Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
File: BmVsWtlzg3LVTAN-OX81vpqpJNs.mft (raw, json)
Hash identifier: kWEehVsz1VgtykIApORw2f5qLcnkVQiEpW8CNShRFSY=
Subject key identifier: ED:CB:19:38:49:A6:35:43:85:7B:40:9F:72:DF:30:C1:94:45:F8:F7
Authority key identifier: 06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
Certificate issuer: /CN=06656c5ad9738372d54c037e397f35be9aa924db
Certificate serial: 019921E7C9BE96D5DECA772B956C8A542A41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
Manifest number: 023F
Signing time: Sun 07 Sep 2025 02:01:02 +0000
Manifest this update: Sun 07 Sep 2025 02:01:02 +0000
Manifest next update: Mon 08 Sep 2025 02:01:02 +0000
Files and hashes: 1: BOJlFcCNxlleMHUbR9TjmHCDeZc.roa (hash: ujITDNQNM0fpryFmlYjLZ0Q/wbil/+me/IAh88EFBg8=)
2: BmVsWtlzg3LVTAN-OX81vpqpJNs.crl (hash: qtinzyNn53ebqTWezXkb4nZpfx4SNXeLOZY7hCSK6fc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:c9:be:96:d5:de:ca:77:2b:95:6c:8a:54:2a:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06656c5ad9738372d54c037e397f35be9aa924db
Validity
Not Before: Sep 7 02:01:02 2025 GMT
Not After : Sep 8 02:01:02 2025 GMT
Subject: CN=edcb193849a63543857b409f72df30c19445f8f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b6:0b:87:d1:f2:31:e0:a3:8c:0a:28:66:7d:
d1:22:fc:e2:9c:d3:34:6b:0a:2f:3a:70:e1:d3:ac:
77:ef:9a:f4:fe:f7:61:5f:a2:93:42:20:9d:1b:ed:
8e:80:47:a7:1d:44:9b:63:ab:10:be:8a:d4:43:e7:
3b:07:79:61:58:4a:49:94:fe:f1:d7:53:f4:38:d7:
e4:67:af:c6:00:c0:1e:04:b0:af:25:ef:cc:16:0b:
ad:d5:0a:f9:7b:28:65:f1:ea:38:0d:ac:f5:46:c1:
e4:79:1d:28:fa:86:f6:a9:fb:5a:3d:7e:a1:cc:1a:
14:c6:42:07:15:39:67:1d:e3:04:17:ea:3b:72:37:
de:95:15:24:93:92:31:a4:33:a8:a9:46:36:9c:f6:
17:87:1a:9b:77:08:76:80:63:fa:ee:55:aa:0c:b4:
f5:ed:fc:34:25:c2:91:7e:f4:b0:1f:14:af:23:57:
af:9f:89:7e:c0:5a:6c:dd:d5:88:c6:b8:74:88:09:
67:e6:29:fd:3f:c6:af:e6:e5:13:3b:83:91:98:b5:
4c:29:c1:1e:1c:fa:d6:8d:5a:f0:2b:1b:b6:e8:66:
79:a1:fe:0d:1a:b8:bf:ec:66:b0:0f:f8:b9:e1:36:
9b:60:5e:22:bf:1a:22:63:45:3e:08:5d:b6:52:cb:
e9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:CB:19:38:49:A6:35:43:85:7B:40:9F:72:DF:30:C1:94:45:F8:F7
X509v3 Authority Key Identifier:
keyid:06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:f8:62:b1:94:55:71:a4:dc:57:15:fa:bf:b1:bd:4b:fa:0a:
ae:1e:2f:c3:cd:0d:8d:3b:06:2d:3e:3f:f1:b2:5b:0a:ae:01:
fa:53:c9:04:b2:5b:38:72:34:5e:05:69:9b:28:fc:a9:cb:86:
0a:8b:2d:57:cc:63:ae:58:bf:0c:74:8e:3d:f0:05:87:50:9f:
cd:ec:e9:45:c3:5e:08:94:71:9e:3a:a2:12:ca:a0:09:bd:ec:
21:e4:62:b4:91:93:0a:fb:a6:f9:7d:5a:a4:02:02:b1:56:e4:
89:14:0c:65:5b:bd:36:fc:d5:d3:25:23:e6:70:9a:41:f7:db:
f8:03:5c:a0:38:00:df:92:50:29:27:4d:01:84:b4:d5:59:7f:
9b:93:64:e1:3c:91:87:22:54:94:11:f4:13:6a:cb:34:f7:6b:
3d:a7:8a:23:22:5c:1e:68:2a:7b:61:8d:ca:7f:81:fa:4f:17:
16:d2:d0:1b:3e:5a:b9:46:ef:b9:cb:d9:c0:38:f1:da:5e:e6:
f8:64:14:09:6b:59:cd:0c:15:7b:88:96:e8:a3:ef:57:1f:f1:
5b:00:16:ab:0e:8a:3c:26:f6:f7:2c:d1:94:24:40:36:db:dd:
46:93:11:56:ec:fa:75:21:62:ae:b0:51:0f:68:f4:1d:e7:af:
6c:59:d6:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:05:48 2025 by rpki-client