Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
File: bRRgVvD7veYYv_ARwPIrp0pYMrc.mft (raw, json)
Hash identifier: En8ZFrIhVwb0jN5AxnEFtDW2M4ueO7fZV9NMVUVnWik=
Subject key identifier: 8C:A1:01:28:DD:27:5E:86:09:BE:9D:DB:F9:BF:22:18:61:80:A3:9F
Authority key identifier: 6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7
Certificate issuer: /CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
Certificate serial: 019855DED59BA34CDF088742D3FF9C4DF390
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
Manifest number: 1608
Signing time: Tue 29 Jul 2025 11:08:43 +0000
Manifest this update: Tue 29 Jul 2025 11:08:43 +0000
Manifest next update: Wed 30 Jul 2025 11:08:43 +0000
Files and hashes: 1: PWSDM2wQmRNxztAKQ8wgaZS7VDM.roa (hash: d9Wa5FwcE+PxgkYEzEZPmnpoKU1tHYNjbElNCRhvEFk=)
2: bRRgVvD7veYYv_ARwPIrp0pYMrc.crl (hash: 7lsRf7rDFpErPsn6LNMJgMOs7rV9ZxkoWwXVuq0Ex40=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Jul 2025 08:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:55:de:d5:9b:a3:4c:df:08:87:42:d3:ff:9c:4d:f3:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
Validity
Not Before: Jul 29 11:08:43 2025 GMT
Not After : Jul 30 11:08:43 2025 GMT
Subject: CN=8ca10128dd275e8609be9ddbf9bf22186180a39f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d3:2a:3e:81:71:19:9d:81:06:df:53:b7:fc:
00:f7:a8:ef:61:c0:7c:34:bc:1a:d7:8e:26:bc:19:
f5:62:38:bf:25:2f:d8:25:34:c3:27:4f:c9:03:8f:
71:ba:74:6c:39:20:86:63:45:6c:a1:71:ef:5c:61:
9f:d7:fb:06:58:52:bb:5c:08:44:5c:4a:b4:89:6e:
4f:ae:cc:47:af:1f:5f:51:8e:31:11:d1:ee:c3:77:
74:73:e4:eb:82:56:d6:cc:98:0b:16:7f:a4:77:16:
72:a6:89:c6:e2:02:a6:4c:8b:88:c5:6b:a0:48:0e:
0f:b0:db:4e:d8:da:3f:8a:b3:63:3f:b0:dd:f7:a5:
fb:b1:65:92:74:85:a1:b8:9b:2a:05:f1:f7:e7:71:
1c:6b:f0:86:f1:43:9a:b4:71:74:58:4d:1a:25:bc:
a0:24:94:0c:28:b6:01:9a:7a:a6:77:1e:b0:af:77:
af:91:fd:03:71:13:b4:97:47:b5:d6:67:b0:92:c8:
9c:71:bc:e9:2b:48:6f:76:24:56:b8:95:d8:79:16:
39:93:a8:7b:4c:ad:3b:f8:0e:98:9b:29:cb:86:37:
b4:92:4d:e7:78:5a:ed:6e:8a:77:07:a9:f4:33:b7:
68:b0:18:09:36:8d:95:e8:65:09:bd:21:35:38:cc:
05:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A1:01:28:DD:27:5E:86:09:BE:9D:DB:F9:BF:22:18:61:80:A3:9F
X509v3 Authority Key Identifier:
keyid:6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:6e:02:69:a1:c2:c3:05:f5:01:db:ad:a2:3c:4f:90:22:bc:
22:db:33:70:fc:b9:bb:a8:d9:88:28:0d:9e:19:13:8e:ec:34:
c2:15:5e:09:d0:88:7c:c1:20:e0:1b:39:89:ce:e7:cf:0d:dd:
6f:ac:04:b8:ae:17:6a:29:1d:6d:fb:da:50:9c:00:e2:da:1b:
44:58:e3:20:fd:f4:57:c9:02:61:61:62:77:71:6c:e4:7a:50:
f2:75:cd:a4:8f:59:b5:ea:bf:2c:bc:0d:42:0d:d2:0f:2e:d6:
09:82:74:65:f8:35:9d:6b:e0:d8:b7:f6:32:af:6c:d4:57:93:
7e:86:ef:8d:f2:72:81:70:d2:98:53:eb:58:9e:b9:96:99:d4:
1f:d5:c8:31:4c:31:f0:89:e0:41:00:1e:f7:c1:fe:5a:fb:a6:
73:6a:44:b5:d6:00:08:c3:1e:74:83:51:67:f1:4f:98:2f:e4:
5f:34:60:eb:fd:f5:74:dd:dc:12:99:70:be:62:01:9a:2c:83:
8d:85:bf:f5:d7:7f:50:13:d5:bd:29:3a:72:5a:22:8d:e2:ee:
61:17:c4:4e:95:5b:a0:13:ac:76:09:e3:63:d8:64:be:39:37:
a2:4b:ec:52:00:ff:96:c0:0c:d6:a9:05:8a:74:55:63:7d:be:
09:3f:a6:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 14:52:06 2025 by rpki-client