Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.mft
File: bN7Hsun4ZurDa8McpMT_YtU90WY.mft (raw, json)
Hash identifier: z9I2sSf7ewunNlFRziAoZ/tt5ESvFYdEuGcqd4NM63g=
Subject key identifier: 57:CB:1F:C1:BC:81:CB:CF:0C:38:63:B2:61:88:93:D7:A6:0B:7D:7F
Authority key identifier: 6C:DE:C7:B2:E9:F8:66:EA:C3:6B:C3:1C:A4:C4:FF:62:D5:3D:D1:66
Certificate issuer: /CN=6cdec7b2e9f866eac36bc31ca4c4ff62d53dd166
Certificate serial: 01989637323E83818753B8709121A6B6A1A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bN7Hsun4ZurDa8McpMT_YtU90WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.mft
Manifest number: 1629
Signing time: Sun 10 Aug 2025 23:00:56 +0000
Manifest this update: Sun 10 Aug 2025 23:00:56 +0000
Manifest next update: Mon 11 Aug 2025 23:00:56 +0000
Files and hashes: 1: Z4ohMPF1WbOgY7NPLu3yhyFt6Mc.roa (hash: wjvtvacmB4OpgR5kZvFLo2El4XLARx+8D9159reAQW4=)
2: bN7Hsun4ZurDa8McpMT_YtU90WY.crl (hash: QH0xz4NlsZHGVvfGGla9VfQ5pCj2jI+Qkyv4+U3vFcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bN7Hsun4ZurDa8McpMT_YtU90WY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:37:32:3e:83:81:87:53:b8:70:91:21:a6:b6:a1:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cdec7b2e9f866eac36bc31ca4c4ff62d53dd166
Validity
Not Before: Aug 10 23:00:56 2025 GMT
Not After : Aug 11 23:00:56 2025 GMT
Subject: CN=57cb1fc1bc81cbcf0c3863b2618893d7a60b7d7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bb:75:d3:91:19:60:b1:8a:a1:40:54:fb:c2:
82:f1:f0:ea:50:82:8c:2b:d1:ed:2f:34:19:25:46:
76:09:a9:ba:54:75:5e:37:52:5e:32:9e:3d:3a:e4:
35:ae:35:31:99:7a:44:b5:62:09:3b:87:fe:fa:0c:
bf:41:51:89:5a:f0:53:d5:79:67:d7:ff:2c:9a:97:
7a:6c:5c:fc:af:2f:46:8b:a6:69:2f:66:68:fe:f3:
ea:2b:b2:d0:e9:ef:2f:05:80:ea:92:7b:57:f5:df:
f5:60:39:58:47:0b:af:ed:9f:0d:29:7e:8f:c8:05:
6b:49:bc:6d:19:02:c3:e9:ac:65:f9:a0:a9:00:9e:
39:f8:d5:5d:2f:bc:fd:9d:04:05:8f:27:01:9c:38:
94:e8:5f:ed:85:c3:24:b8:f0:2d:a3:da:ae:a9:e7:
bb:87:a3:30:57:e4:96:6a:cc:35:20:ba:a8:59:c3:
8f:51:ed:35:4d:00:29:be:af:75:86:38:1a:23:a5:
d1:f5:de:8e:2d:a4:cd:33:9e:ee:ba:6c:5e:e8:10:
51:3c:86:41:6e:88:ef:1b:aa:1c:f8:c5:d3:9b:a6:
8a:b2:90:5e:10:be:cc:f3:11:c1:2f:17:12:12:fa:
37:4b:ef:2e:7d:bb:d8:35:0f:68:c5:69:71:35:c6:
c4:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:CB:1F:C1:BC:81:CB:CF:0C:38:63:B2:61:88:93:D7:A6:0B:7D:7F
X509v3 Authority Key Identifier:
keyid:6C:DE:C7:B2:E9:F8:66:EA:C3:6B:C3:1C:A4:C4:FF:62:D5:3D:D1:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bN7Hsun4ZurDa8McpMT_YtU90WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:4e:50:0c:cd:24:75:42:a7:34:4b:c9:85:23:31:56:6b:52:
73:2b:0f:19:b4:f7:d3:6a:d7:c1:a1:55:93:a8:fe:18:81:38:
b1:98:6c:2d:8c:2f:a1:1c:db:ec:97:98:c9:eb:e5:7e:c9:6c:
c0:d3:a4:10:63:18:ce:13:ba:45:62:bb:e7:57:d7:90:1c:e2:
30:49:ca:d9:58:b8:d7:2e:d8:c9:24:9d:18:77:9e:d7:47:8e:
1f:66:57:8f:0d:3c:65:83:3f:6b:d0:fd:36:c5:81:01:e6:03:
94:ab:ad:07:4f:61:bb:9e:3d:6b:19:2b:0b:bf:bb:28:41:eb:
cd:b4:33:76:1d:4d:30:cc:a2:a8:7f:c4:62:1a:5e:7a:a7:6c:
2a:c8:6b:e7:d2:0d:fb:6d:85:ac:83:19:23:df:8c:c6:06:a9:
46:17:60:1e:bf:38:82:a5:5e:ad:99:8e:64:01:ad:25:7a:7c:
03:ed:54:3b:a3:f4:c5:ca:fb:3a:12:fc:8f:d7:0e:6e:bb:60:
57:60:0f:66:31:e2:9d:9b:fe:2f:f5:02:62:92:dd:7a:d1:81:
4a:f2:64:63:e9:78:df:fe:c8:ff:4e:61:43:8e:97:74:00:8b:
bb:b5:1e:62:2e:23:ef:0f:e9:0c:e2:05:d0:c3:d3:ae:03:76:
80:16:a6:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:24:01 2025 by rpki-client