Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
File: bdLO01LwH3613HYZ7XFMa2pceR4.mft (raw, json)
Hash identifier: jZqhCSRDmTmLRIticVIEkcAzwRnT8e5yiX8/Z+Mij6s=
Subject key identifier: AA:ED:93:3A:AF:83:2D:34:AD:B7:7C:70:FD:4F:23:B9:96:18:99:D7
Authority key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
Certificate issuer: /CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Certificate serial: 01984B542A3D63BD3E8971A91496B3366820
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
Manifest number: 01FF
Signing time: Sun 27 Jul 2025 10:01:03 +0000
Manifest this update: Sun 27 Jul 2025 10:01:03 +0000
Manifest next update: Mon 28 Jul 2025 10:01:03 +0000
Files and hashes: 1: bdLO01LwH3613HYZ7XFMa2pceR4.crl (hash: VbrDVGUDHGtRvuKTAeyDoT7RoYW+SuFdH50O7rnWOso=)
2: ldaG2ZtwFXa0D8MT2zJfF9j3gsg.roa (hash: Iho31engw2p2ICkoCri0OTvpMAFdFfQ9ZJ+brUIBG2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:54:2a:3d:63:bd:3e:89:71:a9:14:96:b3:36:68:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Validity
Not Before: Jul 27 10:01:03 2025 GMT
Not After : Jul 28 10:01:03 2025 GMT
Subject: CN=aaed933aaf832d34adb77c70fd4f23b9961899d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:77:6f:a7:3e:a6:86:78:c1:6e:2c:01:0f:be:
5d:14:a5:a0:ba:5f:7f:da:ad:c1:b0:58:76:03:3d:
51:7d:73:b5:a2:80:4d:63:4c:7e:b8:da:ea:ff:66:
63:45:bf:d6:8f:1c:86:a0:1c:cb:e3:3c:37:af:fa:
f8:80:aa:23:a7:3f:3a:3e:5b:69:d1:76:38:22:de:
ea:68:86:84:64:dd:ec:3d:96:75:d3:a8:bb:41:f1:
72:99:47:19:4e:6e:a3:ce:f7:85:8e:b0:75:02:d3:
f7:54:8c:2e:9b:4c:f0:5a:cc:87:0e:2c:37:8c:c3:
a3:c0:28:10:bc:82:a9:0d:e8:2c:83:39:ae:23:e4:
37:c5:9b:76:45:02:78:5d:86:4c:2e:99:3e:cf:3c:
7c:54:bb:f3:e7:b8:24:4d:55:5e:de:03:51:a5:a6:
aa:a2:d1:e4:49:e0:4a:95:16:ce:9a:5d:63:bb:9c:
d6:6b:3d:53:32:70:d4:81:6f:8c:42:13:54:b8:62:
8a:49:6f:a2:a8:b9:8a:ae:b1:64:e8:42:4c:5f:16:
cf:da:06:6b:75:23:df:1f:01:7e:05:bb:bf:cc:f7:
39:f1:ea:b5:5a:fc:81:eb:f9:d4:c4:77:10:6e:38:
c3:1f:ab:c4:d8:59:bf:cf:de:1c:3f:8d:64:f5:81:
ad:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:ED:93:3A:AF:83:2D:34:AD:B7:7C:70:FD:4F:23:B9:96:18:99:D7
X509v3 Authority Key Identifier:
keyid:6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:39:6a:54:34:09:b2:39:ab:32:f0:66:81:d6:49:c6:16:63:
cd:7b:d2:81:5f:95:ab:9e:e3:37:c1:e4:16:d1:66:2d:a5:6d:
31:63:bf:36:bc:f1:70:14:92:04:9d:5e:fa:01:32:d2:64:f7:
cb:25:05:f4:74:4b:5e:8e:8f:80:b4:04:3d:cd:e6:45:fc:76:
c7:35:8c:8e:e0:20:c7:0b:f5:c5:bb:45:fb:97:f5:76:c7:d7:
b7:8f:a7:12:7a:69:93:2d:6a:7c:b1:ce:bc:c4:76:bf:a1:44:
f8:51:ae:62:1f:50:96:7e:90:4c:9a:e1:e8:9c:b0:56:41:ad:
14:3d:94:89:0c:48:5d:44:68:b6:d3:81:47:3d:60:38:94:1f:
90:c4:ff:b2:c2:87:ba:9c:d6:c5:9b:67:6e:24:03:0c:66:ad:
73:57:b4:c7:01:4e:26:9b:b3:a4:4c:dc:75:22:e3:fa:5c:74:
2e:2d:24:0b:f2:da:35:ce:4c:1b:5b:a8:9d:50:c1:de:ba:b2:
3f:b6:98:a2:93:01:9c:a0:88:06:07:c7:8a:f5:1a:f2:1d:29:
02:99:ff:32:25:7d:e4:04:3a:fd:e9:eb:c8:b6:96:ff:61:95:
79:f4:c8:03:71:11:70:07:16:70:b9:59:54:94:c0:aa:89:50:
ba:85:c8:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 13:53:34 2025 by rpki-client