Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
File: thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft (raw, json)
Hash identifier: 2BEuIYdX/LYW6fKKKB9tPWISIbom9fPazvZk92Bvxfw=
Subject key identifier: 3E:5C:60:81:F3:E3:BF:D1:A6:CA:9C:9F:B8:7C:21:36:54:A2:1A:8A
Authority key identifier: B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
Certificate issuer: /CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Certificate serial: 01987E9CC7C243BADF8EFD294C29117E0BF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
Manifest number: 0A61
Signing time: Wed 06 Aug 2025 09:01:00 +0000
Manifest this update: Wed 06 Aug 2025 09:01:00 +0000
Manifest next update: Thu 07 Aug 2025 09:01:00 +0000
Files and hashes: 1: B1zjeI12z7rKzJjEV2xk7Kx6YeQ.roa (hash: r2WGLNl7mqhMqh1kFVBikeJbCxyFFZKze+pH0m8/Lxw=)
2: J0SmJvo_DblXKy-6WzDl514uI_0.roa (hash: q/+Q30dvsgavMpRf9kHRcZOPpYacKoQhzHpVoqSh0+Q=)
3: oE2klgKXcU6ZFBaxD5Ye5dFs4b0.roa (hash: xVrVcQ4eqe5NnaROnCloWgSzhvwXlAPv4n0sYt9CbFA=)
4: thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl (hash: Trd/avI1pJbToOsC1TnDhriaN8768t3FBY5wSWZb+zw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 09:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:9c:c7:c2:43:ba:df:8e:fd:29:4c:29:11:7e:0b:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Validity
Not Before: Aug 6 09:01:00 2025 GMT
Not After : Aug 7 09:01:00 2025 GMT
Subject: CN=3e5c6081f3e3bfd1a6ca9c9fb87c213654a21a8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:17:6a:83:34:09:d8:39:cd:42:f2:05:ea:f0:
51:f7:63:5b:b7:ac:73:01:87:89:54:92:81:5f:9c:
1c:aa:c3:28:66:b9:1e:f8:49:50:58:91:f1:52:ec:
78:3f:25:2a:72:d0:0c:fb:b8:7d:c1:3c:56:5a:d1:
4c:f7:f6:51:c8:f2:39:3d:a7:0c:e0:ac:25:0f:b2:
18:4d:c2:59:b8:b1:1b:98:e4:17:e6:d8:33:89:11:
17:9a:4f:16:84:71:44:9e:fd:07:2e:79:87:ab:f9:
06:8b:f9:91:62:d6:d7:e8:ec:da:e1:5d:7f:c3:36:
c8:49:a9:88:0f:84:68:7c:b7:a1:d2:20:97:bb:95:
b4:2b:9b:8e:f9:0b:b5:e8:0d:05:10:d2:79:2e:e3:
6a:31:47:dc:f3:be:8b:43:d6:ea:4a:85:fe:96:77:
30:0f:bf:62:fc:9a:c5:78:c7:8c:90:1a:35:ca:00:
02:97:d4:97:b4:43:49:2c:e0:72:9e:3f:57:38:91:
7e:01:51:ae:a2:81:42:30:3e:9c:55:93:97:56:3a:
5c:59:c1:7c:fb:8e:df:6a:cc:8f:fc:e4:28:c5:ae:
f4:f5:bf:0a:dd:66:5b:78:1e:a4:23:8b:f5:29:64:
44:16:06:4c:11:c2:55:66:c3:ac:0b:2b:14:cb:08:
66:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:5C:60:81:F3:E3:BF:D1:A6:CA:9C:9F:B8:7C:21:36:54:A2:1A:8A
X509v3 Authority Key Identifier:
keyid:B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:a0:b8:f6:67:21:6d:77:13:59:86:46:5b:c2:67:ff:f2:86:
b4:87:51:05:2c:76:24:56:4d:b6:c5:4e:0a:97:68:6a:eb:13:
12:60:9a:bc:3a:5b:4f:d5:93:29:61:68:97:cb:f3:5d:87:86:
28:20:b8:d7:a3:1a:d5:8c:b9:b5:f3:43:40:34:4b:e7:4a:6e:
c1:cc:a8:8e:c5:3e:57:71:1c:04:d2:79:78:7b:e7:77:56:e9:
9f:d9:ab:90:6d:cc:15:19:00:2c:80:fb:bc:80:e0:f1:9a:1c:
dc:1d:14:53:34:75:3b:e1:ab:e5:71:b3:b5:35:51:38:3a:ac:
86:d1:e1:07:66:c5:a5:ac:cd:71:91:9c:e3:d1:f5:2c:73:16:
89:73:98:33:4a:e7:e3:06:22:a9:fd:e7:28:64:0d:6d:ce:95:
35:a6:12:cf:ae:e2:22:46:3c:be:f1:5e:95:86:d0:9a:71:d4:
d4:fb:c8:d3:6d:93:7c:2f:14:08:46:3a:a8:37:df:0c:f4:51:
9e:0a:d4:2f:69:76:1b:0b:cf:b1:55:f0:d8:a8:6d:e4:87:8a:
78:19:67:1b:22:98:0f:56:bc:1c:15:f4:d3:f2:a8:30:bb:b3:
b3:10:e5:ee:c5:05:9e:69:0e:a4:01:39:ee:80:1a:d5:3f:dc:
fe:dc:2c:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 19:27:23 2025 by rpki-client