Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
File: bfhqH1cK4xUpAiqk9h79nsK5fQU.mft (raw, json)
Hash identifier: mxHXEVll8pYRZ1RDlqQDoxMpbR5TvV1ZJOO6cO/gGNk=
Subject key identifier: C3:EB:A5:57:2F:01:1F:2C:91:BE:36:8D:C1:7D:9C:EB:9F:3C:FA:0C
Authority key identifier: 6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
Certificate issuer: /CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Certificate serial: 01988EEC32C64C4FBEBCA7E47749CA4826AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
Manifest number: 14A0
Signing time: Sat 09 Aug 2025 13:01:40 +0000
Manifest this update: Sat 09 Aug 2025 13:01:40 +0000
Manifest next update: Sun 10 Aug 2025 13:01:40 +0000
Files and hashes: 1: BpLbGApyHXLB4qqgJyw3nGH9lH0.roa (hash: 4AoUx/2M994KEwtEdAKInOt11G1446xmTonI1qJPrOg=)
2: bfhqH1cK4xUpAiqk9h79nsK5fQU.crl (hash: DaDO242nYPyK9gngdbme1h948hf2mMbkDNpHUztMUkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 13:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:ec:32:c6:4c:4f:be:bc:a7:e4:77:49:ca:48:26:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Validity
Not Before: Aug 9 13:01:40 2025 GMT
Not After : Aug 10 13:01:40 2025 GMT
Subject: CN=c3eba5572f011f2c91be368dc17d9ceb9f3cfa0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:20:48:d0:ef:72:f2:7f:15:71:2a:da:14:9e:
d0:72:c1:1a:a5:c3:9d:5a:9b:3f:b6:1f:b1:21:ed:
8d:16:b6:f4:ec:5e:4e:71:38:ab:92:47:3f:18:16:
65:6a:50:b3:4b:ab:2b:c3:36:3b:7c:85:35:62:b6:
a0:ca:ac:1b:d9:61:dc:e2:15:c3:60:07:19:0c:bc:
38:ac:83:ac:2a:4d:ed:23:3f:41:c2:b8:be:a2:1e:
81:99:33:48:2f:a5:6d:8b:4f:d8:59:f7:61:44:19:
0a:f9:a5:e4:6b:d4:23:d0:fd:cf:15:3f:78:5e:4b:
b0:d1:3b:32:93:d3:66:13:88:eb:f9:c5:f0:83:0c:
b3:3d:71:c2:ca:3b:76:c9:cc:5e:b3:b7:56:31:5c:
a3:85:96:d1:1d:b5:1b:b2:6f:18:f5:89:1f:4c:b2:
14:24:67:f2:aa:4f:f3:55:53:32:23:9d:86:2e:95:
e5:62:08:b0:18:0e:51:ae:a1:1a:0f:97:90:a3:b1:
92:59:93:8d:5b:3a:90:d1:2e:f4:07:f1:d4:bc:57:
06:a0:6c:b3:96:77:df:90:83:77:c2:22:f0:91:3f:
4d:0b:e2:d2:b3:a4:37:29:29:de:c4:43:81:58:e4:
64:78:05:38:f7:b7:2f:1c:e5:85:33:26:c9:de:bd:
ef:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:EB:A5:57:2F:01:1F:2C:91:BE:36:8D:C1:7D:9C:EB:9F:3C:FA:0C
X509v3 Authority Key Identifier:
keyid:6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:7c:cf:40:3e:79:b8:6e:d5:4e:12:49:b3:c5:0c:8b:0f:61:
44:f7:aa:26:e1:c0:33:04:2c:26:ac:7a:50:19:87:f6:9b:9a:
95:ca:10:7f:70:7e:e2:bc:51:bd:25:70:16:80:05:f4:9f:1f:
ff:2f:35:04:56:0f:5f:66:b5:ad:f4:ed:34:4e:ff:b2:77:b1:
a3:80:c5:dc:12:d7:f9:77:6e:1e:47:ba:b6:cd:8c:15:6f:30:
e2:e7:e5:17:a3:8c:8d:43:a9:c4:05:97:6a:c4:9a:0c:1b:44:
94:46:9a:4f:df:48:37:01:f1:20:9a:d7:5e:07:fc:5c:66:47:
02:d6:aa:84:c5:2c:f0:45:3a:d4:c3:aa:4f:f4:f6:2c:bd:7d:
94:d6:0a:c2:3e:52:5e:57:4b:37:d6:a7:3a:a5:8a:82:fd:38:
4e:1e:83:dc:fa:78:15:4f:94:bc:be:1e:24:ad:17:3c:92:a5:
77:9e:59:c3:5f:1f:91:da:1c:a2:5f:2f:df:49:60:56:08:99:
56:41:c1:8f:2a:a0:70:38:3c:7d:21:9a:94:65:78:37:ff:cf:
6e:63:57:da:fd:d7:38:46:76:bd:0b:3a:61:d3:53:bf:fc:3e:
0f:00:ec:14:72:86:b8:ef:28:b3:e7:6a:2c:11:4b:9e:02:72:
d1:cb:4f:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 23:07:54 2025 by rpki-client