Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
File: BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft (raw, json)
Hash identifier: nIfru9oZUVXYrdxLFdBFecFT/6NfFDSSaR9z+xXRRXA=
Subject key identifier: B2:6C:AF:F1:0A:27:BD:F1:31:7E:95:81:02:0C:FC:B3:17:A8:B9:65
Authority key identifier: 07:35:DA:A8:CF:E2:5D:D1:2A:2C:26:E0:FF:CC:E9:76:36:74:8E:BD
Certificate issuer: /CN=0735daa8cfe25dd12a2c26e0ffcce97636748ebd
Certificate serial: 019892C8AE4C40876F7398F3D33710F33635
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
Manifest number: 1625
Signing time: Sun 10 Aug 2025 07:01:22 +0000
Manifest this update: Sun 10 Aug 2025 07:01:22 +0000
Manifest next update: Mon 11 Aug 2025 07:01:22 +0000
Files and hashes: 1: BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl (hash: w533ECZwCQOSwnV78gbuTAPH4JJSWg+NosjnCLSraN8=)
2: x6seRwBOq_CRZGJqhRd1EBp_kiI.roa (hash: rR2gIHJRwQudNQFzsP+C+tD9iC/4YNN6FWVD4AJ320s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 07:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:92:c8:ae:4c:40:87:6f:73:98:f3:d3:37:10:f3:36:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0735daa8cfe25dd12a2c26e0ffcce97636748ebd
Validity
Not Before: Aug 10 07:01:22 2025 GMT
Not After : Aug 11 07:01:22 2025 GMT
Subject: CN=b26caff10a27bdf1317e9581020cfcb317a8b965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:38:08:89:12:9a:72:13:2f:9f:dc:73:3d:aa:
ba:f9:db:cb:24:cd:aa:26:f0:63:27:5d:5f:4a:87:
cf:e1:1f:5e:0a:63:96:7b:14:9d:fe:93:7b:fc:7d:
33:a3:a1:26:85:0e:68:f1:1c:2d:5c:ac:5b:0b:1d:
8e:44:83:a9:40:b9:4e:e6:bc:91:8e:58:f3:8e:4a:
06:e6:7e:f2:da:a2:b2:0c:1f:c6:7d:47:6a:12:8b:
ab:a0:97:dc:8b:9f:53:ce:23:00:e3:d3:cd:20:a7:
f7:61:0a:02:68:db:23:2d:4c:6e:b7:37:b3:0c:03:
db:50:61:09:7d:f8:db:87:dc:67:df:97:01:aa:e1:
a5:a3:3f:0a:7a:91:c5:5c:20:8c:17:f1:f3:30:df:
96:17:0e:c3:da:9b:67:88:59:4a:b2:75:e1:4f:6f:
d7:3a:c9:b3:92:58:7e:6b:a7:c3:98:9f:38:4f:de:
7d:3b:d1:15:e6:a7:5a:b5:9b:d2:aa:4e:21:89:e1:
fd:8c:39:9f:20:f8:ba:c9:4c:42:d5:fb:48:af:8c:
77:34:ad:1a:76:e2:3d:e2:a5:95:8a:96:34:54:5f:
97:d1:87:74:6e:53:d1:3d:f3:d3:18:20:98:59:2f:
0f:94:44:d9:32:66:cb:28:4b:3a:e0:07:b5:50:23:
9b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:6C:AF:F1:0A:27:BD:F1:31:7E:95:81:02:0C:FC:B3:17:A8:B9:65
X509v3 Authority Key Identifier:
keyid:07:35:DA:A8:CF:E2:5D:D1:2A:2C:26:E0:FF:CC:E9:76:36:74:8E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:6c:43:c4:3a:74:32:09:18:6a:4c:86:8d:af:be:2b:7e:63:
71:01:7d:4f:d0:fa:75:41:87:3e:e5:93:f6:63:37:a3:16:a8:
07:aa:77:c9:4b:6f:b3:a0:4c:b2:1b:c9:36:f4:29:d1:75:f3:
11:c8:42:8f:47:87:30:e9:e8:c2:6a:0c:3e:a2:6e:69:7c:1e:
93:7c:fd:31:14:c9:51:3e:e7:bb:45:a2:dd:25:c3:37:e2:12:
36:2a:ad:59:99:20:99:f1:78:62:25:d7:61:52:8d:21:00:00:
de:1e:48:5b:d4:96:eb:75:42:d1:d0:4a:8f:3b:a7:c5:b0:7e:
2d:8c:cb:d6:a5:8e:f8:c2:a7:4d:f3:d4:ff:8c:10:03:a0:8b:
fd:6b:58:fd:9a:a0:6a:9c:d9:31:0a:79:c4:4c:32:23:58:e7:
64:72:f2:3f:0c:b1:86:04:31:a5:dc:d7:7d:03:32:7b:4e:e3:
ca:9c:83:cf:89:35:a8:3c:4d:c4:ec:b4:10:9f:4a:fc:a9:de:
f2:80:03:c6:59:15:b3:1c:79:2b:b4:a6:64:71:e3:42:48:fc:
08:ea:61:56:53:37:dd:b3:c9:67:aa:fc:20:bb:67:8b:76:5f:
2f:e1:fe:9e:f2:5f:6b:ed:08:25:b4:ab:92:df:0a:b1:eb:07:
22:79:cc:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 10:46:59 2025 by rpki-client