Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
File: bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft (raw, json)
Hash identifier: NlDiXk29pKMXu0/2nJ2jAKTYLW63z7acEAAhNAfmnzg=
Subject key identifier: 08:78:CF:D5:57:D5:41:D4:08:F5:5B:10:CF:58:72:AF:46:C1:0F:84
Authority key identifier: 6C:19:5B:9B:D4:70:01:EA:B5:0F:DB:A1:DE:0D:2D:3F:45:27:F6:75
Certificate issuer: /CN=6c195b9bd47001eab50fdba1de0d2d3f4527f675
Certificate serial: 019888445F35BFE4610F71BA4C8BB8A2BBC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
Manifest number: 01B4
Signing time: Fri 08 Aug 2025 06:00:38 +0000
Manifest this update: Fri 08 Aug 2025 06:00:38 +0000
Manifest next update: Sat 09 Aug 2025 06:00:38 +0000
Files and hashes: 1: MB79B-8QZwUqYrXc2Ibwogq_qLQ.roa (hash: bNBfBbjDpqRStExCWEma6tP6lj9BYj7p2ZAmcoBXfmY=)
2: bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl (hash: I9orgPCYf33nIQGLS1ae1ia3Q21ehrp2E7J+kj5ECn4=)
3: jf4WdQ24BygRnLqj51WchS5928k.roa (hash: /f6JdSqZIG39wyf+D4unjoQWcyolGzjFS4yjumA6E0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:88:44:5f:35:bf:e4:61:0f:71:ba:4c:8b:b8:a2:bb:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c195b9bd47001eab50fdba1de0d2d3f4527f675
Validity
Not Before: Aug 8 06:00:38 2025 GMT
Not After : Aug 9 06:00:38 2025 GMT
Subject: CN=0878cfd557d541d408f55b10cf5872af46c10f84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:6c:8c:14:18:ff:63:b0:62:24:39:a0:71:a2:
75:1b:9e:20:d4:a3:e5:53:c8:5d:9d:f3:ee:a9:90:
e1:27:a2:69:f0:bc:24:40:e0:96:f1:e1:c3:20:a2:
a7:7d:e8:6d:e6:92:c1:62:3c:f0:ca:25:14:51:d3:
fd:c8:a6:c4:93:1e:f2:4a:f8:13:d2:8b:ea:34:1d:
4b:0a:f7:ac:a4:98:25:b2:fb:99:c8:be:de:42:a4:
97:5e:f4:02:80:ca:43:b1:45:76:25:b6:b1:89:c7:
cf:7b:7e:18:d2:cd:cd:1d:3f:4a:38:d8:0d:49:02:
1d:47:46:d3:0f:3b:42:6c:67:3c:83:ec:57:0b:31:
c6:a1:f8:54:f4:54:b4:4c:50:3f:ee:e3:60:86:1d:
c1:21:54:5e:cb:8b:5b:13:a3:cb:64:51:80:99:02:
03:55:8e:83:65:ef:4a:b4:5e:e0:df:76:90:03:65:
31:f7:74:5a:b6:e2:21:bc:7a:1d:53:4e:dc:54:04:
66:75:e8:7d:99:c0:a6:f2:a1:63:d5:95:00:b7:4b:
86:a5:96:a3:35:a0:86:8a:ff:c7:f3:75:98:05:bc:
9b:4e:b5:04:52:b1:93:d1:6e:4e:2a:e2:56:79:21:
58:79:56:5e:21:0e:24:b7:3e:f2:dd:bc:7b:1b:45:
2b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:78:CF:D5:57:D5:41:D4:08:F5:5B:10:CF:58:72:AF:46:C1:0F:84
X509v3 Authority Key Identifier:
keyid:6C:19:5B:9B:D4:70:01:EA:B5:0F:DB:A1:DE:0D:2D:3F:45:27:F6:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:1f:64:2a:8a:17:6a:4c:7b:8b:c2:97:ac:89:c9:a5:df:6c:
8c:52:dd:fa:b7:e9:70:37:81:60:c9:9d:e9:fb:36:8a:a8:3e:
15:55:e3:ce:b3:88:29:6c:47:03:be:a8:e3:16:ab:06:c1:5d:
8f:48:e5:49:a6:2e:d7:cb:c2:a3:71:68:b2:ad:36:3d:67:3c:
e8:1b:ad:0e:2c:9e:58:b9:90:90:0a:28:24:70:6f:ab:6b:4a:
16:f5:6d:9c:d4:85:bf:6a:84:2b:9e:65:0a:19:da:3d:f8:62:
54:e7:70:9e:fc:12:bf:c7:e2:b7:a4:3a:17:51:6d:2a:12:46:
0e:ac:fd:b4:a1:4d:a5:52:4e:1d:93:f3:24:72:a4:b1:50:81:
6b:84:f0:16:e1:f7:91:74:fb:36:d0:7f:63:b7:ae:5c:5b:1b:
d9:ab:1f:5e:bd:76:96:c7:05:9e:9a:65:5e:2e:36:1a:a9:2e:
bf:86:1e:17:b6:2a:54:5b:1b:8b:4f:63:d7:fc:ce:f0:15:ec:
93:1a:65:bc:30:bd:2a:ad:43:77:67:5e:a8:83:68:a7:32:fb:
b0:3d:a0:a8:1c:af:c5:af:a6:b5:a2:02:a0:59:a6:c6:4c:df:
93:f1:0a:dd:9e:fe:df:ca:7a:b1:53:69:a0:8b:fd:78:e6:c2:
58:b2:8f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 10:10:32 2025 by rpki-client