Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
File: bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft (raw, json)
Hash identifier: NYcePhDYQWjLxrJ0foVaIMYQLNITHu+GN/ph529IWgg=
Subject key identifier: 2C:DC:F1:F1:DC:36:08:2F:90:6B:EF:A7:CD:29:77:7A:F3:04:CC:F4
Authority key identifier: 6E:44:28:F7:F1:7B:19:C1:50:68:CA:B9:39:D3:77:94:0E:8D:4C:70
Certificate issuer: /CN=6e4428f7f17b19c15068cab939d377940e8d4c70
Certificate serial: 0197B77C12594A6BDF06442E207BDC0E8B62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
Manifest number: 0366
Signing time: Sat 28 Jun 2025 17:00:50 +0000
Manifest this update: Sat 28 Jun 2025 17:00:50 +0000
Manifest next update: Sun 29 Jun 2025 17:00:50 +0000
Files and hashes: 1: bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl (hash: q6bzeZhZc2sG9Ixi7EUzv2jFzFU0mnPJdKr3H4RPvd0=)
2: r5LfqFNzBSvkVNYj6vVDPex2eII.roa (hash: zD3Y+yhvhdTCP2LNWWBpR2SBF00RvRC4BFmgCTYqEsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:12:59:4a:6b:df:06:44:2e:20:7b:dc:0e:8b:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e4428f7f17b19c15068cab939d377940e8d4c70
Validity
Not Before: Jun 28 17:00:50 2025 GMT
Not After : Jun 29 17:00:50 2025 GMT
Subject: CN=2cdcf1f1dc36082f906befa7cd29777af304ccf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:64:92:bf:43:47:ca:55:fd:ea:ef:d5:1b:57:
86:b5:00:9e:6b:87:2d:74:90:f7:ec:6a:ae:5e:c3:
c8:84:e0:40:33:80:fd:a7:41:ab:a4:4f:ff:7d:8f:
0c:ca:37:48:9f:bd:a3:37:4a:e9:73:04:80:41:6b:
45:47:0c:15:c0:69:38:c7:84:2c:4a:74:10:94:8e:
93:e0:9f:ce:ec:94:a9:36:b8:07:e2:06:8f:00:b2:
4d:e9:36:ff:5f:26:9a:6c:42:50:71:a4:60:df:7c:
4f:bb:c3:1f:72:b5:69:cb:34:b4:e2:86:d0:ba:b5:
31:cc:1c:62:4f:a3:18:40:81:87:d4:00:72:5b:b5:
e1:29:bb:c9:b8:17:29:21:ab:92:59:51:2d:37:e5:
9e:23:19:99:9a:ff:8d:1d:9d:86:31:e6:b6:01:43:
67:ef:0d:f1:14:21:7b:af:6a:27:34:b5:01:9b:fe:
70:6f:31:29:70:16:c1:d6:10:f7:a0:91:cd:cb:a2:
56:0e:42:87:32:63:31:c3:59:41:93:bc:5f:78:98:
7d:90:ed:b2:65:3c:f9:8c:45:6d:b4:ab:d1:cb:59:
18:a4:03:29:26:9e:76:80:88:82:ee:39:df:81:56:
08:aa:b1:e9:08:52:8e:92:35:4f:a3:e6:df:5b:dd:
58:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:DC:F1:F1:DC:36:08:2F:90:6B:EF:A7:CD:29:77:7A:F3:04:CC:F4
X509v3 Authority Key Identifier:
keyid:6E:44:28:F7:F1:7B:19:C1:50:68:CA:B9:39:D3:77:94:0E:8D:4C:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:26:90:0e:f4:cb:23:e9:b4:c3:a6:17:fb:c9:5c:ca:ee:0f:
d2:af:86:41:83:7d:9f:ec:09:f9:c8:02:64:df:6e:06:7d:df:
0b:61:d0:38:82:b8:95:cf:d2:08:01:5c:f4:6f:dd:c5:e8:68:
73:f7:9a:fb:1f:f8:91:27:7e:c1:16:c0:75:b7:89:46:bc:e6:
e2:39:0d:ba:66:6e:6d:be:5b:04:31:9c:20:7e:30:cf:00:c0:
31:bc:3f:6a:19:82:76:f8:14:83:bf:20:e7:60:75:9b:1b:23:
cd:61:b0:76:72:12:15:b0:7c:90:51:4c:d7:1d:ae:26:9f:c5:
4c:6e:06:f4:0c:7e:b9:5d:01:61:68:5f:2c:df:6f:6f:be:31:
b6:5e:bb:2e:f9:2c:18:a2:7f:d4:22:75:af:3c:f7:c6:61:d8:
a6:5d:62:fb:df:af:79:f6:e6:c6:79:ce:76:0f:d7:8a:79:d9:
64:56:9d:9a:fc:e3:a1:ca:80:4e:df:bb:8d:b1:1f:01:bc:bb:
48:f6:7f:2a:b1:02:ab:de:21:32:c6:7d:b6:68:ea:3e:44:26:
18:3a:c2:4a:9c:c4:71:ed:f9:b4:be:47:92:e8:8d:6f:ab:7e:
e6:90:34:bb:30:b1:15:69:1c:30:32:bd:de:95:24:3a:25:8e:
5c:6e:33:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:00:33 2025 by rpki-client