Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft
File: bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft (raw, json)
Hash identifier: B8a44G3qCR+zFK0YtSLM+ka7giRkLJ7xYrcRk7Qd0qA=
Subject key identifier: DD:CB:2C:B8:C0:7B:D6:ED:6C:EA:16:68:F3:DC:50:84:94:B5:27:65
Authority key identifier: 6D:DA:05:6C:3B:54:E5:00:CA:19:C8:F5:C4:77:0A:C3:F4:50:E4:BD
Certificate issuer: /CN=6dda056c3b54e500ca19c8f5c4770ac3f450e4bd
Certificate serial: 01988D6A9C599465844CBB8B19ACF3A0E49C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft
Manifest number: 1620
Signing time: Sat 09 Aug 2025 06:00:30 +0000
Manifest this update: Sat 09 Aug 2025 06:00:30 +0000
Manifest next update: Sun 10 Aug 2025 06:00:30 +0000
Files and hashes: 1: bdoFbDtU5QDKGcj1xHcKw_RQ5L0.crl (hash: L9ME45etELGDQNakMubPXNjIZALFw1fvoj3GRMFp4vs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:6a:9c:59:94:65:84:4c:bb:8b:19:ac:f3:a0:e4:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dda056c3b54e500ca19c8f5c4770ac3f450e4bd
Validity
Not Before: Aug 9 06:00:30 2025 GMT
Not After : Aug 10 06:00:30 2025 GMT
Subject: CN=ddcb2cb8c07bd6ed6cea1668f3dc508494b52765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:40:81:8f:7c:63:0e:2c:7b:c1:fc:87:22:d0:
44:a1:0c:bd:41:93:e6:ec:23:1e:b1:68:6a:49:b6:
0d:25:43:78:b1:96:19:ce:94:cb:f1:b2:14:cc:e2:
44:48:50:a6:63:0d:80:26:50:2c:ac:af:8a:68:15:
aa:ea:c6:fd:7d:a2:66:9d:c4:fc:4f:e3:88:f0:1e:
13:0c:35:63:6b:3b:d9:42:9d:0d:9e:e7:42:87:09:
fd:40:56:f2:4b:ea:40:60:85:31:d7:be:02:7b:f4:
41:06:89:3f:fa:5d:0a:78:be:86:10:f5:c8:3c:08:
1c:d0:3d:f3:3f:6b:44:e4:2e:7b:ec:97:c5:da:dc:
31:3f:9e:4c:51:55:df:d2:a4:c7:51:cf:c3:c1:ad:
87:f7:54:2b:e3:3b:ba:bb:5c:87:0e:dc:10:52:05:
13:3c:8a:c8:42:f9:5e:3c:e1:08:47:19:ad:c6:89:
a5:26:b0:5e:84:59:ce:59:8e:99:74:9c:bd:10:a0:
a2:b2:e0:25:fd:4f:d2:b7:b6:c0:5d:6c:68:6f:a0:
b2:a5:43:a2:52:9f:46:23:90:7a:9b:d0:b4:0e:79:
64:28:3d:83:4d:10:7e:e7:46:bd:80:12:93:a9:cc:
b7:85:57:c1:fa:0f:f5:4d:e1:08:41:75:2e:11:c9:
a8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:CB:2C:B8:C0:7B:D6:ED:6C:EA:16:68:F3:DC:50:84:94:B5:27:65
X509v3 Authority Key Identifier:
keyid:6D:DA:05:6C:3B:54:E5:00:CA:19:C8:F5:C4:77:0A:C3:F4:50:E4:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:ea:53:07:aa:26:f7:bd:85:05:95:7e:7e:ae:fd:7b:64:68:
4b:f5:21:fe:67:de:21:57:55:b9:87:95:d4:5e:5f:14:8b:78:
83:bf:e9:6d:0b:38:ef:22:ee:91:d2:4c:a8:00:78:a6:aa:28:
43:4b:63:6a:57:58:64:52:31:3b:26:bd:5b:0e:28:48:41:c3:
81:a1:23:45:55:8a:9b:c3:20:4d:37:5e:2e:44:b7:64:91:e7:
bf:31:67:51:5e:e3:65:34:48:6a:74:61:cc:c0:5d:7a:52:e2:
76:bf:d4:f5:51:a8:c3:dc:3c:f0:49:58:5d:31:0a:8d:fd:93:
78:ff:b7:60:66:c7:5f:ef:93:bb:f1:31:c8:db:2c:10:fd:0e:
c4:14:58:94:42:f2:83:1f:e0:2e:da:7a:68:c2:a5:93:f0:1a:
d8:c1:12:60:d9:b2:6a:44:b8:33:6d:57:24:94:cf:03:c3:21:
7c:5a:c2:44:d2:f6:d0:98:24:95:ff:9a:a5:af:e5:2d:2d:d5:
d5:b5:c1:bc:d6:02:1c:ee:55:5b:6f:ad:f5:97:e4:fd:91:e1:
2c:55:b6:c1:dd:6d:b1:ea:40:81:e2:52:97:2a:96:4a:1b:6c:
6b:12:57:a4:8a:6b:4a:63:05:d8:c0:17:52:b7:1b:18:e5:7c:
2e:b0:20:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:34:21 2025 by rpki-client