Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.mft
File: bYQL-PLqRGpH22xjOQZmfGPtiG4.mft (raw, json)
Hash identifier: oi3yDRsy03ujQ8ub23b2Nz991PudfAHdaJhHF8vmajA=
Subject key identifier: 17:F2:71:5F:F4:31:60:5C:3C:11:9B:92:1D:16:0E:BC:B3:E4:4B:E7
Authority key identifier: 6D:84:0B:F8:F2:EA:44:6A:47:DB:6C:63:39:06:66:7C:63:ED:88:6E
Certificate issuer: /CN=6d840bf8f2ea446a47db6c633906667c63ed886e
Certificate serial: 0198D5BBE9708D0686EA0173C092F27ED048
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bYQL-PLqRGpH22xjOQZmfGPtiG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.mft
Manifest number: 109F
Signing time: Sat 23 Aug 2025 07:01:58 +0000
Manifest this update: Sat 23 Aug 2025 07:01:58 +0000
Manifest next update: Sun 24 Aug 2025 07:01:58 +0000
Files and hashes: 1: 9fXYfiecb8LKHLBc5hFULaPgfkc.roa (hash: 4n+9kukj7OWGzO7qg1Ocfcd3L1gAsSFqFZg+KnIOuRA=)
2: bYQL-PLqRGpH22xjOQZmfGPtiG4.crl (hash: 3fWLAh9gYfGUxoVHSvM1XG6CfqqIEn8A0EDVZdJGO0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bYQL-PLqRGpH22xjOQZmfGPtiG4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:e9:70:8d:06:86:ea:01:73:c0:92:f2:7e:d0:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d840bf8f2ea446a47db6c633906667c63ed886e
Validity
Not Before: Aug 23 07:01:58 2025 GMT
Not After : Aug 24 07:01:58 2025 GMT
Subject: CN=17f2715ff431605c3c119b921d160ebcb3e44be7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b8:89:70:01:01:c4:18:e3:bd:67:46:04:bb:
67:c7:86:3f:66:04:ac:fe:84:b3:dd:30:ef:88:3d:
86:47:ab:b3:a3:3e:e0:df:9d:0d:1f:57:c0:98:51:
60:9a:b0:1f:be:1d:0b:7d:0d:bf:db:90:bd:6e:2b:
56:63:dc:9c:c7:01:7b:20:aa:a5:a5:62:a1:40:d7:
1d:2f:43:1d:3e:c3:47:31:ad:1f:6d:81:3c:b4:db:
cf:83:12:45:d9:9b:67:47:ec:3f:9c:99:11:eb:f7:
f1:49:92:a8:6c:1f:c6:87:0a:1e:de:6d:aa:f4:78:
5b:83:f1:52:65:c1:65:cc:94:24:38:ba:c6:fa:92:
49:92:0e:6e:28:11:a6:65:45:0c:be:d8:83:02:54:
72:42:07:71:57:f2:a5:1f:f9:0f:31:e1:bc:4f:d4:
da:4d:de:8f:fd:c0:20:73:5b:d0:b8:1d:fa:dd:1c:
71:78:be:5c:72:07:a5:a5:a2:f4:3c:72:a6:73:a0:
95:6a:a1:52:6c:d5:19:f0:32:5e:73:aa:f4:68:58:
d8:3a:d6:44:32:8e:44:b6:63:3f:e0:3b:84:44:7d:
90:56:48:46:a4:09:27:f3:a0:a1:7a:08:0e:a7:48:
b4:b3:59:28:e0:79:14:1a:ed:fe:de:32:74:bc:29:
55:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:F2:71:5F:F4:31:60:5C:3C:11:9B:92:1D:16:0E:BC:B3:E4:4B:E7
X509v3 Authority Key Identifier:
keyid:6D:84:0B:F8:F2:EA:44:6A:47:DB:6C:63:39:06:66:7C:63:ED:88:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bYQL-PLqRGpH22xjOQZmfGPtiG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:d6:e4:1d:71:bd:25:8b:95:4e:d6:88:db:e5:3b:42:84:1a:
e9:7e:a8:c7:a3:c8:7c:79:29:2e:ad:ad:ed:e9:35:ea:3f:ce:
5c:92:36:d9:61:97:c9:6f:ca:86:fd:21:1e:a7:03:7b:00:20:
47:b8:87:48:62:fb:8d:75:d4:96:3f:4f:ee:eb:93:de:fb:81:
ee:5f:dd:40:92:61:e7:1e:6a:76:2a:02:eb:1b:aa:57:04:ff:
dc:19:96:b1:f5:be:7c:d1:73:d8:bb:0a:dd:c8:ec:5a:2d:1e:
4e:37:ae:f2:d1:24:b1:9c:2d:34:cb:be:51:1b:13:9d:75:8c:
6d:10:2e:60:8a:91:23:70:e0:f3:e7:70:b9:8f:e0:c8:c4:50:
15:f7:93:4a:9a:13:6b:e9:70:cf:a1:4d:e3:85:1f:6a:6f:d4:
31:3b:99:a0:e3:43:37:9a:02:11:93:9a:45:5c:b7:f8:8b:78:
e5:9c:26:f3:be:0a:56:c4:db:3d:2a:21:84:7e:93:c6:47:a2:
c3:1a:e3:30:5e:c8:fd:ca:3b:8d:c4:75:72:c4:6d:3e:a8:8a:
b7:9e:69:33:bd:b7:6a:2d:e6:c3:de:f3:e8:34:aa:e8:0d:8f:
4b:f4:89:34:18:7d:ad:b1:1d:2a:32:79:8e:31:7d:cb:09:ff:
f7:e1:aa:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:31:08 2025 by rpki-client