Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft
File: L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft (raw, json)
Hash identifier: EjXmNDqpP1PZvrVbabhoQ46hP8Bx2COW2P41btbRKSQ=
Subject key identifier: BF:0B:D8:60:63:47:FA:E8:B6:87:AC:01:32:4B:A9:6A:AA:31:E1:6A
Authority key identifier: 2F:CC:93:46:52:84:2B:7B:D9:A7:CE:C0:02:C7:7C:1C:A1:3F:10:64
Certificate issuer: /CN=2fcc934652842b7bd9a7cec002c77c1ca13f1064
Certificate serial: 0198D473919FC8319873D18556D4AEB39F66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 01:03:20 +0000
Manifest this update: Sat 23 Aug 2025 01:03:20 +0000
Manifest next update: Sun 24 Aug 2025 01:03:20 +0000
Files and hashes: 1: L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl (hash: Ngrb8f4h0bm0Vidd+pEL12MEZPeCgUCe403nICGTgaI=)
2: yz6_439OmIgbPGI_9SMl-hcB7SM.roa (hash: b+VVST8s13jCLV/LOSpCV8hcczaiQ8urh6lhnrg3Cso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:91:9f:c8:31:98:73:d1:85:56:d4:ae:b3:9f:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fcc934652842b7bd9a7cec002c77c1ca13f1064
Validity
Not Before: Aug 23 01:03:20 2025 GMT
Not After : Aug 24 01:03:20 2025 GMT
Subject: CN=bf0bd8606347fae8b687ac01324ba96aaa31e16a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b2:49:d8:cf:c1:4c:20:61:ad:94:6d:46:09:
8b:59:48:d4:39:ba:2f:c9:29:c4:a3:26:89:1c:94:
60:34:c8:76:68:96:0f:49:10:f8:dc:16:68:59:1e:
67:15:e5:b7:fb:4d:4a:c9:0a:86:92:1d:0f:61:5b:
af:44:7e:29:e8:cb:ba:bd:ad:d5:82:3e:f3:4f:78:
cc:90:79:db:f8:b7:a9:83:5c:d5:a1:84:74:a5:34:
8c:05:77:3f:ee:d7:86:a2:0f:bf:3c:c8:4a:ad:a6:
e7:02:af:cc:d7:8f:52:d9:9f:e0:31:e8:8a:c3:bc:
ed:20:91:a0:b2:f4:88:ea:3f:4b:2d:33:b0:32:37:
f8:16:8a:25:5d:3d:03:04:06:9b:80:d4:d7:a0:39:
63:83:41:44:8e:98:12:27:d0:eb:9a:6a:f4:12:99:
bb:41:eb:b6:7b:3a:73:76:e2:47:5c:3b:b2:f7:4d:
1c:95:89:9c:0d:5b:ca:3b:79:0b:72:4f:b1:ad:38:
a4:f8:16:c7:5b:a9:ab:eb:62:95:ec:d6:ee:8f:ef:
4f:68:7e:b5:da:3c:13:bb:e2:70:e4:cf:9e:b7:5d:
0d:f7:22:68:b1:82:a2:35:cf:4b:a5:90:08:03:bb:
07:f1:e0:66:e1:98:07:48:ad:f2:3e:97:36:40:c6:
da:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:0B:D8:60:63:47:FA:E8:B6:87:AC:01:32:4B:A9:6A:AA:31:E1:6A
X509v3 Authority Key Identifier:
keyid:2F:CC:93:46:52:84:2B:7B:D9:A7:CE:C0:02:C7:7C:1C:A1:3F:10:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:1b:f1:6b:ee:8e:60:26:bd:69:b6:0c:fd:c9:9a:bc:b6:29:
81:a8:c9:29:53:55:a4:32:3e:e8:68:0d:55:e8:8f:19:fe:4c:
bd:5c:66:ab:db:9f:3e:51:58:dc:78:f8:15:b4:c5:df:8c:7e:
78:cf:68:37:95:34:08:53:d8:7c:ef:f6:5f:7a:d3:f7:67:93:
72:1d:d1:9b:08:11:80:38:fb:d0:b5:69:3d:d7:cf:7e:5b:f6:
83:7f:26:5b:66:e5:55:9a:0a:f2:b3:89:9b:41:49:c4:bb:2a:
ae:99:3c:0e:f8:5c:c9:5b:c9:9b:34:b4:97:16:c7:c7:c6:7e:
a2:50:48:f9:67:6d:7f:c8:53:77:15:9f:48:4f:a0:77:0e:43:
b5:a1:58:8e:9b:0b:3d:81:f6:36:e3:ae:c2:dc:d4:61:b4:8b:
a1:34:f9:e3:38:34:7c:43:be:66:3f:94:b9:6e:4d:d8:61:11:
3f:9f:8a:2b:3c:26:54:fa:b3:d0:6e:10:36:05:c0:25:bf:85:
f0:e1:51:3f:37:48:d6:81:43:9f:e9:9a:da:15:9f:ec:cb:5a:
4d:c2:87:9e:23:a0:fa:14:56:7f:65:20:96:52:03:9f:d3:8b:
f2:01:48:c7:9a:40:e2:82:ed:4c:86:cb:29:6e:49:0f:72:69:
90:6a:43:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:23:55 2025 by rpki-client