Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
File: bOrnoCiJYKda-M6A54iFQ8f3fNc.mft (raw, json)
Hash identifier: /DqsxAVRI4jwmzMxhPC4OU6MrUfLUPD4HTpEu26oqek=
Subject key identifier: C6:23:17:46:DF:E1:29:82:2C:3B:E1:31:30:26:20:D9:52:71:DC:02
Authority key identifier: 6C:EA:E7:A0:28:89:60:A7:5A:F8:CE:80:E7:88:85:43:C7:F7:7C:D7
Certificate issuer: /CN=6ceae7a0288960a75af8ce80e7888543c7f77cd7
Certificate serial: 019873E24B4E8E1CFA79A21D20A1F9C628BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
Manifest number: 1325
Signing time: Mon 04 Aug 2025 07:01:06 +0000
Manifest this update: Mon 04 Aug 2025 07:01:06 +0000
Manifest next update: Tue 05 Aug 2025 07:01:06 +0000
Files and hashes: 1: 6Zx8tvFW-otCSIx-0XXwdAcWAvY.roa (hash: vXtudZUUi1vh+dqd99m5Me5cUdKc0jshPf9ev6mVJpw=)
2: bOrnoCiJYKda-M6A54iFQ8f3fNc.crl (hash: tkPZx235EugE0a/gh2Yj7rirfFjDmgbjWeAsL2OeAbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:4b:4e:8e:1c:fa:79:a2:1d:20:a1:f9:c6:28:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ceae7a0288960a75af8ce80e7888543c7f77cd7
Validity
Not Before: Aug 4 07:01:06 2025 GMT
Not After : Aug 5 07:01:06 2025 GMT
Subject: CN=c6231746dfe129822c3be131302620d95271dc02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:de:51:b4:64:5d:1a:36:57:df:d8:c0:83:76:
0e:c6:d4:1e:c7:31:b1:a0:2b:ed:c2:d8:80:05:3a:
79:96:de:5f:7e:f7:48:c7:be:99:84:61:7e:2d:c7:
01:22:b2:c6:f4:73:fb:ed:82:b9:63:37:18:8a:03:
f2:0e:8b:42:ff:9b:a4:f0:2e:1c:0a:7e:a0:a0:58:
43:80:9e:1f:80:a5:7a:04:45:ec:f0:46:05:6f:1b:
1f:21:f5:91:85:7c:0f:c1:8f:0e:62:6c:68:9b:23:
af:30:f6:43:c3:29:f0:63:9b:7b:ee:03:cb:86:51:
f7:d0:df:e6:bf:79:d2:be:19:93:a1:66:33:d3:df:
19:29:9d:79:2e:4b:2b:62:3d:20:8f:a8:1c:4e:dc:
0a:ef:d7:d6:18:69:f2:c4:d0:d1:f9:38:1f:e0:a2:
34:2a:65:2b:88:7e:04:89:cc:30:9b:f1:c4:fd:7f:
4f:89:ab:a7:f8:15:04:f8:4e:f5:f1:d4:bd:68:95:
47:8e:a4:48:b7:a8:4e:e8:36:e8:e5:d5:39:f1:10:
f8:c0:8d:47:b6:06:0f:29:47:c5:dc:90:13:0e:d4:
8f:ac:8c:4a:01:41:9b:97:0c:5c:22:b1:3a:a1:e0:
d6:ce:a6:a9:9a:c3:25:d4:63:2b:64:24:4b:67:9f:
a4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:23:17:46:DF:E1:29:82:2C:3B:E1:31:30:26:20:D9:52:71:DC:02
X509v3 Authority Key Identifier:
keyid:6C:EA:E7:A0:28:89:60:A7:5A:F8:CE:80:E7:88:85:43:C7:F7:7C:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:9f:77:c9:35:17:76:99:52:74:4c:01:28:a8:72:29:fa:53:
02:29:45:2d:23:73:cc:6f:42:0b:16:70:af:d7:1d:f9:a8:9e:
7a:ed:e4:43:2e:97:57:f2:37:ef:8d:f2:7e:76:02:15:88:7c:
74:59:24:0a:6f:03:b5:01:99:0f:1c:7a:e1:e9:27:c7:86:8b:
68:16:bc:a0:45:bb:6a:4d:b1:3b:a7:93:79:c7:b0:22:ee:0a:
6c:b5:77:eb:c8:ee:59:b0:44:6c:d1:e2:00:8a:a6:da:e5:21:
5e:66:a6:1d:ae:67:2d:45:16:77:1f:5f:53:09:35:91:ba:c7:
d4:31:34:90:7f:8d:37:e3:0a:1a:f9:62:6e:fb:fe:3a:d2:e3:
c1:7f:f2:cf:5f:aa:aa:a1:1c:e5:71:8e:1c:32:7a:d0:63:31:
b2:3c:05:86:91:33:0e:79:7b:7f:72:57:9b:63:6c:56:43:46:
d0:0f:5e:36:cd:ef:04:33:9a:81:5d:75:ee:64:fa:60:2b:3c:
61:cb:78:ea:bd:04:98:b4:72:ab:e1:ee:67:53:c4:e1:ac:ca:
5c:7f:09:6c:cd:5f:f8:75:80:8b:e8:c0:81:41:1f:74:12:14:
65:02:b8:b9:c4:6e:69:13:87:bf:f7:8d:9c:fd:49:6f:cc:4f:
69:5d:2b:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz4ktOjhz6eaIdIKH5xii8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjZWFlN2EwMjg4OTYwYTc1YWY4Y2U4MGU3ODg4NTQzYzdm
NzdjZDcwHhcNMjUwODA0MDcwMTA2WhcNMjUwODA1MDcwMTA2WjAzMTEwLwYDVQQD
EyhjNjIzMTc0NmRmZTEyOTgyMmMzYmUxMzEzMDI2MjBkOTUyNzFkYzAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArN5RtGRdGjZX39jAg3YOxtQexzGx
oCvtwtiABTp5lt5ffvdIx76ZhGF+LccBIrLG9HP77YK5YzcYigPyDotC/5uk8C4c
Cn6goFhDgJ4fgKV6BEXs8EYFbxsfIfWRhXwPwY8OYmxomyOvMPZDwynwY5t77gPL
hlH30N/mv3nSvhmToWYz098ZKZ15LksrYj0gj6gcTtwK79fWGGnyxNDR+Tgf4KI0
KmUriH4Eicwwm/HE/X9Piaun+BUE+E718dS9aJVHjqRIt6hO6Dbo5dU58RD4wI1H
tgYPKUfF3JATDtSPrIxKAUGblwxcIrE6oeDWzqapmsMl1GMrZCRLZ5+kPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMYjF0bf4SmCLDvhMTAmINlScdwCMB8GA1UdIwQY
MBaAFGzq56AoiWCnWvjOgOeIhUPH93zXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk9ybm9DaUpZS2RhLU02QTU0aUZROGYzZk5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS83MDhmNzYtNTZlZi00MzNmLTllYWMt
NGE0YTNiMDQwOGE2LzEvYk9ybm9DaUpZS2RhLU02QTU0aUZROGYzZk5jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS83MDhmNzYtNTZlZi00MzNmLTllYWMtNGE0YTNiMDQwOGE2
LzEvYk9ybm9DaUpZS2RhLU02QTU0aUZROGYzZk5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACp93yTUX
dplSdEwBKKhyKfpTAilFLSNzzG9CCxZwr9cd+aieeu3kQy6XV/I3743yfnYCFYh8
dFkkCm8DtQGZDxx64eknx4aLaBa8oEW7ak2xO6eTecewIu4KbLV368juWbBEbNHi
AIqm2uUhXmamHa5nLUUWdx9fUwk1kbrH1DE0kH+NN+MKGvlibvv+OtLjwX/yz1+q
qqEc5XGOHDJ60GMxsjwFhpEzDnl7f3JXm2NsVkNG0A9eNs3vBDOagV117mT6YCs8
Yct46r0EmLRyq+HuZ1PE4azKXH8JbM1f+HWAi+jAgUEfdBIUZQK4ucRuaROHv/eN
nP1Jb8xPaV0riQ==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:22:06 2025 by rpki-client