Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
File: bzipg89Dc6pJdJhasi1RTA9IHS4.mft (raw, json)
Hash identifier: lXXIvtHUTWO//8FpCnwZQXD0AqjBK+oKn+RKbBwq06U=
Subject key identifier: 53:96:68:81:30:97:0F:62:60:2F:06:2B:B0:40:42:36:40:A6:D8:D6
Authority key identifier: 6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
Certificate issuer: /CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Certificate serial: 01984B549746A82677E3A4B4CEF3CBD3F1A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
Manifest number: 024F
Signing time: Sun 27 Jul 2025 10:01:31 +0000
Manifest this update: Sun 27 Jul 2025 10:01:31 +0000
Manifest next update: Mon 28 Jul 2025 10:01:31 +0000
Files and hashes: 1: HZb4ypfyyLknrNflDGCKDQospm0.roa (hash: DJb41fbhgLGXN4Umv3DyaNZTQa8ZY7nKkJ22hR0xLS4=)
2: bzipg89Dc6pJdJhasi1RTA9IHS4.crl (hash: 43WJn7I799iIESecpFkRIe6WlM3vlKQa6/2rztAjd9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:54:97:46:a8:26:77:e3:a4:b4:ce:f3:cb:d3:f1:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Validity
Not Before: Jul 27 10:01:31 2025 GMT
Not After : Jul 28 10:01:31 2025 GMT
Subject: CN=5396688130970f62602f062bb040423640a6d8d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:73:5e:1c:4a:7b:2d:73:d6:68:64:84:6d:bf:
09:f2:48:62:33:9a:50:72:17:b6:72:79:90:d0:88:
7f:48:5b:79:af:22:ff:0f:18:81:12:e4:33:20:aa:
db:b6:83:88:fb:55:13:6b:92:5b:fa:02:ec:89:b8:
e9:78:b6:d4:e8:84:15:70:d5:5b:3a:ee:e8:4c:d0:
b7:21:a0:03:32:55:2c:f2:fb:cb:f6:e0:07:a6:f4:
67:8c:1c:c1:70:f8:d7:8c:b6:02:9b:97:cd:64:11:
ed:39:66:ef:e0:48:4a:9e:4f:15:8f:2c:5b:8d:c7:
9d:70:3d:a9:6a:3f:e7:a0:27:f4:33:3a:87:7d:19:
ba:57:5f:2d:8c:59:80:99:e7:13:f1:0a:e3:e2:8b:
65:20:e1:63:3a:62:f0:d5:47:67:85:39:d2:eb:b6:
12:c3:c7:a6:75:71:75:25:7a:4e:f4:29:94:b5:d6:
b2:c4:29:84:2f:27:31:64:a9:51:b9:95:03:a1:9b:
2f:58:58:90:8c:5d:6a:89:81:56:01:19:72:ce:13:
62:8d:8a:20:11:83:55:7d:93:02:fc:e0:ab:31:9a:
fb:68:c9:83:d3:aa:50:89:f7:68:22:c8:2a:cb:c1:
eb:9e:ea:44:08:6f:bc:01:22:a2:05:df:d0:9e:18:
27:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:96:68:81:30:97:0F:62:60:2F:06:2B:B0:40:42:36:40:A6:D8:D6
X509v3 Authority Key Identifier:
keyid:6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:3f:dc:ae:34:8a:27:cd:51:26:f8:1a:d6:53:e8:f5:66:c5:
a6:1d:82:77:97:bf:8a:00:e9:a1:85:cd:7c:11:00:c0:bf:24:
9a:1b:c7:59:1e:66:66:fb:fb:12:2c:ff:01:06:29:b6:fd:4f:
f9:28:20:3a:45:96:0c:86:de:b7:5b:2a:19:c9:e3:a0:00:d7:
2a:3f:77:25:0d:44:ac:ef:60:77:72:bc:90:0a:e8:7c:88:ca:
d2:d3:bf:4e:59:05:28:b3:28:7b:bc:ba:bf:b4:7a:44:3c:7b:
4a:34:92:06:8c:2a:6c:b0:83:a6:84:65:d1:3b:f3:8d:7d:77:
1b:f7:6d:c3:67:e5:61:e1:a7:4f:fc:0e:0c:91:52:4d:c6:33:
86:a5:e8:f0:44:00:a4:7e:2d:e3:84:01:fa:51:cc:9b:06:6c:
1d:f1:6a:b0:65:c2:31:04:ac:05:78:4a:6e:80:29:01:f6:0a:
45:8a:dc:96:50:00:11:02:cd:83:4d:a0:cd:8d:57:c2:b4:2e:
c9:97:b3:cd:48:5a:16:16:c0:37:af:49:a7:c3:68:3e:f4:d7:
5f:f1:9e:83:80:b5:0f:aa:d9:fe:2e:76:ff:1a:02:32:75:57:
6e:90:c2:25:d0:bf:82:60:15:87:51:ef:dd:d7:1b:42:f8:3b:
14:c7:7c:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 12:21:51 2025 by rpki-client