Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
File: bhWkM20vXhvWBzfelXlomSp0cOk.mft (raw, json)
Hash identifier: czdoo562XDBS22dcF1w4uYcDVzUuCU2yjHYFOGaTPZQ=
Subject key identifier: 13:65:7F:A8:D5:7D:48:15:BD:1E:6F:64:0B:5C:E4:A5:0E:6D:CA:C8
Authority key identifier: 6E:15:A4:33:6D:2F:5E:1B:D6:07:37:DE:95:79:68:99:2A:74:70:E9
Certificate issuer: /CN=6e15a4336d2f5e1bd60737de957968992a7470e9
Certificate serial: 0198D5BC0D1EB0B9B60A879AF9A962C65242
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 07:02:07 +0000
Manifest this update: Sat 23 Aug 2025 07:02:07 +0000
Manifest next update: Sun 24 Aug 2025 07:02:07 +0000
Files and hashes: 1: bhWkM20vXhvWBzfelXlomSp0cOk.crl (hash: 8ayEi9z3SpUxGTI6TQFmwHB0lmuC8/8adHPcUPBt2Co=)
2: zgsEDv3otZRAtHyWvGAv7rzQjXg.roa (hash: ZyzEtsDUzNfUy6YLDq0VYYYmMcE0twVe+0tLjGTigwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:0d:1e:b0:b9:b6:0a:87:9a:f9:a9:62:c6:52:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e15a4336d2f5e1bd60737de957968992a7470e9
Validity
Not Before: Aug 23 07:02:07 2025 GMT
Not After : Aug 24 07:02:07 2025 GMT
Subject: CN=13657fa8d57d4815bd1e6f640b5ce4a50e6dcac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:68:dc:3e:7f:85:37:da:4f:f1:47:d1:47:ff:
34:d6:aa:bf:b6:de:0e:bf:17:82:91:c2:24:01:a1:
14:39:49:cc:31:9a:b6:20:36:e0:50:af:65:28:4d:
ca:99:61:c7:9d:a1:6c:43:48:18:02:72:e8:58:0b:
26:ba:28:49:64:94:7b:48:ee:76:a4:3a:a3:30:65:
76:6f:ef:c8:25:b3:4c:0f:c7:74:31:de:de:bd:fe:
af:0f:c1:4b:62:a5:09:bd:64:04:1a:f6:64:41:47:
b7:f6:71:09:05:d1:dd:ca:78:20:bd:21:e2:b7:10:
a2:2d:47:3a:a8:1c:65:de:8d:98:cc:1b:54:64:62:
2b:07:e6:82:d5:69:d2:04:fa:b4:c6:07:bf:3d:04:
62:c7:6d:c9:db:0d:40:8f:b4:68:ea:d8:4a:cb:70:
22:66:e9:a2:f9:c7:63:a0:98:59:fc:b0:bf:c4:d0:
45:9e:0e:50:60:6e:70:b6:07:19:6e:97:e1:90:70:
4b:40:0a:ef:d3:82:ad:5c:24:97:ff:5e:29:7e:82:
30:3d:28:53:dc:d5:e0:61:3d:96:dc:d6:c0:7a:2e:
dd:3a:f2:76:22:20:6c:1f:1e:db:7c:d2:32:b3:fc:
0a:d1:de:15:cf:c8:bb:b8:fc:d9:21:63:63:b8:15:
10:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:65:7F:A8:D5:7D:48:15:BD:1E:6F:64:0B:5C:E4:A5:0E:6D:CA:C8
X509v3 Authority Key Identifier:
keyid:6E:15:A4:33:6D:2F:5E:1B:D6:07:37:DE:95:79:68:99:2A:74:70:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:81:54:b7:94:f8:80:ed:ea:7e:a2:2f:2f:3e:79:bd:54:13:
ca:6a:a1:6c:cd:c2:63:03:c6:03:85:5b:92:8b:9d:cb:47:fa:
1d:3b:16:e9:8f:67:1e:56:6d:37:50:c3:c0:d7:47:1e:99:f5:
90:86:a1:41:e0:fb:0d:fb:63:1e:6f:42:43:6f:32:ed:46:d2:
1b:ef:6c:83:97:c9:38:b5:76:b4:7a:a1:2c:56:c5:ef:5b:99:
a3:5e:3d:d5:86:26:3d:65:08:e7:83:e2:03:2b:4c:c2:16:17:
e2:e7:a4:79:94:9a:86:99:16:76:a3:b3:16:bd:99:ba:73:c9:
54:8c:62:46:1c:b7:fd:a5:53:87:df:63:59:2b:d0:44:fc:13:
a8:8a:8b:f3:38:03:62:e4:a2:82:a8:81:77:39:07:52:b8:6a:
d6:ad:05:e9:2e:44:40:2e:01:85:f6:fa:f4:c0:22:a5:bd:ed:
68:06:32:92:f2:2f:fe:0a:9c:f9:04:fd:81:ff:ef:19:7d:74:
fb:26:e1:a3:93:79:ac:6a:69:85:e4:ca:88:c9:00:b9:7b:f5:
36:4c:59:f9:2e:41:f3:01:62:4f:b9:ce:e1:62:ff:4b:6e:c0:
db:23:e9:dd:36:b2:0a:80:3b:b4:41:5e:a5:49:6a:35:fb:86:
76:bd:9c:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:41:50 2025 by rpki-client