Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
File: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft (raw, json)
Hash identifier: gZgAFD7K/g+yo43xWDLmYA9WynyNFWhB9hoY2IyAkcM=
Subject key identifier: 1E:B8:67:67:EA:2D:34:39:E6:C4:86:86:EE:E9:AD:CA:F9:A9:8E:E0
Authority key identifier: 6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
Certificate issuer: /CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Certificate serial: 019922558AB460F18EA0BBA883172046E539
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
Manifest number: 03FE
Signing time: Sun 07 Sep 2025 04:00:55 +0000
Manifest this update: Sun 07 Sep 2025 04:00:55 +0000
Manifest next update: Mon 08 Sep 2025 04:00:55 +0000
Files and hashes: 1: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl (hash: whjDhxnSSnUTlaV9jZ1wcRNaqARK1I8lxUsPsv7Fsl8=)
2: xfuYQjKIwNsH8n8qNl-5nn5swlA.roa (hash: EURGAPm/xAIC/hIpJIK0VPaCfzGhmdAUIaI/It3KKIY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:8a:b4:60:f1:8e:a0:bb:a8:83:17:20:46:e5:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Validity
Not Before: Sep 7 04:00:55 2025 GMT
Not After : Sep 8 04:00:55 2025 GMT
Subject: CN=1eb86767ea2d3439e6c48686eee9adcaf9a98ee0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4d:75:43:22:a0:25:7a:26:7c:b3:c7:08:a1:
ad:d2:87:20:24:2e:ca:dc:ef:c7:64:73:6d:31:c9:
c1:28:7a:71:37:37:28:fa:10:26:ba:55:c0:fe:41:
2f:4e:18:ff:02:a0:3b:5e:d3:fb:4d:ef:0b:7b:b7:
61:08:62:66:55:94:3e:7a:67:08:20:d9:b6:6f:8c:
ac:b0:b7:a4:d9:26:bf:1e:d0:99:3b:44:76:39:7c:
39:8c:a4:8a:46:77:30:6b:73:56:a7:c9:7e:78:ac:
fd:72:68:a6:0b:cb:5d:78:fb:ca:fe:28:12:0f:f4:
06:57:7d:a0:5c:f6:37:f3:28:a9:63:36:83:79:19:
7a:f6:1f:d4:93:f0:10:58:46:80:19:c7:50:98:65:
63:b8:f6:50:70:fc:bf:5e:0f:b8:8a:bc:94:13:18:
8d:3b:c2:86:de:12:94:fa:f9:00:ff:af:3d:fb:b2:
0e:6d:0f:eb:f6:e5:07:9c:81:d1:78:36:d1:a7:3c:
17:3c:e3:23:e4:85:9c:a1:a0:88:23:c8:00:18:87:
3c:25:f2:6a:09:dc:ab:a7:db:d8:12:89:e8:cf:42:
44:c7:1c:c2:61:3d:69:73:98:56:95:d6:c1:5f:d3:
3f:a8:a8:d8:51:95:e1:2d:50:71:d9:e7:8d:73:02:
16:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:B8:67:67:EA:2D:34:39:E6:C4:86:86:EE:E9:AD:CA:F9:A9:8E:E0
X509v3 Authority Key Identifier:
keyid:6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:06:19:04:04:24:c6:b3:18:50:e8:43:42:9a:2b:ba:e8:18:
d9:51:51:81:40:10:f6:5a:1f:60:39:38:c8:a0:9a:b7:59:7f:
b9:ad:6b:d2:a5:5d:ef:b2:02:6e:26:1b:7f:e2:e4:4d:00:df:
d4:3f:eb:76:ca:1c:d6:bc:13:31:39:f9:2a:86:63:2c:8f:3e:
2f:8d:3c:c3:18:f6:07:e8:15:b0:df:bd:df:16:88:06:a9:ce:
34:9a:7b:b5:48:6c:d2:20:73:49:7c:fc:ad:ce:25:3a:3e:c9:
1b:5a:7e:d1:dd:37:2c:cf:d8:e9:6c:c2:3d:b3:77:a9:70:93:
31:18:86:9d:1d:d5:95:a4:27:a1:f1:cf:ff:96:a8:eb:24:3e:
02:35:3a:09:87:8f:21:dc:6d:67:a3:ff:ee:b1:eb:29:60:ac:
21:f6:ff:8b:0f:39:46:f8:37:2b:60:db:7c:f3:4d:a9:70:cb:
8f:88:f0:25:3e:b4:93:b6:dc:5a:39:bc:4d:2b:07:77:de:89:
52:28:ec:11:e9:d2:e1:c5:fa:d3:96:ba:40:93:ee:91:c7:c7:
50:b0:8c:fc:40:cd:9f:66:8a:f1:b0:97:7d:f5:84:75:7e:1e:
7a:ce:e8:43:ea:35:80:c3:94:14:e0:62:7f:d1:b8:1e:ba:43:
87:6e:e9:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:37:41 2025 by rpki-client