Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
File: bqGhD32UTazB3sBBqqVZ1SK_uus.mft (raw, json)
Hash identifier: d7V+6o59IfaEu8EnYQ+aJ/EpYho6cyt7Y2jnjfZ3itk=
Subject key identifier: 4C:64:68:25:A1:6F:F3:F8:3C:1C:F4:E3:34:D2:10:8B:A8:A1:43:2F
Authority key identifier: 6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB
Certificate issuer: /CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb
Certificate serial: 0197C9F1226949EF2FA618F7D8A3F722A90C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
Manifest number: 1335
Signing time: Wed 02 Jul 2025 07:01:52 +0000
Manifest this update: Wed 02 Jul 2025 07:01:52 +0000
Manifest next update: Thu 03 Jul 2025 07:01:52 +0000
Files and hashes: 1: M9NbgULzUbUgy5QfFA80DfDkYIo.roa (hash: 9jvwTaiwGzjoN6t2OLikrXjXwIhCTFgXlEI2alktc+E=)
2: bqGhD32UTazB3sBBqqVZ1SK_uus.crl (hash: Bn+5OpEedlAZ9kmOzrutY3mZv7tyGAcl8NGIilXOmV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 07:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:f1:22:69:49:ef:2f:a6:18:f7:d8:a3:f7:22:a9:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb
Validity
Not Before: Jul 2 07:01:52 2025 GMT
Not After : Jul 3 07:01:52 2025 GMT
Subject: CN=4c646825a16ff3f83c1cf4e334d2108ba8a1432f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ba:b2:97:d5:ed:97:15:77:4f:f0:35:8f:58:
62:45:a8:04:5d:f8:0f:d9:c8:37:22:bd:ef:00:c7:
82:27:0d:a4:7b:91:63:95:a3:55:7b:68:9d:4a:d3:
75:b5:cc:17:41:88:2b:a9:7f:6a:39:92:b5:9b:ff:
2c:c1:53:97:1a:87:6e:59:e1:f2:18:4d:32:58:6d:
0a:2e:8c:e5:bd:d8:4e:5a:98:f0:87:53:33:32:1a:
8d:58:98:c9:a9:7c:dd:8f:44:da:e2:9b:68:ce:32:
7e:f3:5e:9c:61:d5:0c:e2:be:cb:96:40:b5:3b:ac:
7e:8d:72:53:cc:48:39:15:d8:fb:1f:b0:9b:3a:86:
0a:2a:b7:26:0d:64:50:8a:4b:eb:cd:d6:76:19:83:
07:04:e8:a8:8c:ff:ca:fb:87:99:88:33:54:cf:fc:
ae:6e:da:0f:0a:55:f9:4d:f7:f3:8b:3d:89:2a:14:
53:ee:97:c6:52:0f:02:2b:49:30:88:6a:46:c9:d2:
69:e7:c6:77:eb:76:3e:27:f6:34:3d:80:ff:bd:d6:
69:0a:b1:e6:88:5e:a5:40:dd:51:07:22:e9:33:aa:
fb:c8:92:3f:47:be:ce:34:1f:1a:cd:e8:63:3b:c3:
73:7f:b7:40:4c:06:3f:33:95:16:7c:66:00:1c:12:
ec:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:64:68:25:A1:6F:F3:F8:3C:1C:F4:E3:34:D2:10:8B:A8:A1:43:2F
X509v3 Authority Key Identifier:
keyid:6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:f1:cc:ae:57:93:32:50:8f:90:90:ff:d7:1e:1e:52:d8:14:
81:33:45:93:93:1f:9a:57:1a:54:76:94:34:1e:59:5d:b8:a7:
4b:d7:b6:1d:ce:9c:cd:b5:c5:8c:df:05:f0:6d:52:be:16:ce:
f5:a8:d4:f1:8e:5e:ee:39:ee:f4:9d:96:f8:8d:ff:16:8d:2b:
b5:77:f6:84:5c:3d:70:9b:8f:fd:75:c5:e4:f5:de:41:ed:1c:
c8:42:4d:b7:0b:59:c7:ef:84:44:bd:ca:69:82:b6:1a:db:9f:
e9:cf:96:6d:44:1f:b7:0e:91:63:87:a7:8e:fc:e2:70:eb:6f:
4a:aa:1f:4d:d6:d6:d9:de:ad:6a:1c:0f:f2:f3:b7:00:11:d4:
0b:c0:a0:8b:10:df:d3:43:be:1f:cc:07:76:90:d7:c8:f9:1f:
48:bd:46:dc:e9:6c:9b:ac:fc:d6:e0:7e:1c:34:d8:3a:66:07:
95:7c:dc:4b:0b:17:8f:4d:67:54:cf:74:c2:da:9c:2d:71:35:
58:42:ff:cd:f3:ec:51:65:40:d3:aa:71:17:99:29:83:18:96:
93:43:6d:66:2b:f7:2b:ac:af:bd:a3:9b:b1:21:08:81:d9:ee:
cc:2d:04:df:33:92:39:ec:2e:82:89:cc:26:46:9a:98:85:cb:
dd:2c:0f:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 15:39:16 2025 by rpki-client