Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
File: bSID7B5abCZsyjm5rxq-LLILGVo.mft (raw, json)
Hash identifier: 2/LTr0SpmnHCTCstpk44ErWRNHzJ90H7czXnXDhnF2c=
Subject key identifier: C6:DB:28:CF:1C:A2:D4:82:F3:9F:D0:C6:0B:99:57:A8:B0:52:BF:D8
Authority key identifier: 6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
Certificate issuer: /CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Certificate serial: 019873E1CF9715803D1B6BC879168BA41B2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
Manifest number: 1616
Signing time: Mon 04 Aug 2025 07:00:35 +0000
Manifest this update: Mon 04 Aug 2025 07:00:35 +0000
Manifest next update: Tue 05 Aug 2025 07:00:35 +0000
Files and hashes: 1: bSID7B5abCZsyjm5rxq-LLILGVo.crl (hash: UrUmE1ToD0mgBF1OcBBG7itQcxszI5zdeoKeT5BEQII=)
2: h9zvvPI2dBY4jNWQKpPxUoE047A.roa (hash: PkWglafHXDxF9KIzM61BgLg1omYPGots3ZThAKgjHP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e1:cf:97:15:80:3d:1b:6b:c8:79:16:8b:a4:1b:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Validity
Not Before: Aug 4 07:00:35 2025 GMT
Not After : Aug 5 07:00:35 2025 GMT
Subject: CN=c6db28cf1ca2d482f39fd0c60b9957a8b052bfd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:74:c0:50:71:fe:4b:33:c1:27:b9:3f:0c:60:
fd:2a:bf:ce:3f:b8:4b:f0:2b:4f:26:dc:5c:e9:58:
18:2e:94:36:7c:99:e2:20:18:2a:1f:5d:79:49:6e:
d3:a5:9a:b1:38:04:9f:66:91:95:b5:2c:9e:66:13:
7a:e2:0e:67:9d:b9:d4:2f:d4:f0:54:76:8e:bc:fb:
80:b3:8b:aa:c4:8e:29:10:e7:67:d2:80:ea:64:3e:
e7:cd:5f:6f:4b:4f:ab:ab:e4:f5:3f:c7:58:13:3b:
fc:ee:a1:9a:9d:db:d9:cf:52:01:49:fe:0c:cc:25:
36:48:34:50:66:f1:b0:b7:92:43:a2:63:da:6c:fb:
0f:4a:52:50:c8:d8:26:ee:5e:ac:bc:45:e1:3d:95:
c3:b9:ce:96:43:5e:fa:4b:97:ad:66:4c:b0:45:9a:
11:37:a8:b5:17:68:c4:7a:30:30:18:e6:b5:a8:fc:
45:25:3e:ee:48:88:fc:3c:e0:bd:37:ec:3e:a2:ca:
91:b1:60:06:11:04:8a:fd:ae:17:ea:e2:4d:e4:e7:
5a:3c:85:f1:c0:63:19:b2:cd:b4:05:06:6b:f8:c8:
dc:35:98:67:01:6c:3a:7c:97:16:c2:6a:af:5f:59:
3d:8e:97:93:47:bd:b0:8a:4e:4a:cf:3c:98:ff:4c:
65:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:DB:28:CF:1C:A2:D4:82:F3:9F:D0:C6:0B:99:57:A8:B0:52:BF:D8
X509v3 Authority Key Identifier:
keyid:6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:a2:78:f3:ac:71:1b:67:62:cd:4e:f0:7a:7b:af:8d:6b:e4:
54:a8:4f:d1:ae:36:08:1e:76:f3:58:ba:08:f7:fd:95:5b:dd:
39:c1:3c:f0:a2:35:2b:46:0e:79:42:ea:93:cb:f1:71:a6:80:
e6:bc:c5:9c:62:4b:ba:ee:83:d2:04:9a:7c:1f:7a:4d:a7:72:
19:7a:6e:11:22:c4:ad:da:f0:2e:58:0a:34:b1:73:a4:52:79:
19:41:30:da:df:b8:a0:0c:a4:9b:d8:5b:b4:4a:c6:71:d1:e3:
46:6d:cb:ea:c2:c5:c1:e1:a1:be:d0:ac:d8:66:db:70:f9:c8:
25:3a:11:4e:d8:0b:2c:d8:4b:a8:a3:35:f1:cb:d2:e0:87:b5:
03:14:5f:e8:b0:ba:9e:4e:0d:e3:36:ef:38:a2:f3:4a:c6:d6:
8c:6b:ce:fb:32:44:ca:52:a3:6c:b5:07:ba:c1:8f:e1:4a:e5:
bd:56:71:64:e7:1d:d0:0d:9c:71:3c:44:5b:e6:2d:b3:46:26:
29:aa:fe:51:db:9a:94:72:14:8c:1f:d1:94:a5:ac:24:d6:de:
0f:ea:22:22:25:48:dc:e4:2d:f1:59:bd:80:13:5b:c1:a3:3b:
d6:d2:e8:36:25:51:a3:f6:83:a2:05:f8:06:71:f9:60:fd:6f:
33:8a:53:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:09:42 2025 by rpki-client