Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
File: bhWkM20vXhvWBzfelXlomSp0cOk.mft (raw, json)
Hash identifier: 1kPY0BXRV+GSyVI8J6yNHfcoRNmGKF/nrHX7ge+LS78=
Subject key identifier: 42:B4:82:F9:A8:FF:59:63:5A:00:E7:86:87:F7:4B:55:E2:71:10:3F
Authority key identifier: 6E:15:A4:33:6D:2F:5E:1B:D6:07:37:DE:95:79:68:99:2A:74:70:E9
Certificate issuer: /CN=6e15a4336d2f5e1bd60737de957968992a7470e9
Certificate serial: 019922FA858A891D7469AC6AD4A7716E6342
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 07:01:07 +0000
Manifest this update: Sun 07 Sep 2025 07:01:07 +0000
Manifest next update: Mon 08 Sep 2025 07:01:07 +0000
Files and hashes: 1: bhWkM20vXhvWBzfelXlomSp0cOk.crl (hash: 9AV9zvpBPfikKlECRDdlE2ZS8wlU1c6r4gV/N10RTvc=)
2: zgsEDv3otZRAtHyWvGAv7rzQjXg.roa (hash: ZyzEtsDUzNfUy6YLDq0VYYYmMcE0twVe+0tLjGTigwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:85:8a:89:1d:74:69:ac:6a:d4:a7:71:6e:63:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e15a4336d2f5e1bd60737de957968992a7470e9
Validity
Not Before: Sep 7 07:01:07 2025 GMT
Not After : Sep 8 07:01:07 2025 GMT
Subject: CN=42b482f9a8ff59635a00e78687f74b55e271103f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:05:38:c8:f7:62:23:db:ff:bc:2b:04:61:ab:
96:9b:fe:98:1a:a1:6b:89:92:68:c1:59:12:ab:0a:
70:ad:cd:2f:30:9e:66:b8:f6:4a:86:ec:9a:ac:3c:
d8:93:20:17:40:0c:b5:4b:09:e2:b0:62:de:93:37:
c2:ce:f4:0a:1b:e2:8d:ac:6d:53:8f:36:e4:7c:ba:
4b:47:b0:83:48:56:23:a6:34:20:a6:af:a2:bf:f0:
2e:45:05:32:82:5f:7f:5b:bd:fb:a8:7d:1f:57:7d:
2f:1f:b4:7d:1f:57:d2:8f:f4:82:2f:9e:1e:a4:b3:
27:16:f2:3c:75:24:73:01:af:a0:da:7d:65:7f:0b:
35:7b:c0:71:75:d9:b1:33:17:1c:57:31:be:51:bb:
10:ec:a6:24:69:50:cf:a3:63:1e:a0:37:34:a8:31:
39:06:1a:53:93:56:c3:84:76:b3:38:cf:ba:20:21:
80:40:b9:d6:e8:7c:43:d1:b3:8a:d4:66:5a:f0:c7:
e3:20:4e:11:92:0a:b8:1c:cd:c8:17:09:3a:77:77:
b5:c1:73:02:2f:7b:ee:d3:c3:74:8c:63:3d:bd:82:
c0:17:d8:0a:e6:74:ee:d2:cd:65:11:09:59:22:1b:
08:6e:42:ea:5d:56:ed:60:9a:c7:30:31:5f:80:19:
7e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:B4:82:F9:A8:FF:59:63:5A:00:E7:86:87:F7:4B:55:E2:71:10:3F
X509v3 Authority Key Identifier:
keyid:6E:15:A4:33:6D:2F:5E:1B:D6:07:37:DE:95:79:68:99:2A:74:70:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:80:6d:4c:ba:0e:42:95:78:dd:a4:21:b3:5c:41:39:63:86:
4b:9a:b0:0c:2a:9b:56:a8:d5:8b:11:00:73:cb:4c:a9:ab:12:
45:75:8d:d1:a6:d5:b2:22:4e:f6:5c:db:7f:1b:bf:3b:3e:24:
c8:8f:3a:f7:c3:96:ec:9e:61:e0:40:11:e0:1e:0f:3f:61:b4:
dc:b8:f5:cf:ac:ab:33:bf:c7:85:5a:00:70:dd:cb:a6:cc:36:
08:72:90:9e:c1:cc:ca:7d:d0:dd:14:99:c0:c9:46:ab:6f:5c:
a4:c6:a4:be:8a:68:de:04:15:2a:6e:dc:38:14:69:de:0a:79:
bc:60:13:1c:12:07:fe:ad:3e:03:92:73:40:ed:95:92:4d:34:
5e:c9:8b:96:91:21:5a:02:32:5d:73:84:2b:8c:f5:05:d5:fc:
70:e1:39:e0:71:6b:2d:79:2f:29:b4:ee:65:a5:2c:78:8b:f6:
b4:ae:65:e2:03:b8:3b:b6:65:0b:ad:c0:c1:75:26:ea:91:d8:
42:24:4e:5d:e3:49:e2:66:3a:3c:84:e7:f5:89:aa:f8:b1:35:
b0:e8:94:59:e9:32:bf:1b:28:7d:a2:80:bd:84:33:b7:fb:bc:
e3:39:b8:fe:a7:b9:a9:68:ac:52:9b:e6:39:07:2c:b0:69:6f:
27:3b:cb:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:02:49 2025 by rpki-client