Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
File: bG9jkROWOM74MYEUEyzPJuFn06Q.mft (raw, json)
Hash identifier: WMVy96A11XXhN3M0e1qm4agt63Mi/d9gYTMYsXQZ5SU=
Subject key identifier: EB:82:26:EA:55:00:B2:CC:E2:98:13:66:C4:DF:44:29:04:94:C3:17
Authority key identifier: 6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
Certificate issuer: /CN=6c6f6391139638cef8318114132ccf26e167d3a4
Certificate serial: 0198D6608707A26066676CFAFA8FD772E662
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
Manifest number: 1323
Signing time: Sat 23 Aug 2025 10:01:46 +0000
Manifest this update: Sat 23 Aug 2025 10:01:46 +0000
Manifest next update: Sun 24 Aug 2025 10:01:46 +0000
Files and hashes: 1: _HGowDUCSG2pcAysO4ogxA6yosc.roa (hash: UPTC6ZbpFxK2iqUZ6z67RcYvcbR0/gldSq3kNUHLLJI=)
2: bG9jkROWOM74MYEUEyzPJuFn06Q.crl (hash: 2FJTIb2VutEoiZZzFLhijlqwV8UHJrJztyAOKYeCEbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:87:07:a2:60:66:67:6c:fa:fa:8f:d7:72:e6:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c6f6391139638cef8318114132ccf26e167d3a4
Validity
Not Before: Aug 23 10:01:46 2025 GMT
Not After : Aug 24 10:01:46 2025 GMT
Subject: CN=eb8226ea5500b2cce2981366c4df44290494c317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:55:fc:65:75:f5:af:7f:b0:63:c2:2d:fb:4b:
1c:2a:20:58:c1:ee:80:77:7f:2c:87:f1:50:14:d5:
ab:e9:5a:77:d9:54:d2:2b:88:00:69:ad:28:26:48:
78:9e:f7:0a:e3:07:77:22:99:0f:c3:65:82:63:c2:
76:f9:05:72:97:14:59:0c:18:fb:e7:30:3d:1c:1b:
72:ad:be:14:34:21:5c:20:94:28:f0:b5:93:68:e0:
0b:fe:b7:96:08:d9:04:60:e8:fb:b5:cc:a5:94:84:
5c:d8:66:c7:28:b5:0a:fa:3e:d6:9c:ca:49:da:49:
f4:da:92:e3:b4:0c:15:0b:5c:57:02:fe:d7:ba:ca:
7e:bc:1b:43:55:ef:bb:6a:a8:55:1d:c3:89:f4:82:
99:be:dd:26:a0:9b:ed:b1:32:43:21:4e:a6:25:7b:
97:8e:85:2b:c3:58:9f:ac:a4:a0:6f:31:35:d0:8d:
2a:b9:41:e2:53:e9:77:de:14:00:d7:2c:48:15:a0:
a0:6f:91:13:40:0f:5c:68:b6:49:a4:d8:30:77:85:
42:66:46:82:35:c2:08:56:c5:cc:7b:7b:58:46:72:
5e:68:55:0e:a8:43:06:5c:6f:c0:48:41:7e:81:8c:
91:83:29:d6:07:85:7a:1a:8e:b8:e3:a6:fc:59:53:
16:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:82:26:EA:55:00:B2:CC:E2:98:13:66:C4:DF:44:29:04:94:C3:17
X509v3 Authority Key Identifier:
keyid:6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:71:a6:5d:43:07:bd:87:16:9b:0e:20:a9:16:06:6b:00:55:
00:b9:32:9a:07:a1:64:d8:bc:f5:2f:f7:3d:2e:5d:6f:c7:ab:
da:54:44:dd:7e:13:7a:13:01:61:5c:c0:7a:84:22:f2:e1:21:
b8:3e:af:c4:a3:13:a0:45:37:88:0c:be:8d:b7:56:50:2f:72:
06:e9:d3:d6:4a:b2:22:de:12:f5:81:c7:20:81:0a:1f:4f:18:
e2:7a:e5:74:90:82:c9:04:6c:67:29:25:3c:f5:6e:03:aa:c3:
26:a4:0d:43:b6:fd:f6:f8:f1:2f:22:d2:44:5a:2b:b2:b8:d3:
9d:01:11:00:91:d1:21:69:3a:22:72:40:7e:b6:69:6b:41:09:
fd:3c:91:d6:da:0b:21:7e:3b:f2:5d:8b:c8:31:d4:e3:c3:52:
23:ea:cb:1e:a1:90:fd:c2:b7:6e:a7:46:d7:be:b0:ad:53:5b:
e8:89:cf:0d:9d:7d:cd:c6:34:bf:4d:f3:e9:0b:99:1b:46:47:
71:39:7f:46:16:b1:4e:e2:ff:d5:f9:76:8d:37:e4:39:63:10:
64:d5:f2:13:b5:38:91:84:dc:b4:a8:fc:a2:85:eb:51:50:06:
ed:03:5b:9d:7c:a7:57:d9:2a:d9:95:77:40:e4:f1:b9:1d:bd:
d3:a0:5a:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:22:57 2025 by rpki-client