Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
File: bd1AUuD8dlNjYcu9x3UId93zYK0.mft (raw, json)
Hash identifier: 0RyE26FUQa+a+Ba6/ydf3AtOc+NTOyrPkDgyeb5QrSM=
Subject key identifier: 6F:D2:1A:A0:9B:4B:0E:5A:DA:9A:D5:F6:90:A3:19:46:83:9A:7A:50
Authority key identifier: 6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
Certificate issuer: /CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Certificate serial: 0199233141DD67AD452295DB9EC3A212CEBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
Manifest number: 0F81
Signing time: Sun 07 Sep 2025 08:00:54 +0000
Manifest this update: Sun 07 Sep 2025 08:00:54 +0000
Manifest next update: Mon 08 Sep 2025 08:00:54 +0000
Files and hashes: 1: PBeiTxVVl13KulRPara1RXYVicA.roa (hash: RXsTBTBPcZfgBdF/8hAfnipircCVtF7KKV+ZAN7eFr0=)
2: bd1AUuD8dlNjYcu9x3UId93zYK0.crl (hash: ZBFkdC7z5wIOaWQ8d7kVYWHBWulcQZ4cc/3KGgebuCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:41:dd:67:ad:45:22:95:db:9e:c3:a2:12:ce:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Validity
Not Before: Sep 7 08:00:54 2025 GMT
Not After : Sep 8 08:00:54 2025 GMT
Subject: CN=6fd21aa09b4b0e5ada9ad5f690a31946839a7a50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:09:ad:9a:30:b6:c9:70:45:82:e9:35:66:9c:
3e:63:4d:22:7c:4c:d4:a6:bc:2a:4b:f0:2d:73:c8:
71:6b:78:71:f5:56:63:19:ff:7c:5b:1f:c0:97:d9:
84:62:a4:b6:ac:97:9d:34:d9:a7:9a:d9:7a:03:34:
4b:a8:7d:67:9d:7c:cf:9c:cd:e9:19:1c:b7:60:de:
6b:f6:f6:ab:2d:36:eb:26:00:b6:71:55:4b:f2:12:
68:ad:f1:52:d3:73:51:de:74:20:d2:60:18:bd:3b:
d0:c7:8b:e1:3a:f0:72:e4:2a:16:ec:bb:7f:2c:09:
58:a7:51:46:b9:77:bd:53:94:30:27:fc:29:d8:0e:
91:d0:99:b7:80:33:33:f0:36:48:d0:04:92:5a:c4:
51:7a:2c:a7:04:00:d4:f2:47:27:fe:04:8c:77:6b:
05:da:2b:00:7c:7a:70:cd:65:22:53:05:ad:21:18:
14:72:98:ba:3d:dc:a5:25:1f:e2:22:09:2e:3d:19:
94:35:c8:33:e5:64:04:8b:36:e6:47:31:8c:b4:09:
48:cb:6e:4d:bb:77:7d:fe:96:44:20:15:2e:7d:ef:
79:94:71:d6:31:c7:73:55:26:16:1e:ee:dd:57:d4:
d6:52:07:51:4d:a7:a6:a7:f4:57:d2:d8:12:4e:9c:
f0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D2:1A:A0:9B:4B:0E:5A:DA:9A:D5:F6:90:A3:19:46:83:9A:7A:50
X509v3 Authority Key Identifier:
keyid:6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:26:f2:69:d9:2d:45:f8:ae:0f:77:eb:37:45:28:c6:33:83:
b5:b4:13:30:3b:53:70:bd:f3:d3:d3:7f:a5:09:3a:e6:87:ed:
48:2d:90:c0:45:e1:54:c6:aa:32:ba:c9:e0:80:59:5b:c2:35:
f4:96:ca:1c:d5:db:de:1d:f2:d8:0b:6e:63:ab:ad:48:61:00:
82:47:ef:bb:3a:97:8c:86:17:31:f6:5b:57:65:04:27:08:b3:
25:e1:3d:60:f8:7f:c5:e7:f5:af:d0:84:d9:96:3e:23:10:c7:
6c:cc:d3:7d:01:bc:bc:83:17:c9:af:fe:0e:1b:7f:e6:b5:93:
7d:f5:d9:c8:cf:48:8a:2f:ce:8b:af:b5:f2:b3:ef:64:c1:b5:
6b:3a:25:74:20:89:df:ed:ea:20:10:dc:e4:1b:f3:dc:e4:1d:
71:80:70:7b:b9:3d:bc:37:f4:98:01:7f:61:7e:d2:03:51:a2:
aa:90:0b:0e:dc:5f:a9:61:c6:66:32:74:a0:3e:66:98:c8:2e:
9c:54:97:b5:3f:6a:af:31:8f:d6:4c:9f:73:a8:c8:d8:41:94:
05:99:e4:01:96:72:a5:13:8f:bb:ab:e0:00:62:ca:fa:2e:ed:
95:93:07:11:8b:4c:9b:6e:df:1e:dd:9d:e6:13:fa:31:a1:d1:
17:80:8a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:54:08 2025 by rpki-client