Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
File: bdLO01LwH3613HYZ7XFMa2pceR4.mft (raw, json)
Hash identifier: QrmVSdvfElk5BeFpgALfp75RgIy3CT711FrUF1KhD+k=
Subject key identifier: 95:18:32:56:0D:99:7D:97:C0:A9:1B:B2:35:31:66:12:2D:EE:F0:FA
Authority key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
Certificate issuer: /CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Certificate serial: 019889201372872C66C84A88A3F010A8C53E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
Manifest number: 021F
Signing time: Fri 08 Aug 2025 10:00:37 +0000
Manifest this update: Fri 08 Aug 2025 10:00:37 +0000
Manifest next update: Sat 09 Aug 2025 10:00:37 +0000
Files and hashes: 1: bdLO01LwH3613HYZ7XFMa2pceR4.crl (hash: 4OILZ/kkt2uriDECZD3P1cAxsfsWtqBqE4Rk+qJSajI=)
2: ldaG2ZtwFXa0D8MT2zJfF9j3gsg.roa (hash: Iho31engw2p2ICkoCri0OTvpMAFdFfQ9ZJ+brUIBG2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 10:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:20:13:72:87:2c:66:c8:4a:88:a3:f0:10:a8:c5:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Validity
Not Before: Aug 8 10:00:37 2025 GMT
Not After : Aug 9 10:00:37 2025 GMT
Subject: CN=951832560d997d97c0a91bb2353166122deef0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d4:f3:20:3c:96:90:00:68:59:ba:aa:67:87:
06:89:68:81:a5:b3:ca:10:c7:56:7f:e9:ae:f5:e2:
26:b2:ab:2b:d8:52:a2:b3:e9:74:79:ae:92:af:2b:
8a:31:87:0c:ad:4d:23:7c:a4:44:14:6e:68:0b:69:
2b:63:a6:16:e8:c2:07:d0:9a:ad:53:99:8d:ef:a2:
64:e9:e0:84:33:f7:8c:25:3d:42:ab:c2:0c:ba:7a:
c0:06:14:a6:32:68:01:57:af:40:1a:57:7a:e3:0d:
0c:27:fa:59:ad:5e:d8:4b:c9:a9:a1:ae:d9:cc:4d:
ab:30:54:b3:13:62:1b:36:2a:12:e1:03:e7:c8:43:
5e:d5:f3:06:77:00:8c:00:98:df:29:e0:3f:ff:d4:
3b:2d:58:97:23:68:5e:ac:88:6a:45:4a:5c:f5:da:
a9:c1:4f:3b:cd:ac:91:9a:24:d6:16:57:f3:50:c2:
1f:4f:aa:f9:22:89:91:06:b3:3e:d4:e0:12:98:e8:
41:c8:7f:41:27:8e:46:47:32:52:c2:d6:ad:1b:2d:
87:63:6b:99:8a:d8:3f:a6:26:5f:54:88:23:15:2b:
60:af:c8:87:fd:89:48:48:eb:8f:46:69:a1:0b:0b:
70:7b:b4:4c:0c:81:83:60:d1:84:39:6c:13:e4:0d:
98:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:18:32:56:0D:99:7D:97:C0:A9:1B:B2:35:31:66:12:2D:EE:F0:FA
X509v3 Authority Key Identifier:
keyid:6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:dd:c1:0f:0f:21:0a:06:3f:f9:4d:cf:5b:4a:44:c3:bb:57:
ae:7b:c6:64:45:7c:7f:8e:91:43:62:30:6e:a4:a6:8b:05:2c:
1a:0d:5a:a5:ff:ee:e3:95:7a:f3:fa:3f:01:75:ef:53:b8:c6:
78:61:d1:72:23:05:4e:52:b8:b2:2b:98:e3:83:9a:ae:ab:a7:
82:ed:d5:01:6f:7f:bd:a3:fe:1d:e9:d1:4d:88:5d:91:fe:51:
ec:2c:7a:68:73:b2:c8:09:ab:93:95:ed:b2:d7:d1:92:56:28:
80:96:93:8d:60:a8:9f:5b:2a:34:81:84:7b:22:67:45:d9:57:
26:f3:cd:b8:b1:8b:a8:a8:ed:aa:87:87:48:20:cc:f1:6c:a9:
26:49:01:5d:75:71:ad:32:52:a2:4a:01:2f:99:18:39:99:90:
fe:10:52:aa:3e:10:98:56:02:66:3b:fb:27:fa:26:ba:af:3a:
ae:fb:45:82:e1:1b:4a:b6:f9:55:03:f8:77:83:ca:8a:13:c1:
c6:57:46:ec:13:89:e0:4c:ef:15:c5:19:62:55:9f:51:71:7d:
95:85:1d:57:36:fe:b8:7b:53:49:fd:9a:4b:23:d3:f6:6e:86:
d9:c4:d0:28:46:25:cb:a8:f5:63:c8:a8:45:5e:bb:92:f6:60:
3a:ef:94:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 12:59:27 2025 by rpki-client