Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
File: bzipg89Dc6pJdJhasi1RTA9IHS4.mft (raw, json)
Hash identifier: 9L26uMlul4xuVABhJ2eulx+ovc+zZjlddxTvvKmyUSk=
Subject key identifier: 37:42:AF:0A:CF:11:93:38:9C:74:BB:96:B4:DB:57:BA:6F:09:03:AD
Authority key identifier: 6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
Certificate issuer: /CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Certificate serial: 01988B0F72DEAFAF7C6B4D9BBE3D0FDF560F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
Manifest number: 0270
Signing time: Fri 08 Aug 2025 19:01:42 +0000
Manifest this update: Fri 08 Aug 2025 19:01:42 +0000
Manifest next update: Sat 09 Aug 2025 19:01:42 +0000
Files and hashes: 1: HZb4ypfyyLknrNflDGCKDQospm0.roa (hash: DJb41fbhgLGXN4Umv3DyaNZTQa8ZY7nKkJ22hR0xLS4=)
2: bzipg89Dc6pJdJhasi1RTA9IHS4.crl (hash: 1jfh/g3bg8fCQRSetZlBEhP5ESFweg2v0dmpwRz5ArY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0f:72:de:af:af:7c:6b:4d:9b:be:3d:0f:df:56:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Validity
Not Before: Aug 8 19:01:42 2025 GMT
Not After : Aug 9 19:01:42 2025 GMT
Subject: CN=3742af0acf1193389c74bb96b4db57ba6f0903ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9b:04:d9:60:24:f1:db:9d:63:e6:c5:6d:8e:
fe:9e:3b:70:ab:d1:6a:7b:5a:b1:68:65:10:65:6e:
78:cc:11:f1:c2:bc:62:41:12:61:5b:f1:b4:cc:94:
24:b1:44:09:a0:16:9b:c7:bf:58:54:dc:e8:1c:2c:
34:6c:a5:1b:cb:14:b3:dd:6f:0b:83:66:c5:04:34:
e2:06:6d:eb:1a:ae:e6:d0:60:86:e8:97:9b:cf:fe:
27:97:4b:b5:db:36:59:98:2d:cd:d6:2a:49:a2:f3:
f1:03:0f:e7:98:be:ae:e7:29:de:5e:ed:ea:ba:14:
a1:81:a4:4b:3a:78:7a:97:3e:75:dd:4e:96:df:03:
d8:72:bd:9b:34:a0:66:e5:7e:78:9f:f5:47:c5:33:
20:65:4f:ab:d3:3f:d6:64:de:0b:0b:08:4f:6f:e0:
1f:6b:0b:f4:91:ca:09:80:ba:44:40:b1:e5:58:e4:
35:1d:d7:52:9c:a2:91:e6:fb:fd:cd:bd:f2:ea:b3:
2d:f2:fc:03:c3:52:77:a7:d8:19:ae:d4:7d:46:52:
7a:89:6a:73:1b:d8:2c:b9:e3:02:ce:7b:3e:87:bd:
0c:32:64:4c:49:8c:8c:cf:7b:9c:0a:f5:4b:20:a4:
d3:f5:cb:ff:8e:6f:6f:e8:94:8b:13:5e:54:f0:e1:
d4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:42:AF:0A:CF:11:93:38:9C:74:BB:96:B4:DB:57:BA:6F:09:03:AD
X509v3 Authority Key Identifier:
keyid:6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:c2:9f:f2:87:a8:ac:e3:d9:47:ce:aa:45:56:43:8c:b9:e8:
99:c4:86:1d:94:ec:ae:5b:d8:e6:d6:c7:cc:44:34:dc:bc:a1:
cf:7c:9c:84:16:37:9e:d6:66:45:83:d8:ce:6b:68:3a:98:51:
d4:40:96:3e:a9:9c:da:12:fc:58:86:ec:38:40:46:30:53:24:
e5:f9:6f:22:2a:6d:32:00:8e:23:00:af:52:e8:5c:c7:a2:93:
40:9a:86:7d:af:16:d4:dc:f2:7f:a8:85:9a:02:ac:39:12:21:
e6:f9:6e:08:77:15:5d:54:ec:cb:bc:92:fa:ac:7e:ec:73:4f:
8a:88:30:fc:9c:6d:d4:43:b4:72:e9:0b:45:69:ec:25:3f:e4:
c3:36:a3:31:ee:25:23:1c:83:7c:3d:c7:86:31:93:76:4b:d6:
fe:9f:33:2a:fd:00:b7:ab:05:42:6a:21:f1:08:32:af:33:ba:
25:a6:5f:cb:da:f9:66:d2:5c:cc:c3:e8:e3:c4:a5:29:3b:87:
8f:5c:9d:96:31:c4:cc:f2:9f:ac:b8:7a:d9:b9:58:6d:b2:68:
d5:17:4a:5c:1f:72:db:9d:1a:81:3d:80:c1:6d:eb:b1:40:e3:
29:89:93:c4:86:c9:0a:0b:32:fb:f2:aa:5b:09:bf:3e:4e:71:
e0:1b:87:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 02:47:54 2025 by rpki-client