Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
File: bdLO01LwH3613HYZ7XFMa2pceR4.mft (raw, json)
Hash identifier: xWTld002kwTqZdAM5EZuEhMtpYJsVs949bR4QOZvE4g=
Subject key identifier: FF:86:13:52:96:42:EF:A1:EF:AA:06:24:D9:2F:4D:62:FB:18:74:AD
Authority key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
Certificate issuer: /CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Certificate serial: 01976D0664D19B3DE92C5470230EBCC62F53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
Manifest number: 018C
Signing time: Sat 14 Jun 2025 06:00:24 +0000
Manifest this update: Sat 14 Jun 2025 06:00:24 +0000
Manifest next update: Sun 15 Jun 2025 06:00:24 +0000
Files and hashes: 1: bdLO01LwH3613HYZ7XFMa2pceR4.crl (hash: yt2g6ppkp/4dk5s5yFFJ7FD8JzQFlmc6Kc8YpD9nO7w=)
2: ldaG2ZtwFXa0D8MT2zJfF9j3gsg.roa (hash: Iho31engw2p2ICkoCri0OTvpMAFdFfQ9ZJ+brUIBG2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:64:d1:9b:3d:e9:2c:54:70:23:0e:bc:c6:2f:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Validity
Not Before: Jun 14 06:00:24 2025 GMT
Not After : Jun 15 06:00:24 2025 GMT
Subject: CN=ff8613529642efa1efaa0624d92f4d62fb1874ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1f:29:f4:57:11:88:3c:31:c0:4b:4b:a0:8e:
9c:0b:9e:ce:5b:fa:e3:5a:b9:88:21:bd:b0:97:4f:
68:a6:22:3c:43:ad:d5:ea:29:5c:0a:8b:f1:d7:06:
aa:e4:e0:cb:7f:76:75:d3:8a:d2:62:7a:4a:4f:60:
ba:8e:34:ed:c6:8f:6a:a3:96:5a:91:f7:06:15:e9:
b3:cb:32:18:e0:a1:ab:7f:9e:72:55:64:64:ed:24:
aa:fb:0c:03:57:6f:6d:54:7e:a7:a2:dd:4a:c6:e1:
1c:f9:2b:45:f0:0e:45:31:5e:24:31:31:83:85:48:
e2:17:3d:ae:5d:ef:da:e6:ca:7f:4c:ff:42:21:64:
ad:dc:0a:af:40:dc:05:b6:81:4e:4f:61:1b:5a:65:
bc:e0:23:5c:66:32:33:bf:62:c2:00:5e:32:75:4a:
7b:c4:f6:84:5f:bd:9f:de:ef:42:4a:b2:b2:e7:bc:
63:c1:5f:9d:db:31:e4:c2:a7:5b:e1:78:bc:c8:8a:
fc:0a:12:45:13:fd:84:07:32:93:4f:24:e7:f9:13:
ab:63:7e:e9:28:07:2d:ea:9b:78:c8:47:c8:85:46:
58:bf:76:60:b4:19:48:a5:7e:9b:7f:9d:b6:42:dd:
00:52:ac:5c:63:b0:a2:d4:dc:22:bf:3f:4b:a8:c6:
b5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:86:13:52:96:42:EF:A1:EF:AA:06:24:D9:2F:4D:62:FB:18:74:AD
X509v3 Authority Key Identifier:
keyid:6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:04:fd:88:28:45:84:39:55:1c:6c:8d:3a:fa:7e:65:34:d9:
81:6b:c4:ae:cd:38:6c:7f:72:67:39:5a:c2:55:df:dd:d7:28:
fc:e3:41:96:af:0a:e8:02:1c:a9:94:fe:c9:d1:7b:c1:4f:6d:
76:0f:9d:e4:14:dd:c9:55:94:de:35:33:88:66:4e:77:90:44:
d9:eb:5f:84:1a:15:20:89:b4:2d:73:29:b2:39:a9:26:15:6e:
ea:65:a6:a8:36:4f:7f:6d:bf:db:13:b1:5c:38:4f:a7:c5:52:
3b:43:75:c9:1b:c3:ef:11:91:68:76:64:92:07:7c:5e:42:bc:
ff:d7:b3:fd:e4:8c:aa:9b:56:10:b7:8c:9f:d9:eb:f1:44:13:
90:d0:cc:6c:23:7a:df:eb:72:ed:c2:cb:95:00:b3:91:87:da:
34:6a:fe:99:98:b8:23:f6:34:c3:ba:b4:5b:89:e6:1e:b1:85:
68:42:7a:82:80:79:b4:99:0a:62:db:2e:77:4d:77:a1:51:05:
68:ab:66:7a:44:3a:b6:f9:63:90:b9:52:f0:29:35:e3:5b:ba:
51:bd:7d:ec:52:24:11:33:ad:3f:fe:45:d1:a2:11:af:c4:c2:
5d:4f:1c:78:ea:3d:d0:2f:f1:b7:f9:58:31:b0:6d:15:ad:ef:
d1:4f:b3:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:33:38 2025 by rpki-client