Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.mft
File: bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.mft (raw, json)
Hash identifier: fz9DLZVIbZJJEJwdL8FyTNce+UAzMd1eW2dX9jpNKz0=
Subject key identifier: 3B:F7:D9:45:75:5B:27:E0:27:15:17:1B:F4:64:78:57:B2:CF:5C:A3
Authority key identifier: 6D:F5:67:EC:F8:65:48:06:00:98:F5:AD:67:A1:B2:BF:FF:1B:4B:51
Certificate issuer: /CN=6df567ecf86548060098f5ad67a1b2bfff1b4b51
Certificate serial: 0198D54EC1F2E5D2286DDF2663FD4D859768
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.mft
Manifest number: 08B3
Signing time: Sat 23 Aug 2025 05:02:45 +0000
Manifest this update: Sat 23 Aug 2025 05:02:45 +0000
Manifest next update: Sun 24 Aug 2025 05:02:45 +0000
Files and hashes: 1: bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.crl (hash: r4SxfuDI7yf3lTtNdlwce4/01+X47kbp7hwrFGgsKdE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:c1:f2:e5:d2:28:6d:df:26:63:fd:4d:85:97:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df567ecf86548060098f5ad67a1b2bfff1b4b51
Validity
Not Before: Aug 23 05:02:45 2025 GMT
Not After : Aug 24 05:02:45 2025 GMT
Subject: CN=3bf7d945755b27e02715171bf4647857b2cf5ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b7:23:eb:e5:c7:f8:6f:ee:65:4e:11:48:a9:
8e:5c:ce:fa:29:b2:52:2c:90:5b:93:ef:0a:3d:b3:
5a:c1:d3:33:b5:20:62:45:08:0f:3a:f0:33:f6:c0:
98:71:44:46:73:88:6c:e7:9c:b6:31:34:22:62:69:
e3:ee:b5:64:08:cb:13:fe:3a:f8:cb:50:99:86:5c:
94:27:2f:dd:31:98:10:6e:8b:5d:f6:2e:80:f1:76:
a9:33:68:95:67:28:cf:5d:a5:01:fe:6d:67:cc:1b:
9f:a1:b0:23:96:99:66:c9:5a:e9:8b:b3:44:1c:01:
4b:37:2a:65:1b:e9:89:a4:de:a3:d2:4b:1d:fc:3a:
4c:11:3c:f5:c3:4e:f9:d9:be:fc:6d:89:18:06:1e:
ad:9c:8c:07:5d:78:e3:ea:64:0b:aa:7a:5a:e0:f8:
1a:9c:9e:c7:dd:40:e2:32:54:cd:db:99:2f:ec:81:
ab:db:2a:c9:e6:75:47:3b:0e:c2:62:a9:eb:31:21:
14:83:ae:af:c2:aa:65:ee:fe:ba:70:ab:0a:2a:b5:
29:68:4f:8e:db:e9:87:c6:19:95:e0:8e:46:49:9d:
80:d9:cf:af:5c:cf:f1:cd:7f:e3:51:46:13:27:11:
cc:5f:8d:42:31:17:d4:f3:a1:3c:49:96:f1:61:16:
da:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F7:D9:45:75:5B:27:E0:27:15:17:1B:F4:64:78:57:B2:CF:5C:A3
X509v3 Authority Key Identifier:
keyid:6D:F5:67:EC:F8:65:48:06:00:98:F5:AD:67:A1:B2:BF:FF:1B:4B:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:3b:e9:9c:98:f2:88:3e:22:34:d9:85:d4:5a:a8:60:ba:58:
29:b5:87:37:2d:9a:eb:ae:78:e6:4d:b1:0f:a1:d7:c0:2d:92:
55:c1:fb:ee:66:b7:99:21:de:69:98:a4:15:79:f3:30:d0:8e:
6b:07:49:a3:84:67:16:17:13:c8:ab:93:0b:6c:2d:f3:f0:54:
54:46:93:00:69:c7:fa:4f:54:5e:ed:73:22:52:7c:7a:5f:74:
03:19:fa:64:97:41:8a:c7:93:fe:d3:70:f9:ab:e4:ec:c2:c2:
26:9a:eb:92:98:7e:25:96:fe:c7:66:ba:50:72:3c:a5:a8:f6:
49:61:54:a8:53:3d:e8:06:b5:3a:5a:af:54:d5:22:98:d3:7d:
83:77:21:cf:ce:dd:24:33:de:b4:f7:54:a7:bc:fa:df:86:9a:
cb:db:10:f2:6a:73:85:10:a2:0e:0e:21:9e:5a:e8:e6:4f:a0:
45:2b:83:3a:48:96:d3:70:73:95:b9:ef:82:57:27:67:31:61:
51:c6:59:aa:6a:aa:a8:4a:0e:86:94:e2:46:93:74:e9:96:ad:
6e:45:80:01:f2:69:76:55:4d:7e:eb:8c:aa:cc:cc:30:1f:d8:
29:ad:30:6e:e4:2e:fd:6e:87:1e:6a:e3:8f:82:56:c0:46:b5:
51:ff:2e:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:28:08 2025 by rpki-client