Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft
File: BLHnVu2xw70vV2afWCv2qVG4P0g.mft (raw, json)
Hash identifier: 2mmOItFgCNsSZ6bdUIMtrR6Yye8If3WdFjgw7syzaKE=
Subject key identifier: 02:88:E9:F2:2D:D7:83:2C:0A:E6:54:A6:A7:2C:94:FA:BD:69:99:17
Authority key identifier: 04:B1:E7:56:ED:B1:C3:BD:2F:57:66:9F:58:2B:F6:A9:51:B8:3F:48
Certificate issuer: /CN=04b1e756edb1c3bd2f57669f582bf6a951b83f48
Certificate serial: 0198D65FA6B93BFD9BD9817C5CCB18CAAB9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BLHnVu2xw70vV2afWCv2qVG4P0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 10:00:49 +0000
Manifest this update: Sat 23 Aug 2025 10:00:49 +0000
Manifest next update: Sun 24 Aug 2025 10:00:49 +0000
Files and hashes: 1: BLHnVu2xw70vV2afWCv2qVG4P0g.crl (hash: x0w9bLFKsFyHHlXBNTRp1ShvWC4R+AoQA0ZsgVlYgfw=)
2: RK9xACY5XxzSQaeBbJjDwmPGdFw.roa (hash: Z9/aIdSLDIxdeAqdfXn6u/SeZl9dpZ2YPR093LrIQCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/BLHnVu2xw70vV2afWCv2qVG4P0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:a6:b9:3b:fd:9b:d9:81:7c:5c:cb:18:ca:ab:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04b1e756edb1c3bd2f57669f582bf6a951b83f48
Validity
Not Before: Aug 23 10:00:49 2025 GMT
Not After : Aug 24 10:00:49 2025 GMT
Subject: CN=0288e9f22dd7832c0ae654a6a72c94fabd699917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e3:d3:d8:40:c3:a1:ac:ed:27:25:91:b4:90:
4e:93:6b:06:3e:69:32:a0:76:ab:06:8d:d1:5e:ea:
80:83:40:a7:a7:a7:f1:8b:26:28:58:57:e2:19:6d:
f3:dc:d5:7f:33:8a:bb:0c:dd:6a:57:45:49:ad:94:
bd:93:b6:f6:91:90:68:54:e7:d7:7f:95:2b:d6:04:
73:b1:14:f6:6a:4d:a4:3f:85:02:97:45:aa:7c:02:
af:68:7b:e3:34:43:56:a3:29:79:70:88:99:18:fe:
51:7f:75:f3:4c:85:3f:ae:a4:f9:e6:b9:41:38:37:
04:ba:aa:e5:37:ef:34:a6:40:f6:83:84:70:7f:a9:
b0:6d:39:56:c8:bd:e3:56:04:f0:71:7b:6a:c4:ea:
b5:3e:97:74:0d:a8:3c:3a:f2:94:d2:fe:4e:4b:df:
66:41:06:1b:68:42:bf:f1:39:9d:52:42:d0:8e:0b:
98:33:a1:88:45:37:d0:cf:d1:85:04:4b:b9:57:de:
e8:10:9b:2f:9c:f0:dc:46:32:f4:57:dd:e3:9a:cd:
6b:7b:a2:95:78:f1:36:d5:d5:08:f0:72:ba:dd:ee:
45:c6:36:f8:38:cb:39:68:47:38:93:d6:11:29:de:
7e:04:f1:1e:33:03:a9:16:23:dd:ac:cb:31:58:37:
9a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:88:E9:F2:2D:D7:83:2C:0A:E6:54:A6:A7:2C:94:FA:BD:69:99:17
X509v3 Authority Key Identifier:
keyid:04:B1:E7:56:ED:B1:C3:BD:2F:57:66:9F:58:2B:F6:A9:51:B8:3F:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BLHnVu2xw70vV2afWCv2qVG4P0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:27:f2:ac:13:91:5b:47:6a:61:bb:f2:12:39:a6:0b:f3:f9:
47:9b:cc:3c:ae:2f:d7:2e:d0:6b:c7:9d:6d:3d:d4:aa:ab:82:
2d:76:3c:93:9a:d5:85:73:2f:92:e3:29:1b:7b:e3:fa:b5:24:
48:ef:4c:45:81:74:c2:68:57:9e:b3:23:a0:63:d0:15:62:a8:
f9:96:58:cc:52:d5:59:5c:9d:11:75:b6:d5:c0:c9:d1:b7:d9:
bf:b6:ac:bd:8c:09:da:9d:61:28:4b:9e:ef:71:5e:ca:c1:d6:
fc:80:e9:b9:2b:be:0c:82:0f:20:41:e4:40:5c:8b:90:bf:3f:
50:d3:ca:1e:60:02:78:4c:56:23:48:1d:43:d5:b7:97:6d:3f:
0c:86:56:86:7c:04:e3:7f:00:b9:49:8e:b1:7b:b7:52:41:50:
ac:71:8a:41:1d:ee:b9:08:a2:54:c7:15:46:3e:1d:76:6e:61:
8f:c6:38:18:63:ae:cd:1a:36:00:4e:e8:3c:69:1b:5e:af:e9:
12:8e:ac:15:84:10:bb:2b:45:fd:52:ed:3c:10:62:e8:65:4a:
bc:7e:56:9a:54:ef:cb:4a:dc:c7:a3:fd:60:24:73:7d:32:3c:
87:af:22:66:86:05:d6:7d:fb:be:fb:02:53:11:3a:c5:25:69:
b5:81:45:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:45:52 2025 by rpki-client