Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft
File: bchbZ4jkUMBUE0row2V0iyP3Qmc.mft (raw, json)
Hash identifier: 8e0D/X/TYoHStG+87bomiPqF2sAhKeQrDruu6FtBlmk=
Subject key identifier: 86:7C:72:5C:49:0F:97:35:F5:3E:F4:23:DB:13:2E:F5:FC:45:D5:6C
Authority key identifier: 6D:C8:5B:67:88:E4:50:C0:54:13:4A:E8:C3:65:74:8B:23:F7:42:67
Certificate issuer: /CN=6dc85b6788e450c054134ae8c365748b23f74267
Certificate serial: 019923D5D0B70F53AC985CA218858C57D364
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft
Manifest number: 07EC
Signing time: Sun 07 Sep 2025 11:00:39 +0000
Manifest this update: Sun 07 Sep 2025 11:00:39 +0000
Manifest next update: Mon 08 Sep 2025 11:00:39 +0000
Files and hashes: 1: HuuruuJUnyizGG7iC01ujDUd5zE.roa (hash: zJUuXbnFQXiP5Cz81qdrVSNYrr0dHAG+T0ZkZ/sUgdY=)
2: bchbZ4jkUMBUE0row2V0iyP3Qmc.crl (hash: RtxGfIoQ78aVfDvsY05B+uMWVgF7S10zAwEv2D1GQYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d5:d0:b7:0f:53:ac:98:5c:a2:18:85:8c:57:d3:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dc85b6788e450c054134ae8c365748b23f74267
Validity
Not Before: Sep 7 11:00:39 2025 GMT
Not After : Sep 8 11:00:39 2025 GMT
Subject: CN=867c725c490f9735f53ef423db132ef5fc45d56c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:40:0d:58:c1:a6:82:ba:24:50:95:f2:0e:4c:
ed:ae:a8:a6:e4:87:6f:0f:33:6c:7e:52:6b:5a:a8:
4a:5a:1f:ae:69:08:fd:48:4d:69:cb:22:51:8d:28:
96:59:b9:77:bd:48:e3:33:57:4d:1b:df:b2:de:07:
51:26:90:79:17:a9:15:ba:55:31:4b:b0:9d:ad:69:
fa:72:c8:65:d1:09:41:9b:0d:d4:0d:db:bb:7f:15:
f7:9e:d9:c9:d8:df:8c:98:ee:6b:fc:a4:e4:a5:aa:
a7:c9:54:be:a5:b8:6e:d0:93:9f:77:da:93:6c:a0:
35:a2:2e:93:ce:8b:3c:6d:c5:15:5c:b8:da:73:b6:
57:dd:d1:18:34:7f:0f:b2:91:c6:b5:58:24:01:dc:
56:cd:b2:d8:36:d5:a3:aa:81:e8:1f:1c:4f:65:a5:
68:b7:88:a8:46:be:5a:a9:a3:fe:8b:15:27:ee:67:
a5:80:2f:31:dd:bb:f5:cb:eb:6b:89:b3:52:5c:48:
37:47:f5:c2:6d:6c:31:9f:99:6a:16:13:32:dd:f2:
4e:6b:83:31:e7:00:88:e6:de:4b:20:48:18:65:ac:
17:03:2e:71:a1:b1:39:8d:05:22:9c:8f:d5:b3:88:
24:81:2c:96:50:19:bb:6a:8c:a8:00:44:fa:bc:dd:
21:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:7C:72:5C:49:0F:97:35:F5:3E:F4:23:DB:13:2E:F5:FC:45:D5:6C
X509v3 Authority Key Identifier:
keyid:6D:C8:5B:67:88:E4:50:C0:54:13:4A:E8:C3:65:74:8B:23:F7:42:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:06:ca:fc:3d:85:97:cb:c2:5d:2f:67:37:36:b0:5f:69:65:
7a:e2:05:45:51:f4:00:0d:3e:c5:6e:2c:c8:7b:a5:aa:83:02:
b8:25:35:db:c4:81:9c:94:8f:0c:0d:21:4b:e7:a0:04:ee:90:
ee:2e:48:05:8d:b7:6d:b9:f7:87:6a:a5:77:29:ee:7e:6f:35:
fc:cc:bd:c9:23:bb:60:97:22:81:67:f4:06:9a:e9:83:92:ba:
be:5b:0d:62:de:9d:88:d7:74:8f:d8:79:af:59:b4:54:ad:19:
c1:2f:77:93:7e:bc:3e:c0:33:49:a5:06:c0:f4:26:b1:ca:36:
0d:fb:d5:1b:f0:ed:92:77:6f:cb:7d:a5:37:e9:aa:d0:e6:38:
e5:05:fd:e5:f6:58:f0:9e:a7:52:98:ef:75:5b:24:fc:e6:d0:
ff:fe:ee:7d:a8:0e:af:25:ae:1c:ff:a1:31:b8:90:8a:2a:46:
23:c5:8f:e5:dd:38:8d:d7:73:30:e8:b7:0d:8b:2c:24:9f:df:
f2:9b:cd:9a:6a:d6:55:2d:bc:76:f4:18:42:1b:f2:65:1b:9a:
e7:c5:a0:28:fa:a6:28:e3:d1:6d:d8:87:10:c7:85:90:73:45:
e5:b8:f4:6f:2a:d2:56:22:a4:74:e3:2a:d8:21:72:29:39:48:
d4:b5:db:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:57:34 2025 by rpki-client