Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
File: bQih9MOF86e2KYTVPoFmWplUEPM.mft (raw, json)
Hash identifier: uqE8SITmnY2Hz/d7Mtb1POrxg+y6i/p6rzSwoIRoRi8=
Subject key identifier: A9:44:44:4A:49:B0:93:C5:4E:34:C7:20:68:5E:0F:7C:51:9F:FA:44
Authority key identifier: 6D:08:A1:F4:C3:85:F3:A7:B6:29:84:D5:3E:81:66:5A:99:54:10:F3
Certificate issuer: /CN=6d08a1f4c385f3a7b62984d53e81665a995410f3
Certificate serial: 0197B82145737BA7BADE505C8674E7447375
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
Manifest number: 09B5
Signing time: Sat 28 Jun 2025 20:01:17 +0000
Manifest this update: Sat 28 Jun 2025 20:01:17 +0000
Manifest next update: Sun 29 Jun 2025 20:01:17 +0000
Files and hashes: 1: J7EMvjCrDCSEaNvEXQjzbwryII4.roa (hash: Ak6AJOV8w0m5lQCAa41zEyYCpJIBSURSyT+w9pihP/8=)
2: bQih9MOF86e2KYTVPoFmWplUEPM.crl (hash: Ax9icleb4ds3ylPo5+y/wNw5Yo62OrdygBOu3I53LrU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:45:73:7b:a7:ba:de:50:5c:86:74:e7:44:73:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d08a1f4c385f3a7b62984d53e81665a995410f3
Validity
Not Before: Jun 28 20:01:17 2025 GMT
Not After : Jun 29 20:01:17 2025 GMT
Subject: CN=a944444a49b093c54e34c720685e0f7c519ffa44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9d:79:58:96:ae:a9:b4:53:69:ee:43:c9:7e:
3f:a4:b4:93:44:5d:d9:5a:a5:98:30:6e:3b:a0:59:
de:c0:20:bf:26:78:ae:3f:06:fe:cb:ae:ba:ef:a7:
b9:7e:28:ea:1c:a5:b5:60:fb:e4:8b:c5:7c:6d:24:
c5:8e:94:c4:81:b4:b4:c3:59:56:ed:b5:88:a1:8d:
9a:81:7a:44:ba:d1:21:8a:0b:44:91:50:81:a0:e0:
6a:50:db:d0:4b:f7:9f:7b:5a:58:c1:b9:98:a1:33:
db:99:b4:93:83:69:b7:b7:4a:ba:38:80:96:bc:ad:
23:c8:e3:e8:2d:5d:09:ae:81:dc:5b:31:39:54:a9:
e6:5d:d5:21:fc:dd:ba:72:91:29:f7:d3:54:13:d8:
ed:6c:a2:26:3b:df:cb:b1:17:18:bc:9e:a1:b8:84:
a0:ff:3d:6f:3a:4c:8e:07:3d:fd:2e:18:7d:a9:3a:
52:b0:e2:3b:0e:99:8c:c2:42:94:a1:d5:e0:ae:83:
6e:bd:d6:2c:e4:12:37:15:61:a6:4f:f8:ac:49:2e:
6c:19:ea:8f:00:d6:d4:c6:11:b4:30:7b:c0:20:8c:
04:b3:b7:f3:3e:75:fa:38:f9:fc:1c:27:c6:91:08:
9e:f5:88:cb:91:d2:d8:1b:c2:f6:42:89:9e:38:f7:
7a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:44:44:4A:49:B0:93:C5:4E:34:C7:20:68:5E:0F:7C:51:9F:FA:44
X509v3 Authority Key Identifier:
keyid:6D:08:A1:F4:C3:85:F3:A7:B6:29:84:D5:3E:81:66:5A:99:54:10:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:77:e8:00:88:79:ee:e9:a8:75:8b:39:33:43:ea:c8:3c:ff:
ad:14:df:a6:56:88:eb:f2:84:d1:a8:56:4a:f8:40:e3:bd:10:
0a:21:03:40:14:50:c8:bd:ed:52:74:13:4b:bf:67:78:f8:ed:
be:a4:9c:82:bc:84:c6:c6:19:68:8b:63:43:f8:ad:eb:28:0c:
62:b2:89:fc:39:1e:25:11:95:d7:29:88:f7:95:b5:65:f0:98:
81:6e:7e:eb:d3:83:ce:15:e0:39:79:e8:21:0d:50:8c:88:25:
3c:4a:20:eb:fc:85:d4:ce:db:94:84:4c:bb:b9:0d:ef:03:34:
fa:df:9d:a4:98:91:c2:49:ae:7f:84:6e:1a:73:65:66:55:67:
1d:1c:55:17:38:89:d8:7a:cc:a0:79:2f:2e:72:62:a9:e5:d8:
4f:74:98:0f:e5:eb:47:c4:fc:6a:fa:3e:cf:62:06:ab:86:e6:
04:b4:5e:2f:a8:5a:bd:b7:40:bf:4f:2d:bb:aa:67:cd:61:41:
1d:51:eb:67:c8:77:d4:71:65:66:74:65:7d:12:18:c9:01:8e:
80:8d:7d:7b:1b:79:3a:30:10:20:bd:8c:e8:b1:29:f6:39:be:
b3:21:23:54:17:f4:c3:89:71:7c:22:25:e1:a4:30:78:44:b4:
f5:d2:ec:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:31:23 2025 by rpki-client