Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.mft
File: BD0sjag_XDyUrpQKDv0qdxT_kOI.mft (raw, json)
Hash identifier: bO1J/dtOm/K0hJzzsTVHd+Veb0ohg6Qg9nf/4eoQBm8=
Subject key identifier: 75:E6:05:05:F6:FF:E3:51:D3:2B:81:46:FE:CC:16:2F:18:A9:20:A3
Authority key identifier: 04:3D:2C:8D:A8:3F:5C:3C:94:AE:94:0A:0E:FD:2A:77:14:FF:90:E2
Certificate issuer: /CN=043d2c8da83f5c3c94ae940a0efd2a7714ff90e2
Certificate serial: 0199183F466CADA0A8CB0201AF2C4E0F95F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BD0sjag_XDyUrpQKDv0qdxT_kOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.mft
Manifest number: 2B
Signing time: Fri 05 Sep 2025 05:00:23 +0000
Manifest this update: Fri 05 Sep 2025 05:00:23 +0000
Manifest next update: Sat 06 Sep 2025 05:00:23 +0000
Files and hashes: 1: BD0sjag_XDyUrpQKDv0qdxT_kOI.crl (hash: 7EM1bzddvdT41yIx8gzLTWfifg9je8bDvYvODUJTXZY=)
2: wVyHdkJVhmRGMxJPVX4wfBhruSE.roa (hash: 9ZOfWoFrLfdn+mdr2Gtgim07acMv0zDx9WBwWt754aM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BD0sjag_XDyUrpQKDv0qdxT_kOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:3f:46:6c:ad:a0:a8:cb:02:01:af:2c:4e:0f:95:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=043d2c8da83f5c3c94ae940a0efd2a7714ff90e2
Validity
Not Before: Sep 5 05:00:23 2025 GMT
Not After : Sep 6 05:00:23 2025 GMT
Subject: CN=75e60505f6ffe351d32b8146fecc162f18a920a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:65:7d:70:5a:43:88:3a:e5:72:fd:9a:c6:a9:
13:cf:9a:d9:4f:be:ea:92:2b:32:88:65:ae:89:6b:
86:3c:81:85:cd:71:91:51:1b:58:1d:5d:fc:62:b4:
aa:6b:2d:29:32:01:31:65:b7:be:da:81:86:7d:91:
d6:16:72:df:1d:2a:3c:18:43:4a:2b:c7:60:b9:71:
18:ca:03:5e:38:72:81:3f:57:2c:6f:2c:fb:3b:37:
82:cd:87:e4:4e:f8:b6:22:d9:5d:e5:f4:a9:92:5b:
64:76:03:e7:0a:e5:05:21:01:b8:77:01:26:df:7a:
e3:88:23:2a:eb:18:2c:18:b1:8a:ab:f0:9e:16:11:
4b:98:85:63:bf:d5:5e:6f:30:af:68:e0:03:a2:80:
92:b3:b7:8f:4a:52:7f:11:45:7e:44:db:d3:da:14:
a5:cc:f5:fc:7c:b9:12:24:81:bb:1d:b1:da:bc:82:
ba:44:5e:d4:15:71:1a:e9:fb:79:19:af:a9:15:f7:
39:6b:4c:1b:44:93:bb:7c:ee:db:10:20:a1:b0:69:
49:24:9b:86:59:80:ce:ba:54:cb:85:e8:ae:0c:de:
a8:7f:d1:75:41:0a:cb:84:08:ca:e7:17:2b:c8:1c:
9e:a7:b9:82:0e:0c:ff:2a:0a:86:b7:a7:48:64:be:
b3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E6:05:05:F6:FF:E3:51:D3:2B:81:46:FE:CC:16:2F:18:A9:20:A3
X509v3 Authority Key Identifier:
keyid:04:3D:2C:8D:A8:3F:5C:3C:94:AE:94:0A:0E:FD:2A:77:14:FF:90:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BD0sjag_XDyUrpQKDv0qdxT_kOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:ef:61:9e:7c:f2:c2:61:cf:3e:29:81:26:f8:4b:6c:7b:30:
45:5b:95:f0:e3:57:d6:0d:72:59:dd:dc:a3:ca:1e:51:7a:2f:
a3:55:e8:b8:e5:51:57:0a:5f:ab:13:45:89:56:96:97:f8:87:
4c:ce:14:b5:bd:82:63:f1:0d:aa:dd:9f:69:0c:86:e1:0c:9e:
cf:39:b5:77:79:44:9a:7b:65:98:5d:b0:f2:2f:01:95:3c:01:
5e:93:9b:0d:93:bb:79:f1:05:20:4b:65:0a:36:ad:27:8f:2d:
2b:a9:3f:1e:b6:f1:2e:93:c5:48:70:f2:65:b0:d2:6d:94:6c:
cf:ea:f2:f6:9c:ef:87:e5:b9:21:71:c2:7d:64:55:d4:c7:c2:
0f:0c:5b:ad:9d:3f:88:91:b4:49:44:09:a6:18:3f:8d:53:d1:
e7:90:67:a0:5e:f1:1d:a0:ac:3f:3b:e6:3d:1a:f2:78:ff:2c:
df:48:87:ee:7c:d2:c0:cb:5f:30:1f:a7:3a:dc:ae:c9:c4:62:
1a:a7:a1:3c:28:f0:3d:0c:04:52:27:eb:e8:10:dc:c1:d6:7b:
c1:a5:58:94:9e:5c:53:e5:a0:9e:33:b7:68:88:8b:d0:43:84:
73:03:56:09:96:0f:9d:62:6d:63:a8:ac:3c:12:29:0c:c6:6a:
ac:d2:8d:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:03:52 2025 by rpki-client