630ffaaee77a70ebd9
Validity
Not Before: Aug 23 17:02:14 2025 GMT
Not After : Aug 24 17:02:14 2025 GMT
Subject: CN=4184e23f5c8b8f39f1606d7802eb28af14365ad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e5:22:c1:eb:0b:3f:19:ee:56:80:50:ae:c3:
cb:07:75:d5:c7:71:67:5f:62:67:ed:25:58:93:68:
f9:ca:3d:3f:b5:bf:51:a1:40:79:96:30:3d:4b:f9:
41:05:54:3d:5d:c6:69:46:4a:79:19:4b:a6:b3:2b:
68:c7:40:3c:96:31:1f:31:70:a1:a3:72:98:45:4b:
e9:58:12:14:6b:41:60:4d:8a:03:07:ce:32:57:eb:
19:e4:50:6e:42:66:02:f7:69:ca:59:a2:30:5d:1d:
4c:f0:84:35:04:66:5c:82:27:55:d9:ac:b0:b0:57:
99:14:e7:1e:aa:ae:92:53:81:bb:f8:58:8e:03:16:
35:45:84:0a:69:09:d2:84:9b:54:2f:75:80:08:aa:
ee:36:c0:9a:7d:88:01:6d:42:1a:91:0f:5a:9f:e9:
49:b2:ae:ba:d1:f9:95:5d:4e:a1:0b:7c:f3:98:73:
d6:e8:36:44:c6:d2:a5:e1:06:70:34:55:21:d9:af:
3a:fa:ff:0a:62:6f:07:16:14:9c:f7:c8:c4:53:d5:
2c:3a:62:53:c1:3c:c5:19:f4:16:ee:5c:33:03:c9:
24:ea:6e:39:5d:23:0c:ca:cc:4e:e7:5f:55:6b:90:
33:c4:37:7b:b1:19:42:aa:9c:fc:b1:1b:f7:6b:ee:
62:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:84:E2:3F:5C:8B:8F:39:F1:60:6D:78:02:EB:28:AF:14:36:5A:D5
X509v3 Authority Key Identifier:
keyid:04:F0:F7:5C:AE:D3:F2:68:85:AC:65:63:0F:FA:AE:E7:7A:70:EB:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:f2:a9:da:74:b6:0a:ab:01:b9:ce:ba:82:a9:49:25:e2:19:
cf:2e:2f:b7:29:41:e4:2d:7d:f7:42:51:cb:3d:69:c0:9f:fd:
ae:6a:fc:99:1a:76:b6:41:4d:6e:f4:66:78:9b:71:72:25:82:
dd:5e:97:b4:d4:9a:42:54:57:27:ea:ad:32:f1:4e:b4:43:36:
b4:0c:83:da:40:e7:82:bb:d7:0b:fa:e0:59:e7:5c:11:b0:ae:
26:3b:94:7a:24:00:17:0b:83:de:ff:17:a8:82:6e:be:f2:11:
2b:1e:a5:2b:8c:72:cc:44:a8:3e:41:c7:04:e1:52:2c:7f:ab:
e1:40:a5:73:c3:df:5f:19:12:1b:75:64:97:87:01:6d:d8:e3:
c0:5c:b5:7c:1d:d2:eb:7e:f5:ab:82:00:4a:e5:dd:2f:73:c4:
d3:74:c0:ce:d7:1d:11:36:d3:e7:9c:99:8c:cf:a4:b4:eb:2d:
a3:d9:24:4e:98:57:fe:f2:bd:34:7b:d2:59:28:ec:ec:c8:eb:
64:7a:50:f2:29:6a:d4:ab:de:1e:d1:96:5d:b0:1e:d5:10:c1:
94:22:48:3b:fb:dd:8a:a0:e8:e1:d7:da:12:1e:c4:60:93:98:
be:26:21:7b:32:da:c3:55:5b:00:92:19:08:d1:b6:94:2d:1b:
3b:b5:66:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:44:17 2025 by rpki-client