Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
File: bG9jkROWOM74MYEUEyzPJuFn06Q.mft (raw, json)
Hash identifier: iKyVZnXWV5Ctg11/oKHh3Lz9bQOT0YiQGK3PNZFlEdw=
Subject key identifier: 53:81:5F:09:81:05:1B:9D:68:52:47:13:D5:BD:A0:EC:3C:03:58:39
Authority key identifier: 6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
Certificate issuer: /CN=6c6f6391139638cef8318114132ccf26e167d3a4
Certificate serial: 0197B89021260C1F99D8AF33C61F0E806FF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
Manifest number: 128F
Signing time: Sat 28 Jun 2025 22:02:22 +0000
Manifest this update: Sat 28 Jun 2025 22:02:22 +0000
Manifest next update: Sun 29 Jun 2025 22:02:22 +0000
Files and hashes: 1: _HGowDUCSG2pcAysO4ogxA6yosc.roa (hash: UPTC6ZbpFxK2iqUZ6z67RcYvcbR0/gldSq3kNUHLLJI=)
2: bG9jkROWOM74MYEUEyzPJuFn06Q.crl (hash: 77Qxqz6doSILixWlNLhJ+c95n9Nc3PY6G8goHk3UGIg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:21:26:0c:1f:99:d8:af:33:c6:1f:0e:80:6f:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c6f6391139638cef8318114132ccf26e167d3a4
Validity
Not Before: Jun 28 22:02:22 2025 GMT
Not After : Jun 29 22:02:22 2025 GMT
Subject: CN=53815f0981051b9d68524713d5bda0ec3c035839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3f:ac:c0:6b:07:24:a9:0d:2d:90:f8:e5:6e:
2b:42:fa:3e:b3:3c:26:02:f7:f9:88:9d:27:0c:fa:
7c:93:50:bf:7b:2e:a2:42:76:3e:af:74:da:b9:9b:
cb:41:b9:d4:b5:1c:be:1f:90:8d:12:c5:c2:fc:bd:
e7:ed:97:1d:ff:68:c1:6a:ec:05:c6:43:d7:04:cd:
d1:43:11:54:c0:83:47:b4:2d:8f:8c:ba:9e:7e:d3:
32:60:5b:42:03:f0:cc:91:b2:cd:96:36:b7:0d:e7:
74:db:ce:a6:39:cd:32:6c:ee:a8:e8:25:00:39:2b:
4b:e7:eb:42:e0:b1:95:fd:ba:b1:fa:1f:77:6c:23:
77:1e:48:a5:e8:1b:6e:18:1b:15:16:b0:c5:9e:78:
84:2d:9e:5f:0c:1f:c7:9f:1e:1b:19:17:aa:be:fc:
c8:75:e4:d7:f0:87:ef:77:40:81:da:e6:0b:9a:4d:
68:bc:ed:b8:40:98:0d:b1:b6:72:bd:fd:fd:f4:f2:
7f:80:ca:1a:22:e2:88:cc:d3:e5:b2:e3:23:17:4e:
1c:a6:e1:c4:b6:b6:a7:26:29:03:50:c3:d9:38:3d:
71:35:ca:50:5e:e2:43:5c:46:00:ec:f4:ab:46:46:
f2:f3:9a:3f:e3:18:2b:92:73:41:44:72:44:54:59:
e0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:81:5F:09:81:05:1B:9D:68:52:47:13:D5:BD:A0:EC:3C:03:58:39
X509v3 Authority Key Identifier:
keyid:6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:8c:9e:15:44:5a:ed:c5:62:40:b5:d7:1c:ca:04:31:36:5b:
7c:74:f2:94:98:22:45:d0:0d:f6:1f:7b:e5:49:af:c8:a6:9d:
e1:fd:cb:10:8d:4c:22:26:26:8f:fb:ce:ce:4b:95:6f:79:7e:
d9:29:47:41:bc:ac:32:ef:c0:3d:ef:86:cf:f9:a5:53:12:0d:
7f:dc:3f:75:a3:c0:aa:c5:01:71:24:b3:e4:23:c2:c8:96:80:
ad:22:62:f8:8c:4a:cc:65:61:22:f8:96:a6:04:7b:38:93:76:
4c:cd:7c:df:91:cb:03:85:8d:44:c8:63:56:36:e1:bd:41:af:
81:18:69:9e:f2:d9:42:4e:64:8f:34:c5:f9:7e:f8:ec:c1:7c:
ab:b8:dc:55:07:04:e9:43:4c:8b:18:01:86:46:a0:55:6d:9f:
c9:1f:a6:7b:a1:28:be:73:19:3b:a3:f4:a0:d1:eb:d5:74:3d:
46:b2:4e:5b:d0:90:2e:99:9a:94:3f:71:c4:18:cf:8a:6b:02:
1b:2c:4a:04:a9:07:8f:c4:1e:3e:1f:c5:30:49:d9:73:ac:d0:
d5:67:d3:84:cd:0b:80:e3:b9:aa:0b:52:b4:94:a4:9b:a7:7b:
63:41:bd:13:82:14:12:54:dc:eb:f4:cb:1a:8c:89:d2:6a:fe:
75:dd:d7:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:28:51 2025 by rpki-client