Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
File: bHOgSn0Ost9H2vDDn7p142XIhT0.mft (raw, json)
Hash identifier: rQUG1Bcl5dgfNkL2goEMJfvmz9Zeb0IGN6JVrI/xevg=
Subject key identifier: 19:CC:FC:E1:8F:B9:F2:E0:9D:9E:78:DA:1A:99:6C:65:4E:D2:88:4E
Authority key identifier: 6C:73:A0:4A:7D:0E:B2:DF:47:DA:F0:C3:9F:BA:75:E3:65:C8:85:3D
Certificate issuer: /CN=6c73a04a7d0eb2df47daf0c39fba75e365c8853d
Certificate serial: 0197B7453942790532D590F37493BE0C5A49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
Manifest number: 0F87
Signing time: Sat 28 Jun 2025 16:00:56 +0000
Manifest this update: Sat 28 Jun 2025 16:00:56 +0000
Manifest next update: Sun 29 Jun 2025 16:00:56 +0000
Files and hashes: 1: 1g8u0Gir8yCyVBvzcuA27ZsMTcA.roa (hash: hLEqWjYzmOf232eRZFufaSm1niRcj5QeYBzcD6/dycc=)
2: bHOgSn0Ost9H2vDDn7p142XIhT0.crl (hash: 8D2+H9mWq63cqZK0ugEsjM1tjaCubCe+SySjb3BIttA=)
3: uSLH-6azWyM6_toWim6PNb4arp4.roa (hash: imwU+Zb8TWocoYkIF0ZGoxJDK+doen6jZopoR2zFVWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:39:42:79:05:32:d5:90:f3:74:93:be:0c:5a:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c73a04a7d0eb2df47daf0c39fba75e365c8853d
Validity
Not Before: Jun 28 16:00:56 2025 GMT
Not After : Jun 29 16:00:56 2025 GMT
Subject: CN=19ccfce18fb9f2e09d9e78da1a996c654ed2884e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e2:a7:c2:a7:98:55:36:ae:bb:44:70:40:bc:
f9:ca:df:2e:c3:bf:f1:12:3b:58:d3:5c:e6:d0:5d:
6c:1b:79:1f:e4:6b:f3:86:70:48:53:62:6e:f7:7e:
4d:aa:cf:bf:00:b1:eb:b8:f1:92:4e:e4:1e:26:82:
fc:5d:4b:94:79:29:58:d4:08:da:d2:64:4e:70:9d:
42:48:d2:b1:bc:a8:f6:64:49:ce:12:7d:ce:74:9a:
70:97:59:0f:0b:0e:4a:e7:1a:a0:b6:1f:18:90:74:
6d:cf:91:c3:89:f1:59:da:57:bb:6e:9c:79:49:79:
81:ac:78:ff:b4:ec:5a:cf:a4:a3:f5:7a:20:b0:2a:
4b:b1:54:3f:69:1f:7a:ec:63:28:73:ab:4c:5e:15:
ed:56:b0:7f:0b:dd:ff:41:65:d7:f5:f2:f4:3b:05:
7a:95:71:02:84:e0:28:be:af:77:de:c4:e2:28:5c:
02:83:47:61:4f:dc:c2:7b:99:36:0b:3d:b1:2b:13:
b1:14:4c:9b:9d:96:33:f8:96:13:35:c0:fb:55:cf:
41:6d:f2:4e:b1:af:bc:6e:44:4e:96:c0:b1:4a:5b:
3c:dc:88:a3:a4:14:e7:7a:55:1e:ae:dc:25:a1:e7:
e6:4a:d9:51:a6:a5:db:24:bc:94:ef:e1:01:f4:09:
36:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:CC:FC:E1:8F:B9:F2:E0:9D:9E:78:DA:1A:99:6C:65:4E:D2:88:4E
X509v3 Authority Key Identifier:
keyid:6C:73:A0:4A:7D:0E:B2:DF:47:DA:F0:C3:9F:BA:75:E3:65:C8:85:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:b7:6c:da:ac:57:30:28:97:13:fe:d8:16:b5:4d:14:24:08:
f5:ec:e8:e7:16:f2:2e:8b:26:eb:82:0c:3f:b7:6f:0a:c6:0d:
ad:f6:be:75:12:c4:19:26:bf:08:f2:b1:86:28:d7:4b:c0:36:
5a:be:ce:ca:d0:ac:68:30:24:81:1d:40:57:b2:9b:7e:2f:0c:
6a:f6:7f:40:4c:15:3c:56:7f:36:77:0c:28:9d:37:f8:86:4c:
c2:00:1e:fa:d7:39:75:a1:0c:25:e7:b0:fe:62:b3:1a:04:43:
fc:42:14:36:62:5c:e3:32:58:43:34:f7:32:ec:39:34:d7:62:
49:cc:88:cd:27:1d:8c:fd:4a:ef:0d:7c:60:c8:49:2b:b8:57:
df:5b:dd:7c:2b:37:45:e6:70:60:ef:51:65:ba:da:67:e9:6a:
ef:d6:7d:90:6a:c2:fa:c2:a8:82:21:00:ac:7c:7f:8b:37:57:
63:70:28:5f:08:8d:88:b9:91:8c:6d:a3:5d:93:ab:74:77:bb:
c6:87:39:27:0c:6f:82:65:28:86:c7:98:25:04:95:6a:d0:bf:
13:2b:ea:c3:06:f7:35:59:dd:38:90:ae:df:ce:6e:4e:7b:ec:
4e:29:be:1e:ca:55:8f:51:9d:13:02:96:2f:8b:ea:7b:80:28:
9c:10:45:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:02:44 2025 by rpki-client