Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
File: bQih9MOF86e2KYTVPoFmWplUEPM.mft (raw, json)
Hash identifier: 1vRPOYyT6cF3zk63VuGfCq4zp6atIo7gsU9t7AAemZA=
Subject key identifier: 35:62:00:36:E7:F2:4B:F3:F5:3B:9E:45:39:94:E1:C4:E6:87:FC:0C
Authority key identifier: 6D:08:A1:F4:C3:85:F3:A7:B6:29:84:D5:3E:81:66:5A:99:54:10:F3
Certificate issuer: /CN=6d08a1f4c385f3a7b62984d53e81665a995410f3
Certificate serial: 0198D5F131FEFEDA846FEF4EDED6803C26E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
Manifest number: 0A49
Signing time: Sat 23 Aug 2025 08:00:10 +0000
Manifest this update: Sat 23 Aug 2025 08:00:10 +0000
Manifest next update: Sun 24 Aug 2025 08:00:10 +0000
Files and hashes: 1: J7EMvjCrDCSEaNvEXQjzbwryII4.roa (hash: Ak6AJOV8w0m5lQCAa41zEyYCpJIBSURSyT+w9pihP/8=)
2: bQih9MOF86e2KYTVPoFmWplUEPM.crl (hash: Jhg+Dto3hnDhQbbfudBvftJKrmUMHyHsAJyjxb2ZwQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:31:fe:fe:da:84:6f:ef:4e:de:d6:80:3c:26:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d08a1f4c385f3a7b62984d53e81665a995410f3
Validity
Not Before: Aug 23 08:00:10 2025 GMT
Not After : Aug 24 08:00:10 2025 GMT
Subject: CN=35620036e7f24bf3f53b9e453994e1c4e687fc0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1f:d5:35:49:9c:78:b7:cd:b3:cf:57:e8:b1:
0a:04:d8:d8:81:6b:1a:cc:53:a1:e9:5c:85:dc:79:
a7:27:58:d1:8b:2b:0b:b0:fb:c6:fd:95:d6:e9:57:
1e:ee:bb:9f:d9:95:d5:02:aa:61:12:d9:7e:a5:8d:
ce:65:b7:06:a1:04:a5:c9:2e:05:28:be:a1:b2:ab:
ab:96:dd:b8:59:43:02:ef:ff:ac:b0:51:61:20:b2:
65:14:cf:57:b6:bc:75:26:56:43:3f:0a:5f:5c:d4:
25:e1:f3:78:7b:ab:40:2d:79:39:b0:9f:0c:a2:86:
eb:f5:ae:3b:84:c8:ea:73:d0:bb:02:a5:2e:66:11:
6b:b0:a1:b4:5d:ac:6f:56:63:c5:cd:87:50:53:3f:
42:af:57:d5:43:fb:56:af:18:32:d3:c3:14:14:a3:
47:bc:49:a0:57:dc:76:a7:9c:f8:13:ee:cd:47:fa:
66:22:49:d2:73:6a:a4:0c:e4:16:ba:f8:81:67:d6:
72:93:ab:0e:2f:6e:63:22:84:b2:fb:17:bb:5e:14:
e1:42:6b:28:18:9d:df:24:16:f5:48:dc:ec:bd:65:
e3:6d:9e:81:83:08:88:6d:c9:62:d5:9e:ca:7a:79:
17:3c:2a:2c:2e:0e:36:27:96:ec:e2:ed:b3:82:ff:
ef:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:62:00:36:E7:F2:4B:F3:F5:3B:9E:45:39:94:E1:C4:E6:87:FC:0C
X509v3 Authority Key Identifier:
keyid:6D:08:A1:F4:C3:85:F3:A7:B6:29:84:D5:3E:81:66:5A:99:54:10:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:bc:e2:c8:87:68:63:d5:14:6f:e2:57:03:ea:78:bb:ea:09:
c9:b6:44:3a:25:5b:c8:6e:7f:f4:fe:f9:d7:9a:a1:23:0d:ed:
b7:aa:58:a1:c7:b0:5c:29:1a:63:f3:c0:27:95:d6:12:35:e5:
e7:59:20:35:80:40:49:33:4c:76:f0:a6:5a:b0:5f:89:c8:72:
65:7f:8e:0d:10:d9:c1:ab:5d:57:47:63:9e:97:47:ca:8c:ec:
ac:70:02:70:de:f7:76:52:52:68:cb:c0:93:51:5e:9b:48:e4:
89:2a:9d:2b:d9:53:17:8f:3e:94:0f:6e:95:6e:2d:60:54:10:
46:5f:a8:8f:0c:95:1f:fd:2d:f1:5a:52:1c:53:d7:5b:98:56:
dc:51:50:bd:a2:06:e1:23:8e:7f:fd:81:f9:d6:7d:06:a8:ea:
1d:9b:68:fb:f1:1c:98:5e:09:a6:6d:c1:fe:e6:d5:75:54:52:
08:c8:dd:0e:d5:3b:74:df:37:a3:bf:66:4a:5f:c4:12:22:dd:
23:85:29:05:91:f2:00:50:2d:9d:e2:a1:42:37:0c:44:a2:97:
f2:37:37:f6:21:90:99:87:f4:33:77:21:ac:d3:c6:1b:71:8b:
3e:f2:d2:6f:d3:21:11:19:b3:41:62:42:07:53:ec:51:f3:a3:
45:9a:a6:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:27:20 2025 by rpki-client