Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
File: bfhqH1cK4xUpAiqk9h79nsK5fQU.mft (raw, json)
Hash identifier: SEqRSDty9rnCMgRk1Psel38FdkJZj8eJjkve6hLTWgE=
Subject key identifier: E4:EE:D9:2B:56:4A:62:AA:80:CA:B8:57:8C:6A:55:61:9F:8B:CB:30
Authority key identifier: 6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
Certificate issuer: /CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Certificate serial: 019751FD17ABA654799C633B0236AC268A6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
Manifest number: 13FC
Signing time: Mon 09 Jun 2025 00:00:30 +0000
Manifest this update: Mon 09 Jun 2025 00:00:30 +0000
Manifest next update: Tue 10 Jun 2025 00:00:30 +0000
Files and hashes: 1: BpLbGApyHXLB4qqgJyw3nGH9lH0.roa (hash: 4AoUx/2M994KEwtEdAKInOt11G1446xmTonI1qJPrOg=)
2: bfhqH1cK4xUpAiqk9h79nsK5fQU.crl (hash: Z6Td7U5dmjlM+xoT4Bh72n0tcL5/M2n1A2CHgNy5O6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:fd:17:ab:a6:54:79:9c:63:3b:02:36:ac:26:8a:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Validity
Not Before: Jun 9 00:00:30 2025 GMT
Not After : Jun 10 00:00:30 2025 GMT
Subject: CN=e4eed92b564a62aa80cab8578c6a55619f8bcb30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a3:9a:1b:88:1f:a8:b7:27:b9:44:f4:ad:41:
c5:1b:ce:8c:1b:df:47:93:cf:8f:a6:e5:1c:92:2c:
73:88:66:0d:28:cc:20:4b:2c:de:61:70:2f:e9:2a:
d6:d4:0f:b1:fc:56:4b:f2:3c:82:0b:af:26:af:80:
eb:e7:d3:e8:26:83:df:75:20:6d:f9:c7:32:b2:21:
83:5f:8f:25:e0:66:12:f5:41:94:3e:22:7b:7d:4c:
e3:6c:98:ba:90:2e:16:bf:0f:a4:13:06:39:92:d5:
f1:00:6e:58:c4:03:ef:6b:a4:13:a1:4d:32:b5:97:
86:10:e5:01:e0:60:2d:2f:78:3d:f6:f9:e4:85:6c:
12:2a:50:00:29:06:07:09:76:cd:b0:cb:b4:11:bf:
64:4a:53:d4:41:d1:21:48:c5:08:8e:c4:af:99:03:
0b:7f:7a:1e:2e:90:45:9a:fc:0c:ea:52:71:b0:cd:
6d:43:4e:92:8b:2f:59:bc:9f:7d:02:98:69:c7:c2:
0a:ee:5e:7a:a5:b0:d3:00:20:94:b9:90:e5:cb:4d:
98:10:7b:2f:99:d5:9d:08:23:81:4f:6b:4e:b4:b8:
cc:7c:28:b2:32:43:32:32:d9:80:65:55:92:41:1d:
85:7e:b5:7a:a7:d6:99:9d:03:1c:eb:4d:c9:03:78:
6a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:EE:D9:2B:56:4A:62:AA:80:CA:B8:57:8C:6A:55:61:9F:8B:CB:30
X509v3 Authority Key Identifier:
keyid:6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:e2:e3:57:db:9f:9d:de:9c:29:0a:13:f7:65:f6:35:0b:fa:
6c:e4:95:d5:b6:5e:6d:4f:67:1c:c2:66:b8:6a:70:9e:fb:4d:
5f:0e:d9:c7:c4:37:9b:fa:fb:1b:9b:19:6d:01:93:f8:25:ee:
71:e7:05:90:fd:64:c4:91:15:cc:b0:43:f9:86:d6:6d:57:e2:
dd:04:f5:0e:df:66:9a:60:f3:1b:a4:d2:3a:69:de:e2:42:5c:
7f:14:dc:4e:08:2f:9b:00:78:96:dd:8a:8b:85:d7:18:be:d0:
4d:e5:33:75:17:61:cb:d0:70:d4:96:f4:14:98:23:ae:8d:97:
bf:5e:bb:52:58:95:dd:5c:87:f8:56:1b:3b:14:fc:a3:3f:92:
1d:e5:cd:11:1a:ca:3e:20:7d:95:89:e9:2b:51:9b:59:ed:f9:
52:5e:b8:c9:f4:c6:4d:b2:8a:4f:76:c5:73:a5:af:de:b4:a8:
91:66:e9:d3:cc:3d:bc:60:51:45:eb:94:9c:fb:4a:3f:82:7c:
6e:32:07:c6:3e:2e:cd:e1:f8:84:fd:18:3c:cd:c1:36:bc:99:
a7:55:6e:82:9b:cf:a7:bd:4a:55:1b:cb:71:19:6b:de:c6:10:
7f:fe:a3:22:18:24:4b:a6:23:46:a6:e7:c2:42:9a:b4:51:9c:
3c:6f:0d:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 03:59:35 2025 by rpki-client