Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft
File: BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft (raw, json)
Hash identifier: bKc5TSAOCQsGTLD6go66D4m5sAF3zgZoYO/Z1zljuaY=
Subject key identifier: 27:1A:41:D8:F5:88:0B:99:B4:88:90:85:94:6C:02:B2:0A:0B:2B:29
Authority key identifier: 06:C3:B8:B5:F3:7E:21:06:82:50:57:1F:4D:B8:3B:47:14:46:8A:2C
Certificate issuer: /CN=06c3b8b5f37e21068250571f4db83b4714468a2c
Certificate serial: 0198D3CC4E44078967ECDAF51068FBE815C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft
Manifest number: 1649
Signing time: Fri 22 Aug 2025 22:00:38 +0000
Manifest this update: Fri 22 Aug 2025 22:00:38 +0000
Manifest next update: Sat 23 Aug 2025 22:00:38 +0000
Files and hashes: 1: BsO4tfN-IQaCUFcfTbg7RxRGiiw.crl (hash: 4NX4a3Xtj9v6jhu0oU4yjcUFS7axfU70Hj9Ne7zA1+A=)
2: pa3jfF65O1LeusJmZP9_Hq2CHUA.roa (hash: DB5zR9clFk0B3PVw7uwrAY7t9bq1MxHbsRq/+LHkr9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 22:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d3:cc:4e:44:07:89:67:ec:da:f5:10:68:fb:e8:15:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c3b8b5f37e21068250571f4db83b4714468a2c
Validity
Not Before: Aug 22 22:00:38 2025 GMT
Not After : Aug 23 22:00:38 2025 GMT
Subject: CN=271a41d8f5880b99b4889085946c02b20a0b2b29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f0:cf:ab:8d:f7:56:f9:f1:19:31:8e:ab:9a:
f9:5e:18:11:6e:1a:39:97:14:bb:f2:c9:9d:b9:a5:
a2:c9:4d:47:10:1c:a7:a6:85:d0:8f:c3:96:80:fd:
ec:ed:99:ed:cb:86:61:a1:49:f6:f8:75:80:f5:9c:
9a:3d:03:a1:80:9a:46:0a:99:68:c5:37:8a:77:7c:
cc:1d:f4:fb:37:c1:4f:01:a0:2b:86:26:c8:3e:50:
5b:40:d4:ae:26:e1:0b:a9:4a:89:6a:71:4b:a2:9b:
1e:d5:c3:d6:17:05:86:4d:67:d8:84:a7:40:8a:01:
8d:7a:2a:7f:8c:a8:10:1f:69:e9:61:a4:56:67:7e:
ad:1a:16:43:b9:41:ce:45:96:fa:87:47:17:a8:21:
66:8c:38:5c:7d:99:62:6e:fe:ae:95:01:f3:41:67:
67:d9:9a:78:a2:e8:fe:b4:40:1a:07:58:a3:4b:aa:
e4:96:c5:6e:c5:66:70:68:b1:f7:89:26:e5:3c:7c:
87:ff:6b:da:8a:b1:cc:84:c8:bb:7c:46:2e:ef:08:
be:3f:ea:7a:76:a8:d3:e8:b6:82:6b:69:12:c8:8b:
9f:eb:73:19:48:ef:2e:a7:2e:f6:9b:20:f7:d6:a9:
31:48:77:f3:94:3f:47:0d:6d:bf:7a:b5:bb:59:d8:
e0:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:1A:41:D8:F5:88:0B:99:B4:88:90:85:94:6C:02:B2:0A:0B:2B:29
X509v3 Authority Key Identifier:
keyid:06:C3:B8:B5:F3:7E:21:06:82:50:57:1F:4D:B8:3B:47:14:46:8A:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:0a:ab:d2:36:20:9b:ab:0c:94:72:ef:e2:3e:78:04:3b:9e:
44:ad:32:dd:14:69:0e:13:27:3a:90:98:ab:a2:31:b5:63:6a:
da:dc:a3:3c:83:d9:e4:1d:9f:82:98:6d:0f:e9:cc:58:6e:29:
23:41:37:bd:76:17:25:f7:e8:92:2b:6d:c9:6a:b5:a0:45:9b:
5d:83:23:dc:d5:8c:8a:4b:8f:5b:49:fb:04:aa:07:e0:92:99:
fd:41:41:21:79:13:35:d8:a5:d1:0a:e6:d1:cc:44:b0:a5:90:
76:8e:29:af:86:f2:97:94:29:05:ca:64:05:d0:df:99:38:3a:
3b:0e:9f:36:16:3f:34:29:0d:98:4b:5e:c2:39:9a:76:b8:e7:
88:5f:84:4a:f0:8f:16:21:32:25:e1:64:62:48:60:ac:45:fd:
b2:59:db:d9:e1:32:a7:00:63:d5:b5:3d:0d:ae:e5:72:55:a7:
df:87:5f:26:d0:7e:42:cb:ec:42:d4:fa:c5:54:ee:90:d8:0f:
85:8e:36:08:a1:0a:9a:a0:f9:1e:2d:4d:28:d5:f3:f2:c8:4e:
83:0a:95:2e:24:b1:4b:9e:cf:b9:0c:91:11:64:94:e1:39:b6:
d3:df:43:dd:65:4b:96:e1:60:1e:97:f3:8d:e3:c5:6e:bd:96:
6e:d5:ea:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 08:32:52 2025 by rpki-client