Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
File: bd1AUuD8dlNjYcu9x3UId93zYK0.mft (raw, json)
Hash identifier: GK0vbUfvwJtJCHBDr37JkuUhjlc3E+bRHBJtmBbxUYE=
Subject key identifier: CD:99:51:56:A1:8E:D2:EA:B6:37:08:44:5D:2D:FE:5A:B9:F5:AE:CE
Authority key identifier: 6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
Certificate issuer: /CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Certificate serial: 01975B6DE4BDD673AF7506978DE5D2273923
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
Manifest number: 0E95
Signing time: Tue 10 Jun 2025 20:00:17 +0000
Manifest this update: Tue 10 Jun 2025 20:00:17 +0000
Manifest next update: Wed 11 Jun 2025 20:00:17 +0000
Files and hashes: 1: PBeiTxVVl13KulRPara1RXYVicA.roa (hash: RXsTBTBPcZfgBdF/8hAfnipircCVtF7KKV+ZAN7eFr0=)
2: bd1AUuD8dlNjYcu9x3UId93zYK0.crl (hash: DgmsFNUKnk8xhlIHRKhKoPGqa94y0M+9rifcM0gKihU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:6d:e4:bd:d6:73:af:75:06:97:8d:e5:d2:27:39:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Validity
Not Before: Jun 10 20:00:17 2025 GMT
Not After : Jun 11 20:00:17 2025 GMT
Subject: CN=cd995156a18ed2eab63708445d2dfe5ab9f5aece
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:df:a3:ac:44:d8:37:be:c3:61:a8:7f:84:18:
95:42:68:9a:56:ff:ee:85:5d:af:ee:31:d9:cb:6f:
d1:71:a9:b6:96:a4:ac:1c:59:df:26:40:9e:d0:c2:
de:78:7d:80:27:22:47:83:10:ac:f2:f4:f0:5d:26:
0d:91:ec:a3:95:44:ec:c3:e9:4b:7a:f5:a4:6b:71:
31:f0:c8:5a:b2:12:f6:29:a4:67:c8:42:43:14:6c:
08:e0:d8:a2:be:2f:55:1a:a3:9f:fe:57:92:b2:a3:
27:1f:ad:70:7d:1c:7e:00:09:47:18:fe:4a:79:7e:
9e:5a:4e:ba:1b:31:fa:20:50:fa:e9:b5:17:6c:6d:
0c:ae:e8:93:a8:82:da:11:5f:4b:b7:e0:c0:11:73:
99:98:c5:8c:c8:28:67:7a:e8:db:bf:06:d7:90:19:
00:df:cb:e1:54:57:16:ca:4e:bf:81:18:af:4c:ce:
93:09:3b:08:d7:6a:34:d5:6e:f1:bc:f9:cc:97:0c:
2a:2b:7e:b5:8b:d3:8c:88:f9:8c:71:c2:25:a6:c4:
6c:f5:e7:cc:68:4c:48:14:4b:09:72:a3:bb:d5:36:
47:33:b6:79:97:97:15:27:7f:8d:26:fc:87:f0:85:
f4:fc:4e:ae:39:d3:9f:91:1d:89:08:9d:73:b3:0b:
93:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:99:51:56:A1:8E:D2:EA:B6:37:08:44:5D:2D:FE:5A:B9:F5:AE:CE
X509v3 Authority Key Identifier:
keyid:6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:8f:01:08:c1:e0:4f:03:82:90:f2:98:c0:f0:4b:61:4a:d1:
98:db:e8:a3:9e:74:96:db:c0:6e:3c:82:97:3f:12:7c:ad:b2:
e8:24:3f:b4:29:fe:9b:3e:c8:25:cb:c0:c7:82:a7:df:c9:9a:
d0:91:79:1c:a4:e6:3e:47:c0:9b:1a:b1:e4:7f:fb:d9:6d:0b:
fe:36:a1:dd:20:cd:db:67:b9:79:99:ba:7d:3a:f7:6e:8b:d6:
5a:12:31:17:dc:e2:b8:aa:cb:cb:93:b1:97:b9:72:61:0b:49:
5f:cb:d1:c8:fc:b8:3d:a9:18:b1:aa:15:b3:26:2b:76:ba:ff:
f0:eb:3e:5c:06:8b:46:07:a9:a3:64:a8:5e:5b:50:d4:06:4f:
1b:bf:8a:4c:55:3d:38:b7:a0:20:1a:49:1f:1b:a2:09:d7:b7:
5b:85:07:dc:34:c7:e8:5a:0e:0d:b5:97:5c:fa:29:a4:e3:23:
e5:4a:55:5d:4c:39:d4:00:98:fb:61:3b:98:56:d1:28:52:6b:
b1:e6:47:66:de:07:fa:9e:15:a6:97:fa:a2:4c:1a:c6:34:62:
d4:71:f0:4c:ed:01:9a:a5:90:b7:a4:a4:a2:ad:5e:3e:78:a4:
09:a5:cb:9f:d1:78:b0:d3:0f:31:34:24:5d:2c:93:ab:b2:32:
de:f2:56:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 01:18:26 2025 by rpki-client