Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
File: bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft (raw, json)
Hash identifier: QCT5n5brJZYN6blLrWNMFQUU1AkuzFlIWeBhyZRY4RQ=
Subject key identifier: BA:F9:D1:3C:79:57:99:37:99:E2:4A:D0:7C:9C:EE:B2:2B:89:D3:A5
Authority key identifier: 6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
Certificate issuer: /CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Certificate serial: 0198D5837B7B8DFC2650F9A4D529CACA61BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
Manifest number: 0305
Signing time: Sat 23 Aug 2025 06:00:20 +0000
Manifest this update: Sat 23 Aug 2025 06:00:20 +0000
Manifest next update: Sun 24 Aug 2025 06:00:20 +0000
Files and hashes: 1: MYDLO2vvDKfPNW5B_jde2eQkJYg.roa (hash: wV9kbvDo8W5gfhdwsvfFoAGi3mrp4nPR/cUxhX5vacM=)
2: bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl (hash: tNTgAaqf7JrC0is6jpMQSH8uv80HIUXjBsrhbgYYLiM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:7b:7b:8d:fc:26:50:f9:a4:d5:29:ca:ca:61:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Validity
Not Before: Aug 23 06:00:20 2025 GMT
Not After : Aug 24 06:00:20 2025 GMT
Subject: CN=baf9d13c7957993799e24ad07c9ceeb22b89d3a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f6:ae:6a:1c:c4:ff:bb:f5:07:9a:ec:3f:41:
aa:3b:ec:0c:14:69:f5:e8:fa:7c:70:00:d6:5f:42:
c5:8f:ea:d0:16:d5:79:6d:0a:fc:89:fb:b5:26:c3:
1c:bf:ac:3b:31:92:85:a9:15:04:4e:d3:c2:64:2f:
e4:9e:df:59:9d:bf:2e:47:08:dd:7f:6a:08:88:42:
8f:40:71:46:40:6b:80:a8:b7:29:3f:0f:fd:c0:70:
c9:d7:ee:a8:dc:1a:18:ac:45:56:57:71:a0:6a:43:
07:07:0c:81:ee:50:8e:8f:e3:4d:4e:c4:d9:c9:4a:
9d:f8:79:96:4f:de:36:2e:d8:20:63:4f:63:03:ff:
76:04:ea:f5:5f:9a:59:81:d9:7c:67:8e:dc:c2:74:
2d:bc:ee:7a:4d:5c:59:9b:e2:92:b1:98:c4:37:1a:
55:bf:be:76:44:78:bf:aa:c8:44:45:0c:d6:a6:6f:
99:87:e0:84:7a:2a:29:3c:d9:d7:b0:31:ed:90:af:
5b:e2:dd:84:d4:90:3e:85:16:e3:4c:2e:32:56:e2:
13:d0:6d:07:1e:2a:08:fc:a4:5d:d9:96:99:34:5b:
3d:2b:06:a1:22:8f:86:08:12:d7:fe:fc:71:1b:da:
da:da:7b:35:8a:64:ca:8f:67:81:e1:64:de:ae:6d:
29:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:F9:D1:3C:79:57:99:37:99:E2:4A:D0:7C:9C:EE:B2:2B:89:D3:A5
X509v3 Authority Key Identifier:
keyid:6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:a6:88:cd:8e:e0:7a:55:0b:67:be:f7:58:31:6c:ec:4c:fc:
20:38:c9:f9:0a:81:c5:41:12:1f:23:a1:50:a0:67:89:af:d2:
ba:c8:91:92:62:16:33:4a:8c:4b:4b:1c:ae:9c:5f:9d:8c:4a:
f4:17:c4:64:f0:7b:44:2c:84:83:40:d9:d8:29:cf:4e:da:92:
79:60:f9:d6:57:91:b6:c1:3d:8a:fe:56:65:16:48:16:d3:8a:
f0:20:45:0f:2c:c5:1d:05:1e:0e:1a:cb:ec:73:c8:13:c9:9f:
bb:f2:d8:6b:70:e3:93:e6:ed:60:8c:a4:58:e9:a6:e8:4e:f9:
50:20:59:6c:25:83:cc:cb:41:80:ea:57:15:c0:24:8c:5a:f4:
bc:21:b8:3e:e6:e2:ee:a0:2d:82:1b:e0:73:e3:b6:8a:6c:3d:
50:a7:4f:62:2e:47:a7:36:e3:a6:d0:19:27:55:db:ca:2b:cc:
cb:7b:9a:07:7a:e6:12:e5:4b:29:38:a2:6a:30:8d:fa:e3:6e:
fc:4d:ea:2d:99:ce:4f:f5:87:dd:f1:2d:30:89:ec:f6:dc:d2:
6e:7e:5b:62:1b:95:3d:1c:e0:2c:23:59:ed:ff:21:5f:6a:98:
23:f6:a6:45:f1:93:e4:33:12:6a:fe:4a:22:51:42:ba:73:03:
e5:50:b7:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:05:31 2025 by rpki-client