Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft
File: bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft (raw, json)
Hash identifier: 10MXKIoTpTnAShDQknftiF4EsfPrGemy0Xx5Pq3Yh+g=
Subject key identifier: 36:CC:78:10:7A:34:C6:3F:41:D9:8A:21:71:63:56:B4:81:13:A0:4D
Authority key identifier: 6D:64:A8:67:F4:5C:48:F2:02:7B:00:B8:3C:77:79:6F:BB:BE:03:28
Certificate issuer: /CN=6d64a867f45c48f2027b00b83c77796fbbbe0328
Certificate serial: 0199240D9781B191491A0636E5D5532354D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bWSoZ_RcSPICewC4PHd5b7u-Ayg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft
Manifest number: 021D
Signing time: Sun 07 Sep 2025 12:01:34 +0000
Manifest this update: Sun 07 Sep 2025 12:01:34 +0000
Manifest next update: Mon 08 Sep 2025 12:01:34 +0000
Files and hashes: 1: ZX73IV0uGk2ob4VktyJV9wBSBac.roa (hash: Z5WvoiItJu0epzg3OUDQ1qokvJ24J2oFtkaMgOd6bHY=)
2: bWSoZ_RcSPICewC4PHd5b7u-Ayg.crl (hash: IbtxUe1sfuIRv6i1CyP+jRSEqMSG9lbbSbY5fnX/BXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bWSoZ_RcSPICewC4PHd5b7u-Ayg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:97:81:b1:91:49:1a:06:36:e5:d5:53:23:54:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d64a867f45c48f2027b00b83c77796fbbbe0328
Validity
Not Before: Sep 7 12:01:34 2025 GMT
Not After : Sep 8 12:01:34 2025 GMT
Subject: CN=36cc78107a34c63f41d98a21716356b48113a04d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7e:c8:12:29:fb:ec:50:e1:7e:8f:2f:a3:20:
af:6d:3d:18:e2:66:25:5d:e6:e7:5b:ac:b8:7f:62:
90:b4:b5:1c:27:a7:c7:ab:25:31:79:db:95:fd:5f:
0b:be:1a:41:9b:22:8f:e4:3b:82:28:e0:9f:5b:96:
a4:f1:34:b5:7f:f0:55:97:ca:07:0f:f2:be:86:f7:
a6:cf:16:50:b8:44:33:f4:a3:b9:99:3e:04:92:83:
aa:ff:44:28:41:a0:0a:2a:2c:98:4e:28:ff:30:e3:
54:04:74:93:3b:9d:3c:a8:cb:d4:1c:8b:f2:f3:15:
89:83:50:2a:ad:ff:e1:40:78:8f:ad:ce:c5:42:83:
c0:11:19:81:b1:d5:2f:75:da:1e:ed:3f:22:08:85:
80:33:f5:27:86:d0:27:b4:28:56:32:9e:68:f3:4d:
2d:0a:6c:b1:2d:9d:02:74:85:9a:de:74:7d:15:67:
9d:7f:a3:f9:28:e7:4d:f4:0d:6d:89:51:30:f9:46:
f9:09:1e:8a:e8:e9:42:aa:07:b2:4e:2a:df:a8:38:
21:e9:65:dd:5f:88:b4:89:ae:e7:5b:e7:18:5c:25:
d7:eb:70:4a:0f:d3:d4:e6:e7:df:4f:62:0b:cd:a7:
2c:a8:c4:23:4f:b7:65:7a:73:d8:c1:94:d1:ff:44:
b1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:CC:78:10:7A:34:C6:3F:41:D9:8A:21:71:63:56:B4:81:13:A0:4D
X509v3 Authority Key Identifier:
keyid:6D:64:A8:67:F4:5C:48:F2:02:7B:00:B8:3C:77:79:6F:BB:BE:03:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bWSoZ_RcSPICewC4PHd5b7u-Ayg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:7d:5a:8f:37:1b:4e:8c:83:42:28:31:e0:e4:c9:2f:16:90:
6f:fa:a7:1f:fb:6a:97:ca:ee:05:6a:cb:35:2d:d3:b7:fc:9a:
32:7a:ed:5b:28:ce:da:dd:6d:af:89:4b:74:f4:36:14:0e:3a:
96:e6:59:51:cd:8c:d4:22:e4:70:3c:d1:fd:39:e9:00:ec:28:
63:ce:11:0a:0c:2d:5b:c7:1b:7a:53:b4:44:37:c9:95:47:76:
e8:68:bc:de:1f:a0:61:5e:d8:1c:1d:69:64:54:8f:99:96:ba:
a2:40:b5:43:d3:f0:0f:b1:d7:d8:a9:81:73:9f:95:be:01:77:
e1:0e:27:5e:6a:33:ed:60:7d:1b:78:d7:a1:05:f8:b3:9d:01:
d6:14:f3:be:f4:80:01:f6:32:ff:45:96:39:c1:e3:4e:f7:fa:
a9:ca:f0:5f:4b:a2:b7:89:0d:71:b4:9b:f1:03:cb:1b:4a:b5:
df:d6:b4:84:b1:cd:aa:18:61:98:ae:b2:0d:f3:ab:a4:72:ff:
9d:f2:22:cd:92:c8:56:ef:bf:61:df:42:cf:1a:c2:28:b4:f4:
05:22:97:1a:64:52:33:92:6a:52:b3:f1:d1:90:fd:47:55:6c:
f6:bc:37:8c:88:1d:0c:5e:a9:19:d8:dd:5c:59:1a:09:74:c9:
d1:e8:f7:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:37:06 2025 by rpki-client