Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
File: bfhqH1cK4xUpAiqk9h79nsK5fQU.mft (raw, json)
Hash identifier: 2tVkMxuZIYR22ByR/KHErsqMV/wCTLiOlV8uww0FCtQ=
Subject key identifier: 4D:43:33:37:42:A7:B9:7E:F1:B0:10:CE:5C:04:FD:B4:21:A6:2A:56
Authority key identifier: 6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
Certificate issuer: /CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Certificate serial: 019921B09B53173F2C6A9905E5620C90B1DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
Manifest number: 14EC
Signing time: Sun 07 Sep 2025 01:00:46 +0000
Manifest this update: Sun 07 Sep 2025 01:00:46 +0000
Manifest next update: Mon 08 Sep 2025 01:00:46 +0000
Files and hashes: 1: BpLbGApyHXLB4qqgJyw3nGH9lH0.roa (hash: 4AoUx/2M994KEwtEdAKInOt11G1446xmTonI1qJPrOg=)
2: bfhqH1cK4xUpAiqk9h79nsK5fQU.crl (hash: +0D741RWBpEHiYeiuEyT/77WxFYtgnVX70850H3E8jM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:9b:53:17:3f:2c:6a:99:05:e5:62:0c:90:b1:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Validity
Not Before: Sep 7 01:00:46 2025 GMT
Not After : Sep 8 01:00:46 2025 GMT
Subject: CN=4d43333742a7b97ef1b010ce5c04fdb421a62a56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2e:d6:1f:f6:f7:2c:25:b1:21:4b:6d:dd:29:
e7:41:4a:8d:c9:28:23:c2:47:7b:c8:a0:9a:67:a3:
0c:fe:2a:f8:ec:b3:eb:b3:cc:2c:cd:87:c6:03:ba:
c2:6a:b4:de:0a:12:ce:64:50:ba:c7:2f:fc:14:c0:
14:ba:f1:b7:62:79:85:f1:09:31:3a:c1:7f:7e:ff:
3c:d5:d9:84:37:2b:19:6c:18:9c:94:45:cc:f8:da:
46:41:61:f6:fb:9c:43:ab:20:8f:a4:bc:89:b8:1d:
67:03:7c:31:5e:5d:b0:8c:2f:b7:f6:1d:29:05:89:
53:c8:4c:50:8e:c5:27:e8:cb:b5:9d:25:3a:0d:8e:
e2:d7:d6:3f:42:e7:3a:3e:a1:99:d8:f8:53:e5:f8:
69:6a:0d:ec:4e:5b:81:0b:44:7f:d1:36:25:5e:a2:
1f:34:a1:86:d6:87:bf:90:96:7f:75:52:12:43:11:
5c:49:ee:ef:a3:ee:13:d4:8e:c1:11:a6:57:9b:45:
7b:f2:d8:12:69:b8:bc:95:e0:48:ad:c5:d1:4b:3e:
8b:6f:2b:39:7a:42:f8:57:dd:50:18:92:8d:c3:48:
70:ce:04:b6:b8:cb:a3:90:53:15:07:cb:61:4f:10:
6f:2e:be:f7:fc:55:a7:26:be:7a:fa:76:f0:79:81:
96:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:43:33:37:42:A7:B9:7E:F1:B0:10:CE:5C:04:FD:B4:21:A6:2A:56
X509v3 Authority Key Identifier:
keyid:6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:0b:6b:d0:a2:2e:66:90:97:53:93:2a:1e:04:e8:0c:f3:3e:
32:32:3a:7d:86:ac:2d:55:3c:18:86:91:8a:84:bb:f5:80:31:
6c:89:df:37:d3:29:85:d6:78:d6:d6:7a:ef:54:8e:e2:19:87:
e9:1f:32:af:da:b9:52:19:4c:a2:d6:0c:30:7f:79:94:23:cf:
e3:8c:f5:d6:1e:e4:58:b6:35:07:b6:8f:be:32:a8:21:e9:81:
65:80:85:1f:61:72:2b:ec:70:fd:da:d9:23:a3:7f:33:9e:01:
63:0a:07:30:34:1b:bf:4b:cf:36:58:34:9c:d5:17:5c:69:ac:
b2:06:90:91:d4:38:04:41:db:0d:00:66:17:f7:e1:88:48:19:
c2:18:d0:60:2d:79:ea:51:4f:d1:69:bc:18:ea:55:19:f7:a9:
2c:55:28:ba:09:4a:a7:45:96:1e:95:d6:aa:11:df:88:6d:55:
4c:ee:d8:85:da:a2:28:e3:db:c9:67:36:9d:e7:af:8f:0a:cd:
3d:a8:35:59:ed:ca:b5:93:a5:fc:f5:b0:53:21:f5:5f:43:5b:
e4:4f:50:f9:a5:7d:4b:0b:e2:53:e4:8a:af:13:39:9f:32:b8:
39:b8:6d:70:7c:03:95:dc:be:f1:09:39:8a:d7:b6:42:fa:bf:
fa:51:0a:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:57:03 2025 by rpki-client