Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
File: aDjbfmmRJ9pMHFpek_RPMCtihjs.mft (raw, json)
Hash identifier: JFtfRTVHXP7ucFMxpXHVO9TDqNVOo356GvxmLhyAhSk=
Subject key identifier: BF:BF:49:09:90:58:67:EE:8A:C5:F5:AC:35:48:24:02:59:5A:61:FF
Authority key identifier: 68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B
Certificate issuer: /CN=6838db7e699127da4c1c5a5e93f44f302b62863b
Certificate serial: 0198D8BD5ACC087F6371FB18B6DB4E395AA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 21:02:24 +0000
Manifest this update: Sat 23 Aug 2025 21:02:24 +0000
Manifest next update: Sun 24 Aug 2025 21:02:24 +0000
Files and hashes: 1: aDjbfmmRJ9pMHFpek_RPMCtihjs.crl (hash: vgXTGFgMlH92tas6STJ5T1Ye0UEl47DV92Jj/OS6+Mc=)
2: ndozZxXsqqvoYlnvn2R8eG6q9WM.roa (hash: J/bxB2F1VD9ABMhf1I4cZo/1cjeHrt4Cto7ZdYkPM28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:bd:5a:cc:08:7f:63:71:fb:18:b6:db:4e:39:5a:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6838db7e699127da4c1c5a5e93f44f302b62863b
Validity
Not Before: Aug 23 21:02:24 2025 GMT
Not After : Aug 24 21:02:24 2025 GMT
Subject: CN=bfbf4909905867ee8ac5f5ac35482402595a61ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:37:d2:e0:e3:74:6d:29:7e:82:06:b0:e3:d0:
c0:33:63:e3:2f:58:d1:35:33:ed:c1:20:b6:6e:02:
67:a0:fd:15:c3:c0:78:e3:ce:47:f1:d1:e0:ff:31:
55:6c:0f:51:96:e8:4f:f4:2b:89:81:b2:4e:ee:cb:
77:9b:40:fb:e7:f8:49:0b:6c:6c:a2:a0:c2:6c:25:
03:cc:c6:52:be:56:27:2a:49:15:98:60:5f:aa:b0:
95:91:e8:5a:f8:0d:85:06:62:71:78:77:03:8a:6f:
51:3d:ce:27:0c:bc:c5:22:15:c7:e5:c3:6c:97:73:
76:79:51:98:8f:1e:31:ab:a5:5c:43:8a:ff:ed:8e:
22:3f:13:23:29:1b:d0:5b:42:1e:06:ab:6d:a9:bc:
f4:03:54:03:03:e6:6c:c8:31:be:d0:ac:fe:2f:e3:
7f:30:8a:98:fc:c7:1f:ec:f5:91:d2:9d:df:1d:b8:
06:6b:8e:6a:d4:1c:5e:83:88:2d:90:02:4c:46:9c:
e4:ad:cc:de:44:d1:dd:30:24:4f:97:27:f8:35:e9:
a3:14:9d:54:bc:c8:57:fb:57:10:7a:45:2a:ca:dc:
30:d5:63:8f:d6:12:d4:fc:30:0b:83:73:2b:8b:73:
38:21:f1:02:9b:ae:55:60:6e:60:a3:82:55:6a:8b:
80:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:BF:49:09:90:58:67:EE:8A:C5:F5:AC:35:48:24:02:59:5A:61:FF
X509v3 Authority Key Identifier:
keyid:68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:00:e2:3e:30:85:58:ea:d0:2b:f0:9b:30:76:c0:02:a3:4c:
1e:1d:ae:8b:e0:ec:9c:ca:f2:c6:39:6d:ec:ef:f8:82:42:4e:
7d:ee:27:e5:88:05:d7:e0:f2:49:b7:bc:e4:8f:ce:69:f8:e9:
d5:fc:2c:a8:80:52:b0:36:33:7f:34:73:ea:e6:74:ed:9e:41:
37:28:95:73:50:f4:e6:d5:ba:c8:37:81:b7:75:db:fc:3c:c6:
45:2b:71:23:ef:f1:3b:83:67:32:8b:c3:31:a0:09:b8:9d:a0:
25:1a:38:06:4c:cd:96:66:4c:69:cd:8b:92:f6:de:38:3a:13:
34:10:c1:6f:d4:1f:9f:3d:eb:c1:74:a8:51:cb:96:8a:bc:e7:
53:30:0f:d0:d1:ba:cf:31:c4:1e:3a:99:67:42:7e:0f:52:77:
e8:66:d1:26:54:e8:7c:8f:67:e0:74:4a:cd:e3:96:ce:8a:ba:
09:80:72:01:11:87:14:7d:f4:69:54:c6:a3:db:0d:f4:bb:12:
83:0b:ba:a8:eb:3e:bc:93:ef:f0:2c:6e:8a:b5:78:78:97:6f:
b1:5b:f3:72:f3:4c:0f:67:22:de:ed:32:97:ea:ff:fe:06:c1:
41:6f:26:4f:b8:c9:55:a5:a2:74:ae:0f:a1:35:7d:02:6e:3a:
97:a1:18:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:21:39 2025 by rpki-client