Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
File: bd1AUuD8dlNjYcu9x3UId93zYK0.mft (raw, json)
Hash identifier: nybV0Nxrb8rI9ZMfTEebDgRGvZlqbNZiqO2AEM5X1RM=
Subject key identifier: 3A:30:8D:0B:1A:30:5D:21:2C:4D:84:B8:90:B2:84:64:A3:11:E6:F5
Authority key identifier: 6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
Certificate issuer: /CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Certificate serial: 0197CD5F2319ABFC4B6EE81FC36A8D5004DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
Manifest number: 0ED0
Signing time: Wed 02 Jul 2025 23:00:53 +0000
Manifest this update: Wed 02 Jul 2025 23:00:53 +0000
Manifest next update: Thu 03 Jul 2025 23:00:53 +0000
Files and hashes: 1: PBeiTxVVl13KulRPara1RXYVicA.roa (hash: RXsTBTBPcZfgBdF/8hAfnipircCVtF7KKV+ZAN7eFr0=)
2: bd1AUuD8dlNjYcu9x3UId93zYK0.crl (hash: 3v5Zh5w1fXNLnm2MJT16Aue3jlOHXuFkmhibU2VSrdA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 20:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cd:5f:23:19:ab:fc:4b:6e:e8:1f:c3:6a:8d:50:04:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Validity
Not Before: Jul 2 23:00:53 2025 GMT
Not After : Jul 3 23:00:53 2025 GMT
Subject: CN=3a308d0b1a305d212c4d84b890b28464a311e6f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ca:d8:d4:32:ef:a1:43:05:a0:58:35:d3:0d:
fa:9c:f1:91:e3:42:4c:29:e5:32:81:7a:81:d5:a3:
c8:5c:87:b4:96:84:3f:9a:0b:2b:5e:5d:2b:ae:0c:
47:36:7a:fb:87:eb:0f:74:28:df:cc:91:3b:37:52:
85:ba:3a:de:d6:09:ca:94:3b:f6:69:dc:dc:44:7b:
fb:3f:0a:71:76:33:ea:c0:11:4b:96:33:a2:c2:75:
eb:89:2e:6e:06:75:c6:ff:0a:99:19:86:bb:00:16:
16:a7:74:47:e5:5a:5e:b1:3c:3d:4b:51:09:ad:1a:
74:1e:04:1c:f1:01:49:f4:c4:87:6a:87:4e:3c:5a:
b0:5f:95:5b:96:b1:f0:2f:97:d2:0c:96:2c:12:ea:
8d:32:f1:81:17:11:0d:b5:7d:63:4a:56:c0:ec:d9:
76:3f:a0:f1:32:bd:9d:f2:f6:72:fa:d4:4c:69:1b:
62:2d:a7:0f:20:80:53:0a:dd:4d:45:bc:7d:b0:9b:
db:00:d1:64:78:34:14:a0:de:51:c0:90:27:8e:c3:
85:69:84:e9:b1:a6:fd:a6:13:d5:01:f4:2d:26:d1:
45:81:82:ad:47:11:98:d3:e7:d0:cf:d1:1d:92:06:
27:6d:12:cd:07:2d:44:d9:51:9e:82:4b:c0:59:2e:
85:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:30:8D:0B:1A:30:5D:21:2C:4D:84:B8:90:B2:84:64:A3:11:E6:F5
X509v3 Authority Key Identifier:
keyid:6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:e0:95:71:09:e6:18:a3:38:4a:72:ed:07:7f:e5:23:18:37:
c6:30:32:ba:cc:e6:84:5e:84:c9:b0:5d:55:ff:b9:ca:37:65:
83:4a:75:c7:f7:7f:84:c8:fd:28:7c:3b:26:c6:4c:50:90:d3:
3e:e8:cd:08:5e:e9:54:d2:ff:95:67:3f:6f:5d:4b:6d:5f:43:
05:0c:57:dd:0a:5b:bc:64:eb:d6:8a:f8:11:77:10:14:fc:00:
b0:72:31:d0:e6:07:f4:cf:56:82:2f:a8:48:e7:0d:6f:41:bc:
80:6b:c6:2e:05:63:f6:d2:7c:f3:54:34:0e:ff:9c:fe:c9:32:
31:59:ca:44:f9:d7:c6:a5:33:5b:79:74:25:fc:5b:e5:4c:0d:
26:19:3f:df:e3:a6:c6:5a:0d:42:33:ec:90:0e:cd:93:dd:e0:
98:2e:b1:30:59:84:91:b4:97:a1:29:41:7c:91:73:80:a9:d9:
43:6c:c1:94:75:4f:47:77:36:03:2c:71:f5:e0:4d:b4:a1:57:
27:11:4e:91:09:25:d9:14:5a:3c:6c:66:fc:9e:95:b4:d5:09:
7a:87:60:c4:9b:ce:39:9d:0a:53:c9:c0:c3:4f:72:0d:d7:26:
1e:9b:64:04:2f:51:2b:45:cb:d3:43:7f:56:9c:a3:e3:9f:82:
e1:f5:19:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 03:10:55 2025 by rpki-client