Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
File: bhWkM20vXhvWBzfelXlomSp0cOk.mft (raw, json)
Hash identifier: qg8vk16ube/hcXeBo5E4S2VPAiOz+kQhtHd2b3LIgEY=
Subject key identifier: AD:70:89:7C:00:A9:11:05:38:96:27:1A:08:0E:0D:3B:F7:F2:3D:72
Authority key identifier: 6E:15:A4:33:6D:2F:5E:1B:D6:07:37:DE:95:79:68:99:2A:74:70:E9
Certificate issuer: /CN=6e15a4336d2f5e1bd60737de957968992a7470e9
Certificate serial: 0197C94BE878DFB89365A029906E326EFFD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
Manifest number: 15BF
Signing time: Wed 02 Jul 2025 04:01:24 +0000
Manifest this update: Wed 02 Jul 2025 04:01:24 +0000
Manifest next update: Thu 03 Jul 2025 04:01:24 +0000
Files and hashes: 1: bhWkM20vXhvWBzfelXlomSp0cOk.crl (hash: 5tak033/5AajK/J6Y33jidCBXoXfn9ZPrypiEWqJTHM=)
2: zgsEDv3otZRAtHyWvGAv7rzQjXg.roa (hash: ZyzEtsDUzNfUy6YLDq0VYYYmMcE0twVe+0tLjGTigwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 04:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:4b:e8:78:df:b8:93:65:a0:29:90:6e:32:6e:ff:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e15a4336d2f5e1bd60737de957968992a7470e9
Validity
Not Before: Jul 2 04:01:24 2025 GMT
Not After : Jul 3 04:01:24 2025 GMT
Subject: CN=ad70897c00a911053896271a080e0d3bf7f23d72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e4:07:e6:3f:aa:9d:cb:c6:db:f4:f2:72:51:
2b:cb:12:28:33:0a:61:73:24:04:03:93:97:da:46:
85:4f:9b:41:c5:8b:4f:eb:59:80:ec:67:5f:90:ec:
a2:b9:20:c3:01:b2:71:16:06:7a:3d:5c:05:0f:98:
d5:56:3a:16:a2:cd:9b:8c:ed:89:71:26:b8:c5:da:
ee:21:7d:4b:6f:cf:e9:da:db:1a:3b:d4:e3:57:78:
fb:a8:a6:75:25:23:6a:49:c3:9c:bf:dc:e4:64:ed:
0e:e4:59:22:f5:0a:82:5e:51:a8:30:34:d6:e3:c9:
bd:f3:3c:7c:d6:e4:9a:c1:53:79:7f:8f:c2:8e:31:
60:d0:f7:9c:9e:0a:e7:43:05:1a:02:e6:e1:1f:a2:
15:df:be:0b:86:75:4b:08:32:a3:79:14:5b:c3:11:
36:6d:84:32:b3:ab:89:30:b3:59:9f:e0:2b:31:00:
ae:e6:c9:af:bb:be:94:40:28:be:1b:f9:52:27:f4:
17:1d:09:0a:ff:6c:75:9a:21:60:d0:2a:ff:9f:a0:
f0:7f:ee:9a:9f:aa:c1:7b:e6:b8:96:44:ed:94:6c:
33:1a:f6:c8:7e:05:56:ea:40:72:6b:fc:3c:b7:90:
d4:bf:2f:b5:f7:d9:08:da:e1:b3:7a:50:57:f3:bd:
3d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:70:89:7C:00:A9:11:05:38:96:27:1A:08:0E:0D:3B:F7:F2:3D:72
X509v3 Authority Key Identifier:
keyid:6E:15:A4:33:6D:2F:5E:1B:D6:07:37:DE:95:79:68:99:2A:74:70:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:b0:8d:c7:47:4b:f8:64:15:cd:ce:c2:0f:34:c8:6b:fb:dd:
bb:99:b1:7f:b0:80:06:20:51:60:e4:d8:5d:f1:a3:07:ca:9e:
60:fd:6e:e0:cb:8d:a8:3f:75:3c:57:14:19:5a:c8:66:5d:71:
ce:e5:97:d6:f8:3e:9b:04:23:20:da:75:a0:28:77:2e:16:72:
5e:bd:55:fe:3a:f7:f2:62:1a:81:2a:56:f6:f8:7b:20:c9:e6:
c9:2e:f7:62:59:dc:7c:62:16:7a:c2:38:90:cc:38:ef:aa:2a:
f3:c3:32:d9:d7:5f:17:5e:ee:bc:c7:7b:b0:0d:33:94:56:50:
ab:63:ad:69:c0:57:42:4c:c9:ea:42:34:39:5d:5c:ed:f8:e4:
5f:a5:09:28:75:f4:5a:36:07:5a:dc:a3:d5:d7:41:5d:87:d8:
2e:c3:22:6b:63:e0:88:95:3d:bc:96:56:13:aa:5f:16:9e:46:
ac:8a:ce:01:c3:ef:44:10:73:aa:7a:6a:53:70:f5:38:aa:73:
f8:a0:6f:c6:93:53:32:19:83:fd:d0:5d:51:c9:7a:b7:36:88:
7e:d1:77:2f:66:b4:2c:eb:e2:b0:9e:e8:bd:e5:37:9f:53:41:
cc:d7:8c:07:56:87:7d:0f:6b:f3:a4:07:3b:67:aa:0b:58:71:
bf:63:ce:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 13:18:05 2025 by rpki-client