Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft
File: bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft (raw, json)
Hash identifier: aTILDpwbqYVS2WJR3XbAfyYXodkIz0anzD4avjHIYY0=
Subject key identifier: DA:B6:9D:8D:34:8A:79:6A:3F:84:76:E1:F4:00:67:64:90:E2:9D:10
Authority key identifier: 6C:E3:FB:86:78:61:DA:AF:D7:81:27:98:97:FE:25:A8:EB:37:14:68
Certificate issuer: /CN=6ce3fb867861daafd781279897fe25a8eb371468
Certificate serial: 0197B8214937F3001B0466FF2D3F6542DCBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft
Manifest number: 0209
Signing time: Sat 28 Jun 2025 20:01:18 +0000
Manifest this update: Sat 28 Jun 2025 20:01:18 +0000
Manifest next update: Sun 29 Jun 2025 20:01:18 +0000
Files and hashes: 1: EH31K6AeAlTxuZgsWC0CP6nqgCw.roa (hash: 5F10SKVR7MZweS+vgHdYbBmQMLKWeQTvpJE6zRYHQ8A=)
2: bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl (hash: sAsnzu4d3wjOUMr+bjJ6IdXFCIHr6b0z0aSHAv70iDw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:49:37:f3:00:1b:04:66:ff:2d:3f:65:42:dc:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce3fb867861daafd781279897fe25a8eb371468
Validity
Not Before: Jun 28 20:01:18 2025 GMT
Not After : Jun 29 20:01:18 2025 GMT
Subject: CN=dab69d8d348a796a3f8476e1f400676490e29d10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fb:8e:43:e5:3d:0d:06:4a:8e:d4:c4:e9:56:
bd:72:89:85:4d:f9:4d:8d:85:49:e1:f0:4a:a4:7a:
1e:31:3a:04:d1:41:33:86:61:28:f6:01:6c:03:be:
d8:68:d1:a6:c8:44:11:e3:5c:cc:f4:a8:30:e9:df:
d1:e8:3f:e9:1b:e6:a2:e0:a7:d9:3e:7d:e6:d1:5f:
79:dd:61:2d:a0:e9:33:a4:f5:58:27:22:e4:2f:d7:
18:8d:1b:d5:0b:d0:69:d9:30:7d:6d:f3:40:58:9e:
c8:65:46:88:d4:5d:15:89:13:27:09:e4:38:d6:7c:
d8:13:9d:24:4e:65:20:8b:dc:32:c7:bc:94:17:9a:
13:dc:1c:d1:f7:82:4e:ad:09:92:d4:78:45:af:a0:
a4:0c:03:f8:83:92:0c:b7:af:f5:96:77:6d:d9:0a:
a7:d9:8d:e3:25:c2:8d:17:73:9b:c0:ac:45:18:56:
ed:d7:ad:6a:fb:70:bb:69:29:16:49:16:12:24:f2:
86:95:1d:0e:07:12:fc:63:36:60:5b:26:dd:c6:2e:
7a:2a:74:e9:4f:81:7f:44:93:d3:27:8d:4c:e5:76:
3c:7a:a0:ff:f5:c5:9e:29:24:64:77:3d:9a:1b:bf:
fd:f5:05:b8:9e:6c:8f:3b:b3:b4:0d:0e:8d:15:47:
0c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:B6:9D:8D:34:8A:79:6A:3F:84:76:E1:F4:00:67:64:90:E2:9D:10
X509v3 Authority Key Identifier:
keyid:6C:E3:FB:86:78:61:DA:AF:D7:81:27:98:97:FE:25:A8:EB:37:14:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:08:fd:39:3a:04:98:6a:34:42:c4:f7:f4:b6:3f:47:13:c6:
6e:ef:c4:5f:41:6a:a2:a1:f5:dd:f8:32:d2:f1:8e:b3:d9:e4:
f4:fe:cd:bc:ce:f1:9f:19:7e:8f:01:97:cb:e9:3f:5b:f9:e0:
00:41:5f:26:c6:9b:48:ac:b9:60:59:d2:c6:51:29:b7:2c:e6:
53:3c:7b:a5:5b:1e:79:30:df:36:91:bb:e3:e0:ed:67:cb:d5:
cb:0a:3d:45:7e:26:af:90:76:d5:2d:ea:ff:f7:d4:23:f9:fb:
69:95:3e:6c:9b:43:3f:a3:97:89:fc:f3:fc:c6:6f:11:e2:cc:
17:24:b7:ef:8a:19:a6:e5:8b:f7:fa:86:df:7c:cd:1d:f0:0f:
43:c5:b9:aa:50:c9:c0:f9:9f:13:c1:95:1c:df:ee:a4:bf:b1:
f1:3e:b6:6c:e3:80:70:f6:93:87:91:29:26:0c:26:e1:34:9c:
ab:93:81:03:11:9d:88:7d:4b:c2:4c:39:ea:ee:c2:a1:78:6d:
26:6e:00:03:2c:fc:c3:43:c1:4a:28:46:60:68:f7:2a:d4:a1:
cf:9a:2a:a4:c7:ae:12:95:24:c9:bc:d0:c6:1b:aa:7b:cb:04:
28:a8:48:c2:37:51:76:57:cb:a9:b1:0b:45:76:9b:72:37:90:
e5:c4:47:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:42:36 2025 by rpki-client