Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.mft
File: v8qNbiIJkMc424yExmshnwNFVgw.mft (raw, json)
Hash identifier: JtO4nGJNJmIRu0pu9M5up04etDPnz+b20uk+o1919sc=
Subject key identifier: 30:15:21:90:66:FF:9A:DF:51:FB:DD:FC:E9:2F:8F:36:E9:03:20:20
Authority key identifier: BF:CA:8D:6E:22:09:90:C7:38:DB:8C:84:C6:6B:21:9F:03:45:56:0C
Certificate issuer: /CN=bfca8d6e220990c738db8c84c66b219f0345560c
Certificate serial: 01988B0F675480606CE51A989F6ADC8CB49B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v8qNbiIJkMc424yExmshnwNFVgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.mft
Manifest number: 101B
Signing time: Fri 08 Aug 2025 19:01:39 +0000
Manifest this update: Fri 08 Aug 2025 19:01:39 +0000
Manifest next update: Sat 09 Aug 2025 19:01:39 +0000
Files and hashes: 1: v8qNbiIJkMc424yExmshnwNFVgw.crl (hash: at+Fk2s0+RLNhgDS/OFNn+UeTl75mUejtIsruUP0bn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/v8qNbiIJkMc424yExmshnwNFVgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0f:67:54:80:60:6c:e5:1a:98:9f:6a:dc:8c:b4:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfca8d6e220990c738db8c84c66b219f0345560c
Validity
Not Before: Aug 8 19:01:39 2025 GMT
Not After : Aug 9 19:01:39 2025 GMT
Subject: CN=3015219066ff9adf51fbddfce92f8f36e9032020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:b9:0d:64:be:a4:a0:23:25:c3:74:46:db:2c:
58:09:d3:6d:8a:2e:78:fd:d7:4d:d0:d3:e1:85:6f:
0a:a5:20:e1:57:ce:5e:fa:5b:fe:df:c1:30:d3:6d:
ea:20:49:bb:30:17:2b:46:20:09:14:b7:48:80:09:
47:0f:ec:82:48:b1:7a:26:98:42:c6:41:48:fb:c9:
25:1f:8d:16:b8:ec:28:78:a7:92:14:f2:fe:a3:8f:
41:4a:95:83:d3:b1:dc:20:a0:5e:81:4d:23:7a:10:
de:f5:4c:44:4d:e8:d5:88:c3:a4:f6:40:c5:ce:19:
ad:69:d5:59:33:66:78:45:59:1a:b4:aa:f6:96:b0:
36:6e:82:39:a6:92:aa:cf:65:a7:1b:55:b8:48:5d:
84:4e:3c:af:b2:97:cc:e7:8f:d2:e9:9a:01:04:54:
39:92:6f:be:93:80:70:e4:ae:27:e7:e7:d9:52:3a:
36:3f:f3:7c:5a:ce:5f:dc:0e:1e:bd:57:f2:5c:34:
17:04:10:38:4b:04:c1:b8:66:a3:cc:a2:b9:60:91:
0c:a7:38:e0:bd:67:2d:dc:8b:fe:4e:cf:97:7c:60:
40:b3:b9:fc:c4:c7:0f:e9:df:bf:37:cc:6f:28:47:
e4:d1:9c:7f:b4:62:b2:a0:fd:3c:03:b4:ee:c2:c1:
58:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:15:21:90:66:FF:9A:DF:51:FB:DD:FC:E9:2F:8F:36:E9:03:20:20
X509v3 Authority Key Identifier:
keyid:BF:CA:8D:6E:22:09:90:C7:38:DB:8C:84:C6:6B:21:9F:03:45:56:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v8qNbiIJkMc424yExmshnwNFVgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:68:3c:b4:f1:f2:15:89:2c:4e:f0:9f:50:3b:3d:ae:88:02:
75:db:d4:cc:5a:5d:c2:05:1a:b9:2e:53:06:79:02:39:ab:1f:
48:cf:fc:90:76:45:80:c9:2f:28:1f:c2:bc:e3:9f:84:e6:d7:
5b:70:0e:ed:9e:f0:3f:08:25:f6:a7:b5:9c:35:ad:c5:65:e9:
5f:35:ca:1d:50:67:4f:d4:58:48:1b:d7:89:de:eb:9c:e3:e3:
b7:fa:0e:f2:34:50:f2:13:b8:9c:25:e4:92:ea:49:07:2a:a1:
21:8a:83:51:f9:53:a1:69:c7:5d:30:6a:14:91:a8:41:b1:d8:
7f:ad:96:0e:41:ff:62:a7:24:19:fb:7a:14:2d:34:ae:4a:91:
ec:44:60:bc:75:87:dc:5e:c2:ff:52:46:bb:56:9b:fc:ab:e3:
ef:b2:86:c2:3f:24:d2:e5:31:26:dc:f7:a2:46:7e:66:99:24:
73:c9:7d:32:01:f0:3c:eb:9b:18:3e:38:c8:cd:64:6c:2b:c5:
48:e5:c7:b2:a5:af:6e:39:15:71:5c:bc:27:a7:d2:52:d3:a8:
19:75:39:ec:af:c2:9d:a3:73:4f:f9:bd:ed:e8:1d:a2:24:ad:
bf:c2:e9:f7:74:36:80:ae:71:2b:3d:94:46:84:40:66:4b:ea:
5b:2e:d7:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:00:11 2025 by rpki-client