Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft
File: bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft (raw, json)
Hash identifier: x59CFgVhpeOTc/R6lzMndBd452gY2eRvKbGPy73DM0c=
Subject key identifier: 62:1B:05:B8:78:54:BB:72:2B:BE:D4:36:2D:7B:28:3C:82:39:B6:99
Authority key identifier: 6D:DA:05:6C:3B:54:E5:00:CA:19:C8:F5:C4:77:0A:C3:F4:50:E4:BD
Certificate issuer: /CN=6dda056c3b54e500ca19c8f5c4770ac3f450e4bd
Certificate serial: 0197B8FD7AA056845875CF999F5EF93EFB74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft
Manifest number: 15B2
Signing time: Sun 29 Jun 2025 00:01:49 +0000
Manifest this update: Sun 29 Jun 2025 00:01:49 +0000
Manifest next update: Mon 30 Jun 2025 00:01:49 +0000
Files and hashes: 1: bdoFbDtU5QDKGcj1xHcKw_RQ5L0.crl (hash: ftw7LvhtEkMCXa7wxbn1knELh/BNdV2wpm263Vut2ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:7a:a0:56:84:58:75:cf:99:9f:5e:f9:3e:fb:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dda056c3b54e500ca19c8f5c4770ac3f450e4bd
Validity
Not Before: Jun 29 00:01:49 2025 GMT
Not After : Jun 30 00:01:49 2025 GMT
Subject: CN=621b05b87854bb722bbed4362d7b283c8239b699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:79:57:12:85:d1:e1:28:b5:64:91:88:9c:4e:
b1:63:29:3c:bd:e5:9d:b7:c2:5e:e0:4a:f2:40:85:
98:03:a1:0e:08:6a:85:46:06:ea:03:88:9b:17:0e:
15:9e:16:30:27:c6:08:d4:27:d3:4d:34:97:82:5d:
b5:21:cc:11:7b:62:df:18:83:c9:b9:10:a3:06:14:
ce:f7:62:3c:5f:b6:e0:80:92:cf:ff:5f:46:a9:37:
38:e8:a4:3b:ff:a0:db:ba:97:d1:27:06:5c:54:45:
a1:96:9a:12:12:ef:7d:86:76:28:56:bd:5b:e6:ef:
8e:f4:1c:35:2e:9a:1d:e5:eb:1c:69:2a:4b:78:8b:
e1:00:02:0a:a0:9c:95:11:dc:89:5d:79:e6:7e:22:
14:ca:cf:46:2d:c3:42:ca:b1:97:86:07:65:d4:91:
aa:21:8d:24:04:c2:63:db:c1:80:d8:e8:91:8e:12:
76:4c:c1:66:02:1a:03:a8:3b:36:86:a9:e5:43:ed:
98:a7:49:df:4d:51:da:6a:e2:3f:10:3b:ac:f5:61:
52:76:85:f5:8b:32:6e:29:d2:3a:50:b1:27:5b:c7:
53:32:7e:1d:17:7e:bf:a6:0f:d0:3e:9c:b9:2f:2e:
08:8d:36:88:11:6b:4f:ab:77:05:bc:e7:6b:3b:95:
9a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:1B:05:B8:78:54:BB:72:2B:BE:D4:36:2D:7B:28:3C:82:39:B6:99
X509v3 Authority Key Identifier:
keyid:6D:DA:05:6C:3B:54:E5:00:CA:19:C8:F5:C4:77:0A:C3:F4:50:E4:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:0d:cb:10:92:5e:a4:ce:cb:b5:ba:5a:f2:ff:9d:d6:63:a5:
b7:3a:c9:2f:10:dd:2f:8f:1b:b8:9a:75:e4:92:52:c6:47:e2:
aa:98:d2:56:90:73:3f:f6:5c:ae:8e:08:e9:b1:47:e4:3d:c3:
18:09:9c:4a:a4:d3:bb:4e:46:7d:49:eb:7e:41:27:56:d8:94:
76:75:39:4b:d2:6e:26:f0:19:99:28:96:4c:37:03:97:db:e5:
0b:40:60:41:c7:75:63:1f:c2:5d:22:c2:c4:b0:cd:4d:33:10:
26:a7:3b:f1:97:69:65:c5:e7:5f:2b:05:27:0a:3e:13:af:82:
e6:21:a0:00:6e:6a:b7:13:61:ea:2e:46:05:1b:c7:a7:fb:29:
7f:90:51:dd:b5:e6:c6:17:b0:16:7d:ac:f8:3c:ca:f9:00:ef:
b1:d4:ba:e7:f1:54:c6:1b:3a:62:9e:68:26:44:b5:77:a7:44:
38:a7:43:5c:b4:0a:58:6c:05:0e:a9:b4:ac:bc:da:c7:f0:c3:
9c:5c:dd:d4:f1:07:46:09:6d:0e:a9:b8:64:cd:be:70:18:c3:
2b:6a:44:1d:c3:0d:00:f1:3f:e8:4b:f8:e1:74:b3:4b:e4:49:
ae:db:f0:a8:4f:cc:c7:8b:e2:9e:7a:14:40:4c:67:78:31:d7:
83:02:73:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:02:54 2025 by rpki-client