Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
File: bd1AUuD8dlNjYcu9x3UId93zYK0.mft (raw, json)
Hash identifier: wt3jf87I9swBzOkXpezfoQhW8dTb6LxZvE/iMkquzCQ=
Subject key identifier: FF:66:EB:71:E4:CE:3B:1C:66:8D:78:2B:89:8B:EB:D4:9E:AC:B9:24
Authority key identifier: 6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
Certificate issuer: /CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Certificate serial: 0198D7E0FA0B27012DA18822142F551612D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
Manifest number: 0F5A
Signing time: Sat 23 Aug 2025 17:01:42 +0000
Manifest this update: Sat 23 Aug 2025 17:01:42 +0000
Manifest next update: Sun 24 Aug 2025 17:01:42 +0000
Files and hashes: 1: PBeiTxVVl13KulRPara1RXYVicA.roa (hash: RXsTBTBPcZfgBdF/8hAfnipircCVtF7KKV+ZAN7eFr0=)
2: bd1AUuD8dlNjYcu9x3UId93zYK0.crl (hash: jUfh7j4zJGCebfvDX2RMwUTQFuqGqy2hlKWahRgDVQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:e0:fa:0b:27:01:2d:a1:88:22:14:2f:55:16:12:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Validity
Not Before: Aug 23 17:01:42 2025 GMT
Not After : Aug 24 17:01:42 2025 GMT
Subject: CN=ff66eb71e4ce3b1c668d782b898bebd49eacb924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:04:22:2e:cb:e5:7d:03:c0:5a:e4:d2:28:1e:
93:90:d6:7b:c3:25:5f:f7:e3:59:3f:7b:f4:d7:19:
aa:03:e5:5b:38:6b:df:9a:e1:e2:73:8a:59:db:a7:
c3:e8:57:86:4d:eb:5d:ae:95:08:6b:a9:83:b6:19:
49:88:d0:5c:ae:9a:a3:f6:44:21:21:b1:89:c3:ae:
23:15:9e:a7:7f:21:68:89:bb:ad:b3:aa:50:e9:73:
6c:9e:87:e0:62:58:f5:a9:99:92:c4:79:e3:7a:be:
2e:99:6f:49:c5:9f:b8:87:6e:01:b7:98:5e:ca:77:
75:1a:11:48:48:72:52:a9:3a:74:92:48:38:7b:03:
e6:13:dd:2a:4c:ba:4d:d7:b1:23:f2:88:f2:50:9a:
4a:d7:9d:c0:70:4d:4f:12:a7:58:2a:83:84:29:1d:
77:dc:e9:3d:2b:d6:f5:b6:a7:6f:ca:7d:5b:2f:d1:
ed:80:38:90:6d:b3:b9:da:81:ab:0b:2b:a9:bf:23:
75:82:d2:4e:ec:29:78:9c:44:b1:4e:70:54:9c:48:
80:4b:b8:9c:f2:c0:f5:b8:7a:a8:f2:9c:75:b5:c3:
b1:87:05:8f:90:1a:25:b6:7c:02:60:9a:84:d4:16:
15:10:68:ce:01:fe:60:58:e8:22:b5:8e:cd:32:cb:
1c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:66:EB:71:E4:CE:3B:1C:66:8D:78:2B:89:8B:EB:D4:9E:AC:B9:24
X509v3 Authority Key Identifier:
keyid:6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:39:40:eb:b4:9e:6e:8a:06:c7:72:e6:68:98:d8:01:07:68:
c8:6e:dc:3e:b1:73:85:ee:39:c5:81:86:f9:55:a6:57:4e:81:
d8:be:69:92:ec:30:d1:8f:78:83:60:89:aa:28:fa:54:82:de:
5e:b3:08:a6:1c:12:37:0f:c5:a0:7a:b3:b2:ce:ae:42:1b:17:
a5:a6:d7:e2:58:4a:9c:be:8f:ab:2a:b6:c5:0a:c5:88:b5:fd:
5a:3e:1a:2a:b1:f3:b3:6b:22:91:86:07:26:9c:66:11:00:4f:
19:ff:5f:48:f1:1b:cc:05:12:5f:85:47:aa:8b:9e:1a:74:6b:
d8:05:79:97:d9:38:b2:61:94:99:f7:57:12:46:f5:00:64:16:
c8:0a:2a:99:d8:f5:df:b6:36:c4:87:5f:88:10:f2:a4:1f:be:
9f:ed:09:7e:28:01:0a:83:0f:c6:2c:5e:71:6e:63:65:db:5e:
c8:b2:86:4a:2d:98:00:73:ad:79:15:ec:6c:8b:f3:f7:61:4e:
ff:ac:01:b9:74:0c:8a:aa:49:6a:f3:bc:f2:e1:2b:b4:c3:eb:
ed:a5:e3:3d:4c:f9:a1:23:59:6b:b2:dc:af:c0:b6:38:98:4f:
a5:5f:12:a7:ca:50:a0:57:e4:4a:2a:37:2f:40:1e:5a:6c:87:
f0:58:8e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:43:19 2025 by rpki-client