Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
File: bMdYWreoPsgLVauVe_N7eR52UBY.mft (raw, json)
Hash identifier: 3gG2NklipJhMWESPtxeid4kQYyfaxfRfDR6rT0L8hLE=
Subject key identifier: 68:D1:14:BE:30:5D:C2:E4:2A:98:B6:A5:AB:47:C1:B9:FE:48:4E:83
Authority key identifier: 6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
Certificate issuer: /CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Certificate serial: 019921B1B3C23CC638F33D9DADBD1B1F8E97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
Manifest number: 13DC
Signing time: Sun 07 Sep 2025 01:01:57 +0000
Manifest this update: Sun 07 Sep 2025 01:01:57 +0000
Manifest next update: Mon 08 Sep 2025 01:01:57 +0000
Files and hashes: 1: JJLEui4261ZXJVAJCMhhZuF8jH8.roa (hash: /ixKOls/TcJQuO85TTUBz1567wbeYHBB+Wz+IfsDjR8=)
2: bMdYWreoPsgLVauVe_N7eR52UBY.crl (hash: tBO1zf5xY0fAlr2nEqZNvF81swpdqdvBnfP+UibYX+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:b3:c2:3c:c6:38:f3:3d:9d:ad:bd:1b:1f:8e:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Validity
Not Before: Sep 7 01:01:57 2025 GMT
Not After : Sep 8 01:01:57 2025 GMT
Subject: CN=68d114be305dc2e42a98b6a5ab47c1b9fe484e83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a0:7a:e6:e6:a6:ff:81:d9:68:8a:07:25:ac:
6d:91:15:19:e7:f2:1c:e8:e7:a8:1c:2d:3e:ca:38:
b6:11:8b:f3:25:48:88:3e:2b:e9:e4:bb:3d:80:f1:
73:3b:95:07:c7:6d:bd:95:90:f0:1f:86:fb:f5:61:
25:49:b4:83:8f:40:91:23:43:e9:70:17:f3:72:5f:
97:b4:da:a4:96:6e:16:69:b7:86:6f:f1:e5:a4:69:
10:fb:03:25:e5:38:03:54:1e:ce:7d:4b:27:2b:3b:
95:07:f6:e6:2e:5f:d9:0d:aa:5d:4a:e2:5e:d5:08:
91:03:d8:53:b8:d4:9b:47:84:6d:b1:00:d2:ad:47:
56:95:ce:c6:6d:69:69:77:4f:a2:f8:18:42:5c:92:
fc:80:43:55:f0:46:ac:d3:e3:60:3b:2c:01:06:d1:
a9:2d:4d:7b:5a:ac:2f:00:42:c0:12:23:d8:e7:98:
e0:82:fd:4e:48:84:28:0b:ae:df:30:ae:c1:4c:bb:
b4:9f:85:2a:1e:4f:6a:1b:71:22:bd:ea:4a:72:a7:
34:32:6d:fe:e6:40:55:a6:1d:39:2b:5a:08:67:53:
d4:ff:91:29:8e:19:51:26:6f:70:ac:28:b0:7e:80:
1b:1d:f1:ac:76:e6:81:f1:3c:31:d1:d2:7a:86:2b:
87:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D1:14:BE:30:5D:C2:E4:2A:98:B6:A5:AB:47:C1:B9:FE:48:4E:83
X509v3 Authority Key Identifier:
keyid:6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:5e:bc:97:23:67:72:da:f2:0a:34:15:c5:29:fc:e9:83:b3:
b5:25:9d:07:f4:b9:e8:5d:54:6c:86:34:cc:37:81:af:e4:bb:
c8:6e:ad:dd:73:b8:88:52:24:66:a8:f1:e1:ff:fe:de:6b:e9:
05:e6:3b:5e:23:7c:18:ed:0a:bc:dd:bd:eb:f1:ed:92:2b:f5:
10:8c:6d:86:5a:fc:f2:78:e4:90:8b:57:b7:d8:85:04:ed:c6:
ae:e9:c5:38:ff:00:7f:d6:f4:09:5d:88:ea:da:8b:eb:ba:0f:
41:cb:78:21:c6:01:01:f8:bd:64:ba:ae:2a:1f:31:6e:cb:07:
d8:e2:91:c4:54:2f:d5:f6:d7:da:f5:b6:36:b0:17:19:f0:49:
e2:a0:81:d4:a0:a7:66:fc:e4:a5:e1:36:4c:69:7c:78:8e:3b:
e1:3f:82:53:66:16:10:5d:eb:aa:02:03:37:4d:11:7b:9c:ec:
76:08:be:54:c0:8b:21:a0:bc:d3:35:ea:f8:db:9b:be:a5:0b:
34:11:c7:fd:3a:66:f9:10:c8:04:7f:cf:71:0f:26:a0:80:26:
f1:2c:a2:34:e8:51:ec:02:87:e7:cd:49:68:3f:f8:ff:e3:c2:
38:fd:46:f5:75:dd:8d:bc:54:92:e6:6b:37:b5:cc:0f:c6:be:
3e:74:87:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:07:38 2025 by rpki-client