Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
File: bHOgSn0Ost9H2vDDn7p142XIhT0.mft (raw, json)
Hash identifier: x4g8hLTbmk2u/vqIRsW+jayEW3sMEQ9oPB6iHgulUcs=
Subject key identifier: 1B:82:BE:23:49:FD:4F:08:35:7E:CD:06:A2:CC:55:54:50:22:B0:93
Authority key identifier: 6C:73:A0:4A:7D:0E:B2:DF:47:DA:F0:C3:9F:BA:75:E3:65:C8:85:3D
Certificate issuer: /CN=6c73a04a7d0eb2df47daf0c39fba75e365c8853d
Certificate serial: 019A006C5633A4AA99792015D60D008F0CD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
Manifest number: 10B6
Signing time: Mon 20 Oct 2025 07:01:31 +0000
Manifest this update: Mon 20 Oct 2025 07:01:31 +0000
Manifest next update: Tue 21 Oct 2025 07:01:31 +0000
Files and hashes: 1: 1g8u0Gir8yCyVBvzcuA27ZsMTcA.roa (hash: hLEqWjYzmOf232eRZFufaSm1niRcj5QeYBzcD6/dycc=)
2: bHOgSn0Ost9H2vDDn7p142XIhT0.crl (hash: d8BUrayE6ewVbgrEUdFk7F0+7+FL3RleHAXTUQ8WZ/s=)
3: uSLH-6azWyM6_toWim6PNb4arp4.roa (hash: imwU+Zb8TWocoYkIF0ZGoxJDK+doen6jZopoR2zFVWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 07:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:6c:56:33:a4:aa:99:79:20:15:d6:0d:00:8f:0c:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c73a04a7d0eb2df47daf0c39fba75e365c8853d
Validity
Not Before: Oct 20 07:01:31 2025 GMT
Not After : Oct 21 07:01:31 2025 GMT
Subject: CN=1b82be2349fd4f08357ecd06a2cc55545022b093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b8:dd:ca:0d:fe:b4:a9:db:64:ea:c6:aa:bd:
f5:75:c3:4f:d7:3e:e3:28:2c:f1:c8:76:b1:c6:47:
d3:9a:30:78:f8:34:88:cb:de:be:59:79:b7:9f:40:
ce:47:65:a5:9a:69:dc:24:6d:3b:69:db:23:df:60:
e5:c9:30:87:8b:86:d2:f4:8f:be:f4:92:28:dc:6a:
c0:fa:ce:82:e3:c4:3e:d5:72:5e:9d:11:81:70:88:
ca:27:f2:28:25:2a:1b:9f:96:ec:50:e4:a0:85:1c:
38:eb:46:2a:9d:3d:0e:65:a1:93:38:3d:ae:0c:ba:
5d:eb:98:dc:58:f9:21:fb:34:83:4e:cf:2a:c9:13:
60:7d:d7:87:ab:58:b2:bc:43:62:18:03:8e:2a:72:
6b:ea:91:af:7b:8e:c0:37:ce:fa:25:7d:34:9a:3b:
0a:62:34:47:ec:a1:4d:83:c4:b3:c9:52:3a:08:8a:
0f:d8:41:bf:5e:10:7d:82:52:95:48:1b:9e:ea:f3:
46:89:b4:0d:f3:33:67:d7:08:86:1c:57:63:60:9a:
fc:b9:d7:56:eb:ee:8c:ad:cb:da:a4:25:b8:e6:3d:
00:f8:74:9c:34:8c:2e:14:2b:af:fd:f7:66:63:06:
0e:ea:6a:34:f2:9a:e7:77:01:7a:a8:bc:a5:10:f4:
67:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:82:BE:23:49:FD:4F:08:35:7E:CD:06:A2:CC:55:54:50:22:B0:93
X509v3 Authority Key Identifier:
keyid:6C:73:A0:4A:7D:0E:B2:DF:47:DA:F0:C3:9F:BA:75:E3:65:C8:85:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:b3:88:98:9e:f4:d3:bd:8c:da:fd:db:d0:a3:70:0c:85:f4:
c7:9b:b3:bd:a4:33:4d:71:1d:45:ff:98:8d:81:71:43:8b:81:
e7:ed:dc:b3:47:bc:c3:93:40:a2:fa:1a:da:d6:4e:6a:1c:36:
57:2e:72:d9:e7:9d:e9:c4:2d:90:87:39:17:28:ef:e0:63:c9:
4b:5b:78:ae:a7:9e:d4:36:6d:c3:be:74:f0:3e:34:bb:a2:6a:
0c:90:16:a3:55:36:ec:5f:aa:0b:fd:7f:10:4b:cf:1a:c8:c4:
1b:22:d2:fc:03:33:af:22:be:5b:c2:ca:d7:55:69:ae:1b:e7:
84:96:e1:5a:d1:f3:1a:34:19:5c:c1:a7:4c:2f:0e:1f:17:d9:
b3:79:4e:01:cd:fe:0d:45:03:b6:10:66:91:81:3a:ce:58:0a:
46:e3:87:1a:49:9f:ae:95:e3:d2:23:09:75:4f:9e:25:11:14:
79:1c:19:84:36:06:a3:12:ce:f3:b4:c9:d5:f3:3f:a7:44:65:
06:54:9c:18:77:2c:90:53:a5:b1:e5:30:ee:e5:59:cf:19:57:
6d:4e:fd:6b:36:f7:ee:3a:48:eb:83:ef:97:cf:f4:8f:37:c9:
c1:b4:21:92:b2:26:38:c6:bb:8f:40:e1:c2:46:c7:1a:cf:20:
3a:79:cf:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 17:01:01 2025 by rpki-client