Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
File: bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft (raw, json)
Hash identifier: 97yplt1FyUlwG+95k4NkxQqjLxCh1hQlaZ5fVcBcZ6M=
Subject key identifier: 6C:D8:09:AC:C8:A1:F6:09:59:3D:C4:28:62:84:B0:34:0F:33:D5:41
Authority key identifier: 6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
Certificate issuer: /CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Certificate serial: 0197B7B338B2C9560D88E7BBF5FEC03BA9AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
Manifest number: 0271
Signing time: Sat 28 Jun 2025 18:01:05 +0000
Manifest this update: Sat 28 Jun 2025 18:01:05 +0000
Manifest next update: Sun 29 Jun 2025 18:01:05 +0000
Files and hashes: 1: MYDLO2vvDKfPNW5B_jde2eQkJYg.roa (hash: wV9kbvDo8W5gfhdwsvfFoAGi3mrp4nPR/cUxhX5vacM=)
2: bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl (hash: mWbjh43wAawkIGSNNoeo/Ymq0vRDgi2dQ40FZHXrdB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:38:b2:c9:56:0d:88:e7:bb:f5:fe:c0:3b:a9:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Validity
Not Before: Jun 28 18:01:05 2025 GMT
Not After : Jun 29 18:01:05 2025 GMT
Subject: CN=6cd809acc8a1f609593dc4286284b0340f33d541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:64:02:fd:bf:c8:e2:38:52:3d:8b:28:c4:2c:
82:96:fc:32:7a:ea:a3:ae:35:3b:47:c3:e6:70:02:
c1:11:2c:85:49:56:26:14:d3:12:36:0d:a1:25:64:
df:34:7f:46:34:c7:b3:5e:3b:33:fd:23:6f:f4:c9:
d6:f1:9c:f3:ba:93:ac:20:4a:45:96:fd:53:36:29:
9e:20:90:c7:7b:35:89:fd:ab:34:43:80:df:df:41:
9b:56:1a:71:c7:96:23:96:fa:e4:2f:24:22:3b:3b:
c9:de:59:db:81:d4:0c:24:7a:d6:90:4c:33:4a:cc:
00:41:bc:e3:70:9c:48:4c:e6:39:0e:25:f7:56:a0:
14:0d:a4:46:a9:e5:27:59:aa:21:44:04:0b:6d:60:
93:4a:11:95:46:11:56:0c:0b:c3:34:ad:c0:49:be:
ef:b0:0e:0b:1e:2f:9e:64:df:93:3f:16:3f:2c:60:
d1:f3:c6:4d:b2:0b:c6:c6:58:5c:9e:bc:21:36:7d:
f5:42:d8:e1:10:ae:ac:0e:46:33:6a:f7:71:db:c4:
40:f3:08:68:01:47:86:4b:d2:a9:c6:fe:07:23:4e:
72:99:d1:a7:1f:f0:f7:07:aa:ea:e2:75:f8:e2:47:
17:63:cf:46:a5:f5:59:c3:1c:ae:8b:b2:c8:88:72:
71:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:D8:09:AC:C8:A1:F6:09:59:3D:C4:28:62:84:B0:34:0F:33:D5:41
X509v3 Authority Key Identifier:
keyid:6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:33:1f:9b:c4:6d:a0:3a:ce:33:6b:8f:a3:ac:76:66:ab:81:
42:0a:6e:10:29:0a:22:2e:fb:55:69:58:84:f4:7b:9c:aa:3b:
4f:a1:42:78:56:92:0a:2f:a8:a0:e0:bb:f1:0e:f1:33:0b:87:
d9:0d:8d:72:25:e6:34:26:4b:33:c7:be:79:52:9e:ea:92:27:
64:2d:6e:2b:3c:bb:8c:2b:ca:99:10:c9:3a:b1:17:35:b6:58:
38:4c:77:c8:8f:bb:a2:8f:c3:53:52:0f:99:e3:8e:9b:7f:bf:
7a:37:e5:71:d6:fb:f8:40:cd:72:8e:42:85:16:05:d0:9d:14:
80:82:df:93:f8:97:0f:24:74:ac:5a:b4:04:e4:15:72:2a:74:
d3:4d:28:0f:1c:7d:e7:f0:a5:40:aa:32:48:8e:0a:44:10:7e:
d8:e6:83:f4:5f:57:78:a9:31:b7:c0:8e:19:24:8e:9a:80:d9:
fc:eb:61:17:e8:c3:45:e8:93:a2:17:8c:f4:dc:e9:de:42:d2:
0b:a3:48:d5:61:f9:79:7a:8c:f0:cf:ed:ed:03:ac:c0:a1:a4:
34:98:93:00:9b:b1:8b:6e:f7:be:81:ad:19:67:0a:50:b5:f2:
d6:b4:e7:fb:fa:23:36:f7:d5:73:4f:20:29:f8:6b:bc:b9:7d:
78:bf:9e:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:43:03 2025 by rpki-client