Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
File: bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft (raw, json)
Hash identifier: m2RGn2+ay0G81UlGDw9Ne0mwjZXz2Ere8TXiwamrf3s=
Subject key identifier: 63:5F:88:14:73:F2:C6:00:16:31:92:13:27:D8:43:B6:E3:7F:FF:AA
Authority key identifier: 6E:44:28:F7:F1:7B:19:C1:50:68:CA:B9:39:D3:77:94:0E:8D:4C:70
Certificate issuer: /CN=6e4428f7f17b19c15068cab939d377940e8d4c70
Certificate serial: 0198D73B496668CA96128CB9E6698BDA024A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
Manifest number: 03FB
Signing time: Sat 23 Aug 2025 14:00:43 +0000
Manifest this update: Sat 23 Aug 2025 14:00:43 +0000
Manifest next update: Sun 24 Aug 2025 14:00:43 +0000
Files and hashes: 1: bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl (hash: 4dwaVx2SUWVNq6TWSWIjQgLGYiBYpZxb0AJ58DDJ5rM=)
2: r5LfqFNzBSvkVNYj6vVDPex2eII.roa (hash: zD3Y+yhvhdTCP2LNWWBpR2SBF00RvRC4BFmgCTYqEsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:49:66:68:ca:96:12:8c:b9:e6:69:8b:da:02:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e4428f7f17b19c15068cab939d377940e8d4c70
Validity
Not Before: Aug 23 14:00:43 2025 GMT
Not After : Aug 24 14:00:43 2025 GMT
Subject: CN=635f881473f2c6001631921327d843b6e37fffaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:59:61:84:99:fb:a4:ff:5c:0f:06:68:42:2d:
d3:b5:94:3a:59:d5:85:cd:15:50:84:7b:a2:ea:9c:
11:d8:29:0d:ee:74:44:8c:02:f6:47:81:22:4f:ac:
dc:21:a3:12:a9:84:c8:ac:45:02:61:76:43:81:ae:
a5:c3:fe:39:ae:22:67:51:8e:b2:95:ed:91:43:6f:
63:13:a0:fc:0c:b8:2c:3b:e6:1b:d8:76:27:90:d0:
68:c8:36:d0:9c:df:99:85:49:5f:ae:da:1e:48:da:
27:f6:e9:ee:86:d6:65:50:2a:73:c5:5b:15:39:f2:
26:f9:a6:b0:18:4a:43:ae:dd:0b:04:d0:f9:ad:cb:
d9:71:57:bd:4e:59:f2:b7:05:40:2e:b8:5f:d2:bc:
30:d8:fe:5c:d8:a1:bf:18:98:a6:1e:2a:ae:4b:65:
43:ba:1d:59:86:8d:c3:81:07:67:7c:a7:27:31:b8:
3c:18:33:b9:49:e0:53:bf:90:b2:9d:2d:0b:1d:b7:
f8:99:90:c0:d2:c6:bd:d1:66:09:95:ef:6f:9c:c5:
a4:60:21:0f:0c:bb:b5:38:2e:50:de:4d:7b:f3:39:
c3:4d:c0:18:c9:81:b7:79:bd:e5:ed:1e:14:5b:ae:
34:bf:10:eb:eb:c9:0b:d7:85:c0:e3:95:90:17:bd:
d0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:5F:88:14:73:F2:C6:00:16:31:92:13:27:D8:43:B6:E3:7F:FF:AA
X509v3 Authority Key Identifier:
keyid:6E:44:28:F7:F1:7B:19:C1:50:68:CA:B9:39:D3:77:94:0E:8D:4C:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:4c:b3:07:41:ec:7f:0e:69:4d:22:ad:ee:52:16:a9:bf:d2:
84:29:a2:e5:93:b8:c8:4e:d0:74:58:41:14:23:75:6e:82:7a:
94:23:25:15:f2:e6:79:e1:f2:05:60:c9:07:39:83:84:6b:cf:
0c:a7:90:bf:c4:6c:6a:bc:d7:87:37:1c:70:f1:2c:9f:51:5e:
7f:4a:96:d0:09:6f:fa:10:9e:e3:85:d9:4f:43:44:cd:f4:56:
64:c2:32:67:15:36:69:77:9b:5d:46:3c:50:df:78:62:95:63:
2a:66:a9:3d:11:06:e2:15:70:21:e0:ba:f5:aa:3b:2e:59:e7:
5f:51:8a:11:bc:3a:91:8f:95:67:38:0e:7e:1d:47:19:47:c3:
9b:0f:f0:b6:2a:ee:c2:07:3b:35:54:66:87:b7:fd:c8:cb:a7:
72:97:51:37:67:1a:37:2e:a5:20:7e:b2:8b:3b:2c:3f:65:b8:
67:ed:36:13:c6:2c:19:7d:f2:fc:25:07:ba:f6:ae:2a:0a:43:
16:aa:ee:60:fd:b3:c9:2d:60:d2:82:ac:4b:5d:f5:b9:c1:48:
3b:f8:f5:46:b1:e9:9d:83:f2:db:23:ba:73:4e:7c:bd:00:0e:
94:f1:fb:b9:42:0c:68:c7:31:ab:1e:c2:a1:bd:0c:93:3c:7b:
8e:e9:72:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:27:45 2025 by rpki-client