Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
File: bfHIcky70DS6t6Da3wq0uZ_2b_8.mft (raw, json)
Hash identifier: Y0faOYjnbJOzWzqALBpZQ5JoQXw8l70+/yHpVcuDkmA=
Subject key identifier: 49:1B:B2:C6:63:E0:E7:2F:C3:5D:93:3E:4F:89:5D:C0:4B:CE:49:37
Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Certificate serial: 0198733CF9388C8D51162366DF3FB75D7054
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
Manifest number: 1618
Signing time: Mon 04 Aug 2025 04:00:32 +0000
Manifest this update: Mon 04 Aug 2025 04:00:32 +0000
Manifest next update: Tue 05 Aug 2025 04:00:32 +0000
Files and hashes: 1: 3gASlQlN9UdPtrWqrdLITdzt5Ew.roa (hash: ramhN8+V67WDz+dJge66wgSFRzcM7UnMyKgsybDZiQA=)
2: bfHIcky70DS6t6Da3wq0uZ_2b_8.crl (hash: HloeUXLMJ474mjh8d1zSn2yf+xHzVdlZbzmgU3MHrzw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:3c:f9:38:8c:8d:51:16:23:66:df:3f:b7:5d:70:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Validity
Not Before: Aug 4 04:00:32 2025 GMT
Not After : Aug 5 04:00:32 2025 GMT
Subject: CN=491bb2c663e0e72fc35d933e4f895dc04bce4937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:45:46:73:52:aa:24:32:95:48:70:97:87:17:
0e:b7:2b:74:1b:f3:95:e6:ff:f0:9b:b0:d5:e0:1b:
0b:69:07:c5:54:b6:75:0d:0b:cd:bd:f8:9d:ed:77:
86:af:42:0d:28:76:78:46:03:ac:b4:91:fe:04:33:
0a:99:3e:b9:ba:df:6f:41:92:c9:bc:b1:b4:ee:54:
dd:e1:f0:d9:4a:75:bc:4b:b3:69:3a:f6:fe:12:33:
76:37:98:b2:df:0a:d1:10:e3:e9:1b:44:28:cb:b5:
3b:64:c0:cb:05:a4:53:72:6f:1e:ab:9d:cb:4d:88:
2a:ff:52:36:ba:67:18:a8:a8:f2:9a:91:59:d1:19:
d7:b6:cc:f4:f2:5a:6f:24:e1:a3:b7:2b:8d:ed:5d:
89:c8:76:a8:3f:7b:ae:63:20:0d:d6:9a:26:10:b6:
0e:1a:92:83:00:0a:49:02:18:e0:44:5b:a1:a2:2b:
ff:a2:f2:ad:61:cf:f8:6c:1b:31:72:a2:b0:72:7e:
12:51:45:20:ed:c9:0b:8a:c4:f8:4f:00:96:87:78:
22:06:5c:c7:2f:b0:3a:85:89:41:6b:9a:99:50:35:
7d:0e:6d:53:f8:12:8c:48:1c:24:2b:3b:5a:7f:05:
fc:9e:8b:15:f6:50:6a:b1:82:8d:65:d7:b3:f9:ef:
33:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:1B:B2:C6:63:E0:E7:2F:C3:5D:93:3E:4F:89:5D:C0:4B:CE:49:37
X509v3 Authority Key Identifier:
keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:12:22:e0:9e:af:b2:03:86:18:f1:a2:82:7b:ef:c0:3b:99:
f7:8d:5e:98:75:bb:6f:44:ba:ec:45:f8:47:a3:74:ad:55:4d:
8b:4f:81:34:65:ea:02:3d:1e:6a:b6:68:b4:22:37:dc:43:52:
6e:ba:c6:bf:ef:83:6b:1a:fc:24:6e:e5:43:31:8c:b0:b8:46:
3d:f6:65:e7:41:d7:15:33:0a:14:24:e8:bd:36:cc:ce:72:2c:
bb:e1:1a:8c:9f:9a:34:ac:ce:02:70:dc:4b:50:40:1f:ea:24:
ab:d6:db:87:6d:03:c4:1d:e1:ec:37:75:f7:53:16:f1:51:2e:
51:31:75:b0:37:b9:75:63:c6:b4:14:c8:14:3a:de:72:36:3b:
37:ce:f3:a5:49:bb:22:0c:67:7f:79:47:ea:20:e5:ae:95:d5:
d4:37:fc:15:8a:e3:1a:ef:0c:a8:fe:22:b4:eb:fc:e6:11:20:
0f:e7:94:fb:a3:4b:c4:bc:73:a1:b4:37:e1:c3:c3:65:08:e4:
af:4c:76:58:17:4b:1e:0b:a6:73:a0:e7:03:59:0c:19:b6:7c:
ba:cc:c8:02:11:6d:85:bf:f7:ba:58:0d:14:08:06:3b:94:46:
bf:54:fc:af:12:e8:96:9f:dd:8f:a5:43:21:f2:1f:d9:a1:e5:
31:61:3e:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:22:29 2025 by rpki-client