Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
File: bLdrU2M4PWjlVeUnClkx2DQOGA0.mft (raw, json)
Hash identifier: YFxSPhEA28Rw6h90G/x4443toC6LP4ei/E7Z4kBxjwI=
Subject key identifier: F0:CF:F8:44:D9:80:E9:AB:8A:FF:74:21:6D:33:9E:29:53:BA:24:B3
Authority key identifier: 6C:B7:6B:53:63:38:3D:68:E5:55:E5:27:0A:59:31:D8:34:0E:18:0D
Certificate issuer: /CN=6cb76b5363383d68e555e5270a5931d8340e180d
Certificate serial: 019873E23751B5E240F8BEC49E2B7171275F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
Manifest number: 0DA4
Signing time: Mon 04 Aug 2025 07:01:01 +0000
Manifest this update: Mon 04 Aug 2025 07:01:01 +0000
Manifest next update: Tue 05 Aug 2025 07:01:01 +0000
Files and hashes: 1: bLdrU2M4PWjlVeUnClkx2DQOGA0.crl (hash: BKeu/vzvi8KtUokcaPfDiTQhx6eLCrOWe1XwJExCBKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:37:51:b5:e2:40:f8:be:c4:9e:2b:71:71:27:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cb76b5363383d68e555e5270a5931d8340e180d
Validity
Not Before: Aug 4 07:01:01 2025 GMT
Not After : Aug 5 07:01:01 2025 GMT
Subject: CN=f0cff844d980e9ab8aff74216d339e2953ba24b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f7:8a:5e:14:96:8f:f7:74:2b:d0:16:2d:54:
be:39:91:67:04:ec:7c:ca:7b:24:0c:fe:db:67:5a:
bb:44:83:6f:ae:28:55:63:46:8c:6a:29:57:64:c0:
81:90:79:a0:98:6b:d3:03:60:5e:e5:ea:ee:4e:85:
49:12:d8:51:e6:78:d4:30:ca:95:83:5b:ed:43:69:
49:b2:11:18:9d:48:ff:c1:9e:e0:58:fd:fd:f9:e6:
71:0d:6d:c2:85:84:37:08:2e:5a:36:f0:2e:ab:0f:
78:7d:8d:e5:53:7f:a6:31:79:17:5b:fd:c1:d2:71:
d4:50:f0:08:6b:20:af:75:06:6c:84:fc:d3:45:ce:
46:f6:60:27:5c:7b:66:10:39:c4:16:52:1e:74:49:
21:96:43:7e:27:b0:52:6b:64:0d:7f:8a:7c:64:9c:
32:3a:d7:57:ef:2e:ba:19:6c:87:15:53:f1:c4:b9:
1e:21:20:5f:77:1c:d5:8d:d2:b9:14:d4:2e:7f:c2:
bb:af:24:ef:dd:a2:71:62:8e:4f:34:74:f7:e1:7e:
cf:ca:b2:ad:bb:95:55:51:76:bd:8e:75:bf:0e:2c:
bb:7f:67:61:99:0b:b1:c5:ad:be:97:61:95:be:40:
07:37:15:61:8f:ca:4a:c9:6f:02:14:3b:20:4c:c7:
55:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:CF:F8:44:D9:80:E9:AB:8A:FF:74:21:6D:33:9E:29:53:BA:24:B3
X509v3 Authority Key Identifier:
keyid:6C:B7:6B:53:63:38:3D:68:E5:55:E5:27:0A:59:31:D8:34:0E:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:9b:c6:c7:6c:ea:7c:dd:28:7f:6a:e2:17:1f:cc:17:cd:0c:
2a:60:9a:c1:26:67:20:d1:23:a1:ac:7b:f8:c6:2f:4c:35:2e:
2f:ad:4f:ea:21:31:ed:88:f3:46:e3:1c:50:d3:fb:4a:82:a4:
07:0d:0d:f2:d8:bc:13:94:eb:8c:fe:40:fa:ab:36:6f:41:13:
a9:12:58:ce:a3:c1:0f:46:ca:b2:75:17:58:6e:37:5c:0b:95:
73:b4:e7:ea:84:fa:92:08:7e:64:8b:fc:b2:41:a8:54:05:31:
fc:8c:30:55:93:2d:86:5c:37:6e:9f:78:36:b1:c2:0a:04:18:
57:30:54:dc:db:9b:d8:99:9b:b6:6b:c8:f3:68:53:26:0b:ae:
fb:3f:99:bd:f8:f6:2e:29:5b:7d:95:6b:8f:39:5f:49:60:bf:
1e:30:94:b6:e6:da:0f:60:8a:fc:19:7d:a3:39:6f:42:89:49:
e4:5a:3b:ee:e0:07:75:b5:56:4d:73:73:5d:1f:7f:41:d6:cf:
08:cd:6e:26:33:d7:ab:5b:4a:d2:a8:27:19:31:8c:6d:55:55:
e3:a6:4e:7e:f2:e3:3a:e5:85:6b:99:9f:23:1e:45:0f:82:aa:
7b:ae:b1:05:8b:22:68:9e:5b:44:10:ca:eb:3e:c6:0b:91:d7:
c4:f9:33:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz4jdRteJA+L7EnitxcSdfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjYjc2YjUzNjMzODNkNjhlNTU1ZTUyNzBhNTkzMWQ4MzQw
ZTE4MGQwHhcNMjUwODA0MDcwMTAxWhcNMjUwODA1MDcwMTAxWjAzMTEwLwYDVQQD
EyhmMGNmZjg0NGQ5ODBlOWFiOGFmZjc0MjE2ZDMzOWUyOTUzYmEyNGIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuPeKXhSWj/d0K9AWLVS+OZFnBOx8
ynskDP7bZ1q7RINvrihVY0aMailXZMCBkHmgmGvTA2Be5eruToVJEthR5njUMMqV
g1vtQ2lJshEYnUj/wZ7gWP39+eZxDW3ChYQ3CC5aNvAuqw94fY3lU3+mMXkXW/3B
0nHUUPAIayCvdQZshPzTRc5G9mAnXHtmEDnEFlIedEkhlkN+J7BSa2QNf4p8ZJwy
OtdX7y66GWyHFVPxxLkeISBfdxzVjdK5FNQuf8K7ryTv3aJxYo5PNHT34X7PyrKt
u5VVUXa9jnW/Diy7f2dhmQuxxa2+l2GVvkAHNxVhj8pKyW8CFDsgTMdV7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPDP+ETZgOmriv90IW0znilTuiSzMB8GA1UdIwQY
MBaAFGy3a1NjOD1o5VXlJwpZMdg0DhgNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkxkclUyTTRQV2psVmVVbkNsa3gyRFFPR0EwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My82ZGU3MjktOGMyZC00ZTEyLTg3YWEt
Y2I0NTI2ZmIxN2QwLzEvYkxkclUyTTRQV2psVmVVbkNsa3gyRFFPR0EwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My82ZGU3MjktOGMyZC00ZTEyLTg3YWEtY2I0NTI2ZmIxN2Qw
LzEvYkxkclUyTTRQV2psVmVVbkNsa3gyRFFPR0EwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiJvGx2zq
fN0of2riFx/MF80MKmCawSZnINEjoax7+MYvTDUuL61P6iEx7YjzRuMcUNP7SoKk
Bw0N8ti8E5TrjP5A+qs2b0ETqRJYzqPBD0bKsnUXWG43XAuVc7Tn6oT6kgh+ZIv8
skGoVAUx/IwwVZMthlw3bp94NrHCCgQYVzBU3Nub2JmbtmvI82hTJguu+z+Zvfj2
LilbfZVrjzlfSWC/HjCUtubaD2CK/Bl9ozlvQolJ5Fo77uAHdbVWTXNzXR9/QdbP
CM1uJjPXq1tK0qgnGTGMbVVV46ZOfvLjOuWFa5mfIx5FD4Kqe66xBYsiaJ5bRBDK
6z7GC5HXxPkzaw==
-----END CERTIFICATE-----
Generated at Mon Aug 4 15:35:32 2025 by rpki-client