Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
File: bHOgSn0Ost9H2vDDn7p142XIhT0.mft (raw, json)
Hash identifier: 0uaU1MHMtbEKdSc36KuNzktL9qcJ+TYVQMjbh+nGbfs=
Subject key identifier: D0:83:BC:2E:B4:BE:61:ED:81:92:59:1F:86:E4:D4:C6:CD:B0:16:A3
Authority key identifier: 6C:73:A0:4A:7D:0E:B2:DF:47:DA:F0:C3:9F:BA:75:E3:65:C8:85:3D
Certificate issuer: /CN=6c73a04a7d0eb2df47daf0c39fba75e365c8853d
Certificate serial: 0198D51597EA825D6C45938E59C56253DB78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
Manifest number: 101B
Signing time: Sat 23 Aug 2025 04:00:18 +0000
Manifest this update: Sat 23 Aug 2025 04:00:18 +0000
Manifest next update: Sun 24 Aug 2025 04:00:18 +0000
Files and hashes: 1: 1g8u0Gir8yCyVBvzcuA27ZsMTcA.roa (hash: hLEqWjYzmOf232eRZFufaSm1niRcj5QeYBzcD6/dycc=)
2: bHOgSn0Ost9H2vDDn7p142XIhT0.crl (hash: NSompjmB1HF2Y0+DVr0oDHymMvYymzWcb5I+R4UJrtA=)
3: uSLH-6azWyM6_toWim6PNb4arp4.roa (hash: imwU+Zb8TWocoYkIF0ZGoxJDK+doen6jZopoR2zFVWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:97:ea:82:5d:6c:45:93:8e:59:c5:62:53:db:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c73a04a7d0eb2df47daf0c39fba75e365c8853d
Validity
Not Before: Aug 23 04:00:18 2025 GMT
Not After : Aug 24 04:00:18 2025 GMT
Subject: CN=d083bc2eb4be61ed8192591f86e4d4c6cdb016a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:55:ed:8a:6e:4a:f6:94:c2:17:da:cb:d0:ee:
dd:44:8c:ba:b5:c8:4c:2d:32:0b:08:41:9f:88:02:
c9:02:6d:71:1d:55:19:b8:0c:98:5c:9b:18:ed:79:
e8:63:0e:50:1d:0f:9b:94:5b:0d:e4:14:f9:7e:2d:
73:60:58:8d:2e:b2:ee:60:f0:bf:cb:74:74:e4:6f:
5d:4c:40:84:0c:98:8d:d9:75:39:de:d3:9f:71:44:
99:3e:bc:fe:68:96:8f:71:22:21:ff:0a:34:bd:cc:
50:34:5b:7d:c3:14:3d:11:38:7e:0a:10:67:d4:06:
3f:8c:ba:ad:af:e4:c8:57:40:cd:02:e5:7b:50:2a:
8e:bd:aa:b6:e2:7f:8f:b4:2f:2b:cc:6b:93:cf:46:
40:fe:3f:26:2f:e6:8c:e3:b7:48:8b:ff:28:11:12:
2d:0f:10:b0:bc:8a:87:99:48:95:66:fb:d1:58:d5:
6c:60:f1:4a:5c:62:62:31:31:74:bd:61:e7:e8:61:
4f:3a:62:2e:c1:2a:8d:23:bf:70:e6:f4:f6:4d:2e:
1d:bf:a5:ca:c9:62:f9:89:47:f5:7a:e9:8f:c9:5a:
be:d1:65:39:9b:1b:7c:a1:cb:7e:ac:6c:70:e4:c4:
16:ec:b2:f0:d5:22:e7:bf:ff:81:36:17:6a:2e:4c:
b9:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:83:BC:2E:B4:BE:61:ED:81:92:59:1F:86:E4:D4:C6:CD:B0:16:A3
X509v3 Authority Key Identifier:
keyid:6C:73:A0:4A:7D:0E:B2:DF:47:DA:F0:C3:9F:BA:75:E3:65:C8:85:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:08:d4:66:0a:72:1d:e0:88:38:51:05:7a:55:f6:1b:e9:08:
d6:99:d9:03:8e:b9:fe:e0:d0:d3:7b:b5:17:83:4c:a2:33:33:
6c:7d:11:c8:47:b3:e1:61:65:30:4f:05:40:b1:d6:72:2f:9c:
56:d8:d3:37:0b:97:0f:e9:16:03:c1:53:2b:f1:ee:d2:8d:db:
21:6e:2f:e3:9d:4e:05:6a:38:01:38:01:be:ab:63:3c:ec:d4:
96:ad:8d:8f:99:fe:7d:4d:d7:00:95:83:28:03:00:d3:e8:07:
0c:b6:cb:9d:a9:3f:90:8c:27:a5:9c:d8:75:9c:4e:b8:b6:60:
38:88:4b:fd:62:00:00:bf:87:59:f5:99:12:a3:0e:e1:c0:59:
ab:c9:76:39:0c:6a:46:ef:cc:0a:de:2f:d4:c8:51:05:c9:12:
5b:00:eb:89:cd:5f:5d:9e:ff:0d:e1:4f:b7:be:bb:f9:1f:d8:
40:72:1b:f7:67:ba:b3:09:31:3b:83:a0:4f:c4:e5:5b:ec:33:
9b:16:8f:49:81:de:17:84:e8:e2:70:e6:a9:96:b6:d7:b4:d3:
5e:46:d6:f2:78:9c:eb:87:5c:3d:34:30:cd:24:5a:f7:21:4d:
bc:d1:75:ca:d9:59:30:8f:86:1f:ac:74:b1:5b:b6:25:c6:3a:
6f:2f:c1:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:25:40 2025 by rpki-client