Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
File: bQ1uHM2JDfL16cFF7LpGiZzOs70.mft (raw, json)
Hash identifier: X+6EJ7ZEheq+HrVjFTmneTvJEEmt1Lq2hZr8lzml6Kc=
Subject key identifier: A3:DA:F4:88:03:DF:BC:AE:99:23:A3:87:B0:4E:24:7F:7B:16:B0:67
Authority key identifier: 6D:0D:6E:1C:CD:89:0D:F2:F5:E9:C1:45:EC:BA:46:89:9C:CE:B3:BD
Certificate issuer: /CN=6d0d6e1ccd890df2f5e9c145ecba46899cceb3bd
Certificate serial: 0198D4E091F1B21BD6E07C364AC4379AD466
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
Manifest number: 12D9
Signing time: Sat 23 Aug 2025 03:02:23 +0000
Manifest this update: Sat 23 Aug 2025 03:02:23 +0000
Manifest next update: Sun 24 Aug 2025 03:02:23 +0000
Files and hashes: 1: bQ1uHM2JDfL16cFF7LpGiZzOs70.crl (hash: 8E+ic0Xes8ZcQbmiD3TltYPPRCFaEp5stue8azgY0U0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:91:f1:b2:1b:d6:e0:7c:36:4a:c4:37:9a:d4:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d0d6e1ccd890df2f5e9c145ecba46899cceb3bd
Validity
Not Before: Aug 23 03:02:23 2025 GMT
Not After : Aug 24 03:02:23 2025 GMT
Subject: CN=a3daf48803dfbcae9923a387b04e247f7b16b067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:70:e9:4c:43:72:e5:cd:ce:fe:af:db:de:34:
68:43:85:8a:a9:c4:07:0e:9e:6b:e9:e1:90:ab:29:
ff:fa:0a:08:03:14:d6:ec:44:3d:92:b4:52:1c:8a:
ee:5d:45:39:a3:58:29:02:19:09:48:e2:0b:ab:05:
46:21:67:44:f3:53:7c:76:18:b5:a7:8e:fc:e0:c4:
55:64:c3:b3:22:c2:fa:cd:82:00:8d:db:7d:45:74:
f3:3c:c6:4c:63:d1:26:79:cc:17:cb:d5:a0:e1:6d:
f8:8f:e9:f0:3c:86:e6:c0:1d:01:f6:2b:96:4b:b6:
55:89:30:e1:e0:89:78:a2:90:a0:51:1b:3e:de:c6:
55:44:9c:62:77:c4:52:27:85:70:61:5c:e5:ba:cc:
5b:42:18:df:04:27:2b:93:e4:37:7f:ce:c7:cf:f9:
8b:71:03:d6:5e:47:fb:6f:94:09:1e:50:d5:eb:3f:
ce:34:b4:2f:51:68:ce:00:35:dc:31:52:0a:cc:7d:
6c:44:63:76:07:9b:5b:bf:f9:e9:61:12:9d:b5:7f:
ee:e4:9b:99:fc:fe:31:8d:bf:c1:77:f0:fc:8f:dc:
30:21:35:75:ca:59:fa:1e:80:2a:e3:81:ae:92:d9:
9d:2f:83:e5:7a:2a:5f:bf:c2:08:de:21:58:6b:47:
d3:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:DA:F4:88:03:DF:BC:AE:99:23:A3:87:B0:4E:24:7F:7B:16:B0:67
X509v3 Authority Key Identifier:
keyid:6D:0D:6E:1C:CD:89:0D:F2:F5:E9:C1:45:EC:BA:46:89:9C:CE:B3:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:68:1e:d8:1d:66:54:32:8e:33:0b:8f:94:8a:d6:70:bb:8f:
3b:e4:ae:ae:57:4f:f9:17:6a:9f:10:43:b1:30:39:ab:4d:19:
7b:53:65:13:95:60:b8:6d:e5:f9:3e:1a:6b:78:91:eb:b9:68:
80:b8:62:16:ad:8d:3b:66:03:84:96:21:bd:56:52:63:96:15:
50:93:0d:55:6e:c2:17:b2:66:42:72:83:01:7f:de:e5:90:3c:
e8:5d:de:6a:41:ca:c0:ce:32:ea:e6:73:59:66:29:4f:67:ea:
f0:df:3b:f3:be:00:5f:13:a3:a9:09:05:96:cc:83:80:e8:aa:
3a:e3:dc:82:08:43:83:29:1d:73:bf:9f:7c:78:20:ea:33:67:
70:8d:4e:86:d8:33:73:b2:a9:31:ef:31:ee:69:91:ea:15:39:
97:82:71:e4:e3:cb:55:57:65:b6:a1:44:0f:16:f0:ec:eb:ce:
d3:5a:93:7f:e3:15:90:08:6d:09:0d:47:5c:6c:a3:dc:4b:45:
ff:40:9d:b7:6e:fb:ac:2c:a9:68:9f:35:4d:1e:70:03:38:2f:
48:7a:4d:37:47:51:c3:f7:32:4a:a9:03:83:68:73:2f:9d:c4:
a4:a7:fa:f5:a4:8e:b7:15:fa:10:44:e6:b3:78:2a:32:7e:5d:
09:75:61:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:48:25 2025 by rpki-client