Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
File: bzHGTD5afeEED0Daj-3EfDj-Wfo.mft (raw, json)
Hash identifier: KUOcRJG4L7tzr2I3lU0eZdU2Y2aKlm98E4VpkMT0Roc=
Subject key identifier: 9F:00:7D:F4:B2:23:43:42:DC:1C:EB:01:87:7E:A0:E5:72:9C:10:CF
Authority key identifier: 6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA
Certificate issuer: /CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa
Certificate serial: 0198D6CD220CD8B355B193ABC2D9F631D61D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
Manifest number: 0EF6
Signing time: Sat 23 Aug 2025 12:00:24 +0000
Manifest this update: Sat 23 Aug 2025 12:00:24 +0000
Manifest next update: Sun 24 Aug 2025 12:00:24 +0000
Files and hashes: 1: V-ziE9ps9Cl1x9ik1a79A00SdKk.roa (hash: vAv5TpbiymJ0TO2JtzeVr/xllon/oJLZTZGZk+qEl8o=)
2: bzHGTD5afeEED0Daj-3EfDj-Wfo.crl (hash: S2n67HaS4uNWynBwteynXEpNMalKwGKDbapWH9GWSXY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:22:0c:d8:b3:55:b1:93:ab:c2:d9:f6:31:d6:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa
Validity
Not Before: Aug 23 12:00:24 2025 GMT
Not After : Aug 24 12:00:24 2025 GMT
Subject: CN=9f007df4b2234342dc1ceb01877ea0e5729c10cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fb:a9:c7:fd:2b:5d:19:76:fa:4d:e6:a8:82:
97:fd:23:e6:7d:6d:a3:1d:87:cf:d3:c5:94:2b:9e:
d9:6a:e8:4d:bc:7e:0d:ff:f1:32:ce:fa:e6:60:ea:
7c:f2:ef:0e:ea:b2:f0:6a:b5:70:c9:80:cc:78:73:
94:eb:95:b0:60:80:cd:8c:35:47:14:cf:25:2d:7d:
e9:e1:58:18:82:25:a0:b2:0d:bd:49:bd:bd:5c:59:
5a:86:fc:3d:15:e0:2d:8a:db:54:38:99:8c:2a:c2:
20:93:f8:7d:39:ed:33:e2:0e:e7:5f:a1:7d:f7:33:
d5:b1:10:9c:e3:4a:5c:ae:c6:8e:f0:40:77:e0:c0:
e2:45:da:0a:d7:3a:84:6c:b1:6f:d3:35:24:ad:90:
69:04:2a:1a:15:96:90:bd:2d:71:fc:69:51:06:b7:
1b:6c:b4:19:8a:8a:6a:dd:41:4c:31:41:05:c2:da:
d4:45:c1:ff:fa:e5:68:32:00:9e:3b:a0:b9:84:e5:
3b:ad:5f:a2:8a:f8:0f:fa:54:1a:a6:7e:19:de:ba:
81:4c:c8:3c:3d:0c:69:eb:ad:47:47:44:0b:f1:18:
a9:8a:36:de:07:aa:17:37:ee:cb:2e:fe:98:d1:c1:
b3:45:28:6b:c2:d7:0b:96:ec:70:9b:52:5a:f3:cd:
3c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:00:7D:F4:B2:23:43:42:DC:1C:EB:01:87:7E:A0:E5:72:9C:10:CF
X509v3 Authority Key Identifier:
keyid:6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:5f:fd:a3:8b:d5:40:23:fd:19:9f:3f:8b:d1:37:f4:7d:83:
3f:66:28:4b:6a:68:f4:03:e7:11:6f:fe:14:2a:c7:e2:77:3f:
f6:33:a9:b3:a1:ca:52:68:ff:6d:62:cb:03:11:ca:c6:3f:5f:
be:f5:05:15:da:34:b2:4e:ac:f0:7b:70:58:c9:80:a6:1d:2c:
57:78:87:1d:2c:38:8a:35:7f:79:92:39:27:f6:6b:1f:29:67:
ff:c8:68:f1:b5:5c:41:92:02:5e:22:2b:fa:92:1e:26:ba:47:
92:12:0d:63:df:f9:37:f0:32:e3:ab:3d:03:59:51:d4:23:4c:
47:33:80:16:91:ff:31:87:9f:82:b0:1b:a1:19:bd:5a:15:9f:
96:70:72:4d:fa:ee:94:9e:42:97:f0:ea:c6:fe:b7:4a:f1:2d:
68:2b:d1:a2:62:06:18:be:e0:4f:75:9e:90:f2:63:71:aa:9c:
0f:af:73:0f:8e:c2:d3:d3:f9:c8:13:fb:82:1b:cf:f2:16:3f:
47:25:4e:75:21:5e:a3:5b:76:14:fc:f6:e5:b6:dd:33:2e:35:
3e:e1:60:b3:33:ec:76:0a:73:2b:3d:f6:3a:9d:8e:1f:fb:84:
02:58:34:78:71:14:bd:2d:82:0f:95:18:55:b8:21:b7:dd:13:
95:a7:f9:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:30:55 2025 by rpki-client