Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft
File: bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft (raw, json)
Hash identifier: JhC19TFgsPp88boiwXh+wmWqJakTCGlGTQI1I8EN9FY=
Subject key identifier: 8B:A3:5A:36:2E:84:9C:0A:CC:E9:99:9A:94:35:E8:AC:FD:AF:B0:D7
Authority key identifier: 6C:E3:FB:86:78:61:DA:AF:D7:81:27:98:97:FE:25:A8:EB:37:14:68
Certificate issuer: /CN=6ce3fb867861daafd781279897fe25a8eb371468
Certificate serial: 0198D5F1C345770C1C51165D8162037C0C1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft
Manifest number: 029D
Signing time: Sat 23 Aug 2025 08:00:47 +0000
Manifest this update: Sat 23 Aug 2025 08:00:47 +0000
Manifest next update: Sun 24 Aug 2025 08:00:47 +0000
Files and hashes: 1: EH31K6AeAlTxuZgsWC0CP6nqgCw.roa (hash: 5F10SKVR7MZweS+vgHdYbBmQMLKWeQTvpJE6zRYHQ8A=)
2: bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl (hash: syoBfHPS95G/59GCJeazUSqHLW1xNq33tDy2bzsAluc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:c3:45:77:0c:1c:51:16:5d:81:62:03:7c:0c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce3fb867861daafd781279897fe25a8eb371468
Validity
Not Before: Aug 23 08:00:47 2025 GMT
Not After : Aug 24 08:00:47 2025 GMT
Subject: CN=8ba35a362e849c0acce9999a9435e8acfdafb0d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:14:8d:c9:54:09:67:11:54:92:79:68:28:85:
23:13:02:e7:5c:08:b3:95:98:bf:c7:cc:9f:ae:8c:
0c:ab:2c:14:1b:e2:f8:a2:84:4f:e9:6f:3c:c2:be:
1f:1d:a4:7f:59:7e:e6:6f:20:34:dc:2a:06:2a:e1:
40:da:d2:ee:25:28:58:21:41:d5:57:09:6b:c0:f9:
fa:3e:b3:8e:58:e5:1a:de:7c:02:c3:f9:d2:7e:5e:
53:d4:f7:43:4e:c3:c5:03:55:d4:b2:4e:d5:80:df:
78:17:2a:ae:d7:4b:e5:02:68:0f:87:bd:77:e9:fe:
c7:fe:c6:a2:53:fe:3e:a7:c4:38:31:fe:87:de:cf:
22:83:da:9f:7f:5a:99:cb:c8:84:0a:1e:78:f9:2e:
83:4f:90:2a:9d:44:e8:76:9d:20:fb:0d:d9:66:5b:
e2:82:50:9f:b7:e0:eb:a8:8c:f7:4f:d8:f0:2f:7b:
f8:65:0c:0f:fa:c1:e6:15:9b:58:f3:a4:fd:c9:47:
4a:34:34:8a:b3:9a:0a:d5:3f:57:be:af:f5:a7:96:
80:ad:9d:36:f7:ad:83:36:19:ca:13:40:a1:a2:b0:
36:2a:af:5b:80:3e:c1:7c:2f:41:ec:fd:cf:53:14:
62:53:43:ea:2e:db:52:7d:77:9b:01:23:49:8c:56:
7e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:A3:5A:36:2E:84:9C:0A:CC:E9:99:9A:94:35:E8:AC:FD:AF:B0:D7
X509v3 Authority Key Identifier:
keyid:6C:E3:FB:86:78:61:DA:AF:D7:81:27:98:97:FE:25:A8:EB:37:14:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:61:4f:57:1b:7a:31:0b:50:87:f0:d7:fb:d0:e7:b0:28:e0:
3a:c1:d9:9c:1f:a6:0f:fb:76:15:f5:cb:94:2e:bd:f8:8d:3b:
c2:5c:b8:a6:a3:73:b9:dd:47:4e:73:a7:58:99:5c:95:82:6e:
e6:5a:02:2f:74:42:18:7b:e8:78:16:2e:2a:06:b1:f2:4c:92:
c9:0c:1e:87:60:72:e8:47:f1:a8:20:b7:f8:89:45:ea:aa:eb:
cf:13:f8:9e:e4:59:8f:8b:0b:b5:9c:93:b0:36:3c:00:aa:e9:
ae:40:3f:ae:53:47:e5:5d:80:1f:df:fc:26:6a:a0:61:1d:b7:
6b:97:d1:1a:d5:47:17:1c:0d:e1:c7:33:31:f1:22:93:0b:96:
42:1f:69:65:9c:da:c4:10:12:2f:dd:46:f1:0a:be:ef:38:05:
7c:fd:28:16:19:62:b5:8b:41:ff:90:21:d0:63:f6:37:10:e7:
56:8f:06:da:2a:43:4e:9f:15:7d:0b:58:0d:97:83:da:15:88:
4e:27:4e:d5:ee:57:b1:ba:00:9b:52:72:3c:58:b2:d3:09:ad:
3c:a4:bb:30:cd:60:c8:3e:e1:86:9c:3f:e7:57:02:a9:52:6b:
e0:ec:22:cf:e0:15:9b:e7:85:88:2b:43:a2:a5:05:32:a2:82:
aa:3f:a5:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:53:09 2025 by rpki-client