Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
File: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft (raw, json)
Hash identifier: ASZrG0Cz2YUbypTNsoVZZOSfW2SAM4IbNZeuTLbwbfM=
Subject key identifier: 2B:A8:18:02:DE:1E:9C:0D:4F:33:61:B4:2F:FC:65:CA:96:08:71:E5
Authority key identifier: 6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
Certificate issuer: /CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Certificate serial: 01974D0DAAF7DB9FFB3CDA16A8A63D044C07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
Manifest number: 030B
Signing time: Sun 08 Jun 2025 01:00:30 +0000
Manifest this update: Sun 08 Jun 2025 01:00:30 +0000
Manifest next update: Mon 09 Jun 2025 01:00:30 +0000
Files and hashes: 1: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl (hash: E2oIAaOohrNarr/O3VX2TVkXH+k3+EXKDvLsB54BlTk=)
2: xfuYQjKIwNsH8n8qNl-5nn5swlA.roa (hash: EURGAPm/xAIC/hIpJIK0VPaCfzGhmdAUIaI/It3KKIY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:0d:aa:f7:db:9f:fb:3c:da:16:a8:a6:3d:04:4c:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Validity
Not Before: Jun 8 01:00:30 2025 GMT
Not After : Jun 9 01:00:30 2025 GMT
Subject: CN=2ba81802de1e9c0d4f3361b42ffc65ca960871e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e1:24:da:6e:de:a3:8d:17:77:b0:4e:d5:3e:
b2:c2:41:a1:ee:0c:4a:d1:9b:c3:de:68:c4:fc:ff:
c4:d4:dd:b1:1f:49:17:18:2e:56:52:3b:1a:25:88:
c7:6b:21:4d:a0:12:44:9c:cc:dd:73:4a:9f:b4:5e:
14:a5:8e:ca:36:7b:11:92:9e:23:84:a9:a0:f9:39:
39:4e:65:be:e5:a0:ce:4e:a2:a8:cf:ef:d9:5a:ee:
ce:f1:43:65:20:5d:33:42:a4:3b:2a:46:53:a2:24:
ad:b5:69:82:63:8e:50:c6:ac:a2:9f:f5:65:40:eb:
81:ab:b2:c6:95:04:cc:49:0f:a1:1f:cf:61:40:ab:
59:b8:34:69:05:cd:84:29:ce:a6:dd:8c:35:29:da:
e2:18:46:5d:ae:1e:18:49:76:d2:c6:1d:1c:c6:a2:
86:e7:26:13:0b:5a:83:08:cf:46:c3:9c:7d:56:e1:
41:36:59:22:81:ac:0a:21:e4:eb:ce:eb:45:a4:74:
fc:3a:32:6d:09:a5:6c:36:3a:93:60:ab:32:c3:31:
93:3d:b9:9e:10:a2:d5:0c:c6:df:1e:29:75:e5:36:
df:c6:66:86:4c:dd:df:fe:50:29:63:4d:7f:fb:e9:
21:a7:91:26:f0:8a:d7:50:97:3e:0e:9f:28:ef:b1:
8f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:A8:18:02:DE:1E:9C:0D:4F:33:61:B4:2F:FC:65:CA:96:08:71:E5
X509v3 Authority Key Identifier:
keyid:6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:23:ae:25:27:a6:20:17:c7:04:9a:c0:46:b6:ab:84:62:48:
36:01:f0:36:17:2e:25:50:8e:c5:92:13:69:e6:31:37:1c:36:
53:11:84:aa:4a:83:eb:6e:b2:d0:86:77:d3:33:b1:e4:e0:c1:
e1:1f:f9:56:19:0b:d8:63:92:8d:f2:4e:57:4a:18:45:12:13:
91:42:91:7e:99:75:29:69:94:2d:83:29:12:74:de:56:b0:af:
f9:91:da:8b:a0:0e:92:cc:bc:2e:b8:ae:f8:e1:ff:8e:71:66:
3e:93:30:97:b3:e4:b4:af:43:35:ab:73:77:a0:4d:2a:9b:ad:
fd:a2:56:a3:43:8a:65:27:4a:ee:4a:b0:3e:dc:f2:01:63:cd:
f8:0b:ff:90:1d:a0:b7:52:02:42:a3:8d:2a:2d:10:dc:be:dc:
6b:01:72:a8:60:84:ac:34:4f:89:ed:fa:14:0d:86:cb:bd:1d:
63:c3:4b:8b:0c:50:69:cf:28:fc:2d:6c:40:25:43:d9:55:4e:
9c:6b:91:4c:f4:d0:70:96:76:5c:3b:9a:79:b6:c2:7a:8f:00:
7b:6e:f0:b4:9a:5d:f2:53:9e:67:77:06:14:90:aa:1b:d0:13:
2c:ee:72:88:c7:6b:70:00:56:69:71:87:ba:60:71:23:2d:44:
32:d2:04:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:25:21 2025 by rpki-client