Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft
File: bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft (raw, json)
Hash identifier: anpzg3isLKk/K18ecDdZHcV/0ZdTWwzJZsFZBqxcl2w=
Subject key identifier: 3B:FE:CB:03:05:F2:EB:46:D2:CD:67:EC:B8:9F:12:E0:A0:4F:90:30
Authority key identifier: 6E:1D:8D:D3:1A:E9:E0:3A:F4:D2:6E:9D:A6:E2:DD:86:A0:30:39:A4
Certificate issuer: /CN=6e1d8dd31ae9e03af4d26e9da6e2dd86a03039a4
Certificate serial: 019923D5E9CA7AC0D9E89287F331DE357FC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft
Manifest number: 0218
Signing time: Sun 07 Sep 2025 11:00:45 +0000
Manifest this update: Sun 07 Sep 2025 11:00:45 +0000
Manifest next update: Mon 08 Sep 2025 11:00:45 +0000
Files and hashes: 1: 8UG5Qh7t6gkyV0rD8nZ1oL2Ckuo.roa (hash: br/1geYk5+cZ7ZJEexlmKCcjPCyNtKTSm1+1iwPC7Z0=)
2: bh2N0xrp4Dr00m6dpuLdhqAwOaQ.crl (hash: ZE06xoj50m5L7PQur3ceCQg36fkwIm96nxXYUS1mMc8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d5:e9:ca:7a:c0:d9:e8:92:87:f3:31:de:35:7f:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e1d8dd31ae9e03af4d26e9da6e2dd86a03039a4
Validity
Not Before: Sep 7 11:00:45 2025 GMT
Not After : Sep 8 11:00:45 2025 GMT
Subject: CN=3bfecb0305f2eb46d2cd67ecb89f12e0a04f9030
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c7:85:ca:9c:2c:f7:c3:11:61:0e:c7:25:69:
4d:49:9d:b5:65:f0:fc:fb:97:8b:d1:cf:e3:43:d6:
5b:06:97:a3:61:ff:43:f6:5f:9e:04:c9:38:55:a0:
b6:5e:3e:46:87:2d:22:27:15:f9:de:da:65:08:fd:
f0:9f:60:87:39:48:9b:6a:0f:3b:70:5d:d1:1a:f4:
8a:a5:6c:c7:ca:71:7b:51:b9:93:eb:40:f3:04:94:
d8:8f:35:0f:63:58:02:d7:1a:d5:9f:ff:bb:27:96:
32:ff:9d:0d:b7:63:b0:ff:cd:35:41:b2:67:54:f8:
72:90:07:1e:bc:2f:d8:27:90:ec:f0:81:da:21:f4:
94:5e:5b:62:b3:cc:a9:70:64:b9:b5:cf:f2:95:4e:
db:31:37:20:41:dd:dd:64:e7:e0:e5:df:4a:17:67:
ca:f7:5d:e7:ee:c0:a5:1b:f4:20:04:04:aa:36:57:
c8:f9:22:30:0f:a6:1a:55:aa:fe:03:5a:f5:01:ba:
08:6f:99:3f:3d:45:0a:59:f1:34:8c:f5:7c:21:29:
3f:12:96:3e:ec:9e:40:90:c7:00:48:f1:ee:73:36:
c3:46:2a:68:a1:d8:39:dc:ab:fa:70:9c:fb:33:45:
4f:98:74:30:4b:7b:e4:3c:d0:65:e8:82:13:14:8f:
59:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:FE:CB:03:05:F2:EB:46:D2:CD:67:EC:B8:9F:12:E0:A0:4F:90:30
X509v3 Authority Key Identifier:
keyid:6E:1D:8D:D3:1A:E9:E0:3A:F4:D2:6E:9D:A6:E2:DD:86:A0:30:39:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:4a:b9:39:5a:4b:81:79:69:5d:f2:fa:00:db:6e:91:7a:a2:
57:ab:39:ab:a5:d2:84:11:c9:eb:72:cc:34:7b:d0:f0:96:b9:
15:3b:bd:56:eb:c1:20:c3:95:93:91:0e:a7:e3:03:7a:81:e1:
88:19:60:33:6e:b4:5b:52:a1:8b:32:30:94:18:c3:f4:29:4b:
b9:40:f3:73:5f:c5:2b:9d:f6:46:9e:57:c0:b7:67:3b:39:23:
6b:5f:f9:96:88:00:db:8f:fe:4d:f5:7e:47:ab:62:9f:d6:fa:
c7:90:df:1b:a4:9e:ea:0c:2e:9c:2e:09:33:f7:3c:f9:ef:f3:
6a:61:3b:b0:30:65:ec:4b:87:64:af:44:2b:95:7e:0f:e7:9c:
75:51:d6:8e:12:f9:67:ca:3c:f8:94:6d:dc:48:5a:1a:ea:75:
51:61:2a:6c:f9:43:16:19:72:66:1f:61:3a:19:1b:25:cb:dd:
f6:88:aa:34:bb:15:45:7f:27:c1:2e:61:7b:0c:2c:01:fb:d6:
cd:5b:78:16:b3:59:89:14:bd:d5:a1:bf:f5:6c:82:76:7c:b4:
31:5f:14:04:64:4b:01:4b:10:5d:94:1f:00:68:2c:3b:d7:37:
2e:48:f4:6c:20:09:e4:f2:1d:6d:e5:f5:60:d5:16:a1:44:95:
ed:f4:0e:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:38:12 2025 by rpki-client