
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
File: bd1AUuD8dlNjYcu9x3UId93zYK0.mft (raw, json)
Hash identifier: xEaB3XoNk+ZxU027LWwaNTGnGO5Lfvzy99qST18WE34=
Subject key identifier: E8:D4:06:4B:DC:64:8B:07:E1:F5:AC:9B:99:42:CE:41:17:C4:DF:E1
Authority key identifier: 6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
Certificate issuer: /CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Certificate serial: 0197613992BDC8F50744D4180BB3DDF1D593
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
Manifest number: 0E98
Signing time: Wed 11 Jun 2025 23:00:52 +0000
Manifest this update: Wed 11 Jun 2025 23:00:52 +0000
Manifest next update: Thu 12 Jun 2025 23:00:52 +0000
Files and hashes: 1: PBeiTxVVl13KulRPara1RXYVicA.roa (hash: RXsTBTBPcZfgBdF/8hAfnipircCVtF7KKV+ZAN7eFr0=)
2: bd1AUuD8dlNjYcu9x3UId93zYK0.crl (hash: aQdsEbOWO3HbIN5/TRaiDtqKELlTF1hJTFYLB03cK0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 21:26:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:61:39:92:bd:c8:f5:07:44:d4:18:0b:b3:dd:f1:d5:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Validity
Not Before: Jun 11 23:00:52 2025 GMT
Not After : Jun 12 23:00:52 2025 GMT
Subject: CN=e8d4064bdc648b07e1f5ac9b9942ce4117c4dfe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:66:4f:2a:5a:ca:93:d9:e3:b7:09:bc:0e:ac:
67:d5:d5:f5:99:8b:01:04:f8:c3:d0:46:c1:70:6a:
4a:ac:44:5c:62:99:99:c5:e0:20:b8:4a:9a:f3:47:
b8:47:ab:2e:db:75:5e:c3:cb:44:88:f7:c9:ef:13:
27:c0:c4:8f:4b:b8:0b:24:62:09:57:83:c1:29:d3:
98:bf:10:97:06:0c:7b:8c:14:e0:19:c6:0d:ef:42:
31:fc:9a:16:30:aa:fa:d5:0a:8b:2a:d8:34:63:52:
f7:6d:b8:46:3a:28:88:7e:b2:01:cc:3d:0b:59:1e:
44:07:d1:d7:f4:13:0b:42:16:2a:75:26:46:11:6b:
48:6b:d0:0d:e2:e2:ba:9e:74:7c:b5:fc:26:4f:14:
6a:4b:99:45:53:d1:48:e2:8a:7b:64:f3:6e:d2:85:
e1:30:06:1b:14:42:b0:ea:f2:f7:7c:2d:71:33:5b:
af:cb:75:66:8a:ec:ac:e5:28:8c:be:53:4a:5c:39:
c3:3a:19:4b:36:2f:d2:f9:50:80:1b:64:09:28:6a:
d9:9d:67:24:32:20:ae:77:5a:e8:6a:c3:e9:d6:0b:
2b:31:d3:83:26:0b:82:70:bc:31:80:f0:73:63:fa:
fb:ca:44:cb:13:04:9b:fa:6e:c9:34:fd:25:4b:b7:
bf:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D4:06:4B:DC:64:8B:07:E1:F5:AC:9B:99:42:CE:41:17:C4:DF:E1
X509v3 Authority Key Identifier:
keyid:6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:c2:b2:c1:2e:27:92:09:6e:34:8c:dc:1f:3e:ff:1e:00:ca:
09:b3:51:10:bd:fb:c5:1f:c8:a5:35:29:d0:17:44:49:01:48:
3a:96:b7:e1:10:7b:b0:dd:50:1f:c1:28:c9:6a:84:0e:fd:35:
08:51:5f:b1:45:f7:bf:6a:c0:d5:49:b0:91:ec:74:96:b9:54:
cc:6f:bb:cd:ed:a6:c5:34:0a:9d:ac:2e:65:51:c3:5e:da:31:
a7:da:a6:17:b2:f2:d8:a4:9b:49:eb:57:e3:7f:3b:45:a3:0f:
61:0d:79:05:ea:e9:44:41:aa:3a:67:81:5c:5f:7f:de:d7:f5:
4e:94:07:d7:c1:2a:b0:67:c1:71:4e:94:6f:f0:24:87:8f:43:
21:a1:e1:8c:e1:96:1d:60:76:ac:19:12:1b:fd:62:e7:70:3b:
bb:60:61:69:e6:44:69:74:8c:04:b9:dd:9d:5d:ea:da:80:6b:
14:68:09:b5:86:38:bc:b6:70:22:5c:fd:3e:ae:8d:89:92:d5:
3a:7e:01:21:07:34:2f:fe:78:ef:7c:48:57:86:e4:4d:73:d1:
88:b5:32:dd:af:74:50:15:7d:2b:56:e0:bf:e0:26:c9:e8:60:
7a:29:3f:f8:c5:73:f9:92:4f:9f:f4:e7:e5:a1:44:93:dd:0c:
95:a0:2e:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 06:59:57 2025 by rpki-client