Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
File: bIkO9qiKsz-logZ2B2jdMlHCOK8.mft (raw, json)
Hash identifier: tZOZiZQ9YCMSv/IcqPgHHeRDIjAwq93y/bdcv5kpRAk=
Subject key identifier: 84:42:23:35:F4:AC:35:3F:5B:65:3D:3F:25:25:BB:3F:7C:4F:2C:E5
Authority key identifier: 6C:89:0E:F6:A8:8A:B3:3F:A5:A2:06:76:07:68:DD:32:51:C2:38:AF
Certificate issuer: /CN=6c890ef6a88ab33fa5a206760768dd3251c238af
Certificate serial: 01993612C477F01EE0861CBB84E3D573DFE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
Manifest number: 167E
Signing time: Thu 11 Sep 2025 00:00:23 +0000
Manifest this update: Thu 11 Sep 2025 00:00:23 +0000
Manifest next update: Fri 12 Sep 2025 00:00:23 +0000
Files and hashes: 1: Jg3tAly607eUyr5ul8qsb9iYCbk.roa (hash: E+on8KClaRu9XGuipMYBlTB9A2oc11upYWwt1aQCGuI=)
2: bIkO9qiKsz-logZ2B2jdMlHCOK8.crl (hash: uChct4kTWsVUP2dCY3ZyMGp2upYtMUkaJIiAsB9zJ/s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 00:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:12:c4:77:f0:1e:e0:86:1c:bb:84:e3:d5:73:df:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c890ef6a88ab33fa5a206760768dd3251c238af
Validity
Not Before: Sep 11 00:00:23 2025 GMT
Not After : Sep 12 00:00:23 2025 GMT
Subject: CN=84422335f4ac353f5b653d3f2525bb3f7c4f2ce5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:48:9f:96:c0:bd:0b:90:02:52:97:a3:ad:bf:
51:83:57:3e:87:bf:c9:d7:d6:6f:64:a7:de:95:e9:
6f:47:89:58:0d:fb:2b:3a:38:c4:e9:95:31:d4:c0:
7a:dd:3d:90:5d:36:9f:7f:2c:ae:72:1f:6f:2d:21:
dc:27:66:1c:cb:6d:99:e5:60:ef:9d:97:67:b7:4e:
9a:8f:79:4d:34:34:c3:ed:6e:2d:29:5c:76:40:cd:
a5:de:e7:ce:1d:95:5e:b9:26:0b:78:35:2e:dd:89:
bc:04:55:7f:0c:1e:16:63:26:5b:43:4d:84:a9:fa:
50:c3:18:cd:1e:d1:64:bd:8b:bc:07:1b:51:51:8b:
f8:3b:e4:9d:89:d9:37:6d:75:be:80:83:2e:29:df:
83:17:42:f4:95:6d:ef:ec:a6:12:a2:63:9e:15:06:
5a:8e:17:9b:0b:35:4b:0d:31:3a:3d:3a:49:84:85:
39:04:bd:cc:bc:34:4a:d1:91:00:c5:fe:1a:35:45:
bb:aa:ab:94:9a:de:d1:f4:56:a9:9b:41:57:f3:df:
96:22:88:71:9c:a6:2a:4f:3e:96:32:b8:0f:6b:3a:
25:41:9e:76:a6:81:99:ee:a1:e0:21:28:a1:21:8c:
26:41:15:2e:ee:d4:89:6a:2f:82:ee:ee:ee:bf:1e:
bc:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:42:23:35:F4:AC:35:3F:5B:65:3D:3F:25:25:BB:3F:7C:4F:2C:E5
X509v3 Authority Key Identifier:
keyid:6C:89:0E:F6:A8:8A:B3:3F:A5:A2:06:76:07:68:DD:32:51:C2:38:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:97:42:c4:ae:cb:12:2c:79:cf:86:ab:8c:10:e7:a6:f3:0f:
48:18:c4:bd:83:11:16:1e:79:32:71:63:ba:99:42:63:74:0d:
c6:70:21:8f:fc:ad:91:c5:ec:5b:82:f0:63:89:f7:c6:5d:64:
d1:b6:64:67:49:ad:b3:23:5d:48:1b:5f:cf:16:5f:df:d7:f0:
a1:54:b6:b3:e4:7a:05:1d:0c:81:17:31:37:f0:bd:0b:ce:f8:
0d:d1:5c:0d:3d:0c:83:fa:cc:ea:09:f4:f2:e1:11:99:0f:a5:
67:4e:15:81:37:33:49:60:17:18:7c:4f:f6:e8:41:79:8e:0a:
41:15:64:8f:03:47:3f:ff:86:4c:0d:9f:e0:53:ac:4c:90:1b:
24:dd:49:f9:23:1c:be:cd:ca:98:87:4a:d6:42:00:17:b5:ae:
4c:19:f4:18:5f:91:d1:b5:45:98:5e:8e:6b:fd:cc:9c:8b:8e:
bf:a1:85:f2:17:6a:0d:6d:f6:39:55:5f:4f:fc:26:79:14:ff:
9a:c2:87:7f:1d:51:9d:10:e5:9d:17:5f:8e:49:28:30:f7:d2:
02:5d:93:be:06:8d:78:7e:3a:e8:bd:24:77:77:6b:ee:5a:02:
5e:e2:c8:cf:0f:e3:90:43:d2:74:0a:5d:01:ee:a3:e8:cb:98:
83:68:a0:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 09:51:22 2025 by rpki-client