Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.mft
File: bGbVyy-crT9IQ_cUpNxi1yE96-g.mft (raw, json)
Hash identifier: GM0XRIcKitHgYf32okqw3BV7qYYZey50e2e3eoXlCdE=
Subject key identifier: 6D:CF:0C:01:29:10:9F:40:BE:01:B9:B1:52:E4:AA:E5:16:05:CF:44
Authority key identifier: 6C:66:D5:CB:2F:9C:AD:3F:48:43:F7:14:A4:DC:62:D7:21:3D:EB:E8
Certificate issuer: /CN=6c66d5cb2f9cad3f4843f714a4dc62d7213debe8
Certificate serial: 019921E762496527C22ED215558ADC088FFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bGbVyy-crT9IQ_cUpNxi1yE96-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 02:00:35 +0000
Manifest this update: Sun 07 Sep 2025 02:00:35 +0000
Manifest next update: Mon 08 Sep 2025 02:00:35 +0000
Files and hashes: 1: JAwkYlt_gNZ54Td8tq5GWdme2ug.roa (hash: zUyQFLpVWmBaNa+EvYNx5U2/U4IK1mMjW0Y/zg4R97w=)
2: bGbVyy-crT9IQ_cUpNxi1yE96-g.crl (hash: dxiJP2lVG8ITIptnOlmHLDMRhU8jopxtLBuGBCR2mww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.mft
rsync://rpki.ripe.net/repository/DEFAULT/bGbVyy-crT9IQ_cUpNxi1yE96-g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:62:49:65:27:c2:2e:d2:15:55:8a:dc:08:8f:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c66d5cb2f9cad3f4843f714a4dc62d7213debe8
Validity
Not Before: Sep 7 02:00:35 2025 GMT
Not After : Sep 8 02:00:35 2025 GMT
Subject: CN=6dcf0c0129109f40be01b9b152e4aae51605cf44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:31:d7:b3:ca:f8:33:72:29:f7:e8:e3:18:6b:
d6:a3:97:10:34:76:df:0c:bd:c7:24:d0:01:72:43:
2e:95:d6:4d:45:84:3c:fe:cb:18:7d:14:99:05:d8:
9a:22:e7:fe:93:f1:b1:47:6b:f3:fa:f1:b8:85:3c:
75:1c:64:74:f3:54:48:d1:7b:b3:b8:2a:12:5e:6c:
72:6d:df:8b:28:f9:8e:ea:09:f6:a2:ea:25:c8:9b:
97:49:94:86:5c:a9:3d:d8:7a:7e:c6:6e:93:c5:bb:
d3:7f:e6:6c:ff:e0:6d:a7:03:c2:f1:ea:f6:d2:ef:
c6:4c:61:89:88:03:43:ea:c5:27:4d:59:1b:1d:dd:
25:64:9e:6e:3c:9a:6c:de:17:7a:ac:2a:0e:8b:64:
bb:d2:6f:fc:e6:66:c8:91:e5:e9:85:66:c0:91:a7:
8b:c2:51:0a:ae:7f:6c:90:0a:79:05:49:f7:30:31:
77:46:5f:36:3c:3b:1c:7f:77:1e:54:4c:d9:e2:80:
bd:18:a8:c4:cb:fd:52:85:2e:48:40:95:12:58:2e:
00:58:7a:d6:d3:53:c4:cc:21:4f:48:c9:90:b5:b3:
54:fa:7a:29:62:cf:9f:99:45:d8:fe:61:7c:7a:4f:
b8:78:b9:1e:8d:9a:d2:21:7d:07:56:f8:b5:db:2a:
08:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:CF:0C:01:29:10:9F:40:BE:01:B9:B1:52:E4:AA:E5:16:05:CF:44
X509v3 Authority Key Identifier:
keyid:6C:66:D5:CB:2F:9C:AD:3F:48:43:F7:14:A4:DC:62:D7:21:3D:EB:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bGbVyy-crT9IQ_cUpNxi1yE96-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:68:b5:e5:ec:9c:18:e9:b2:f7:7f:20:94:e4:ec:3c:f9:43:
a3:74:cb:eb:e9:93:99:30:58:94:12:db:82:7d:92:23:3b:f0:
3d:53:6a:1c:27:c8:7f:63:1d:99:88:6b:0f:56:14:16:9e:f7:
25:6e:c7:97:81:0c:dc:2e:94:1f:db:4f:78:b8:64:ba:cc:0c:
7b:01:e9:5f:8f:54:f5:03:5f:ab:bc:da:2f:40:6e:04:e8:20:
ad:d2:b9:f8:0d:ef:6f:ed:03:ab:7f:a0:3c:71:e4:bf:da:6f:
22:bb:4e:81:d3:09:35:9d:31:dd:18:4e:78:eb:ca:08:a8:83:
f1:76:89:58:4b:1a:c3:6d:41:c8:24:d1:1e:ce:e4:9f:3f:47:
8c:ae:86:6c:b6:97:b7:e3:e0:06:dc:7a:c3:54:44:fc:7b:75:
94:af:44:a3:87:8f:00:ba:81:16:07:a7:b4:b9:ad:d0:9a:46:
aa:af:f8:46:76:92:1e:7f:bd:40:80:ff:ca:32:38:55:6a:97:
a4:52:da:1d:ec:4d:84:be:d3:0e:74:35:2b:83:af:b4:92:ca:
8e:17:40:25:c7:02:a7:28:f8:09:29:d6:96:06:3f:fc:6a:4c:
fd:f7:39:60:94:75:ce:7f:6f:a6:58:d2:3a:cc:61:cd:a2:69:
9d:89:5a:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:38:18 2025 by rpki-client