Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
File: bOrnoCiJYKda-M6A54iFQ8f3fNc.mft (raw, json)
Hash identifier: GrUKWoeD/SiFn1cWkMlbE2lfEzYeI5g+lrA+pvuzYSM=
Subject key identifier: DC:C7:05:7C:25:AC:07:47:11:EB:93:6D:29:9F:C2:DC:CD:D9:F1:00
Authority key identifier: 6C:EA:E7:A0:28:89:60:A7:5A:F8:CE:80:E7:88:85:43:C7:F7:7C:D7
Certificate issuer: /CN=6ceae7a0288960a75af8ce80e7888543c7f77cd7
Certificate serial: 0196760C6D8F408FD0DD18B95A603F1CDD51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
Manifest number: 121D
Signing time: Sun 27 Apr 2025 07:00:48 +0000
Manifest this update: Sun 27 Apr 2025 07:00:48 +0000
Manifest next update: Mon 28 Apr 2025 07:00:48 +0000
Files and hashes: 1: 6Zx8tvFW-otCSIx-0XXwdAcWAvY.roa (hash: vXtudZUUi1vh+dqd99m5Me5cUdKc0jshPf9ev6mVJpw=)
2: bOrnoCiJYKda-M6A54iFQ8f3fNc.crl (hash: k6vMKsuA43UE5787uDlXrgw7bK+6WY3XotPHJHCw8Ok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:6d:8f:40:8f:d0:dd:18:b9:5a:60:3f:1c:dd:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ceae7a0288960a75af8ce80e7888543c7f77cd7
Validity
Not Before: Apr 27 07:00:48 2025 GMT
Not After : Apr 28 07:00:48 2025 GMT
Subject: CN=dcc7057c25ac074711eb936d299fc2dccdd9f100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:72:c8:ab:59:1a:23:a2:c2:84:a6:55:a2:65:
7c:24:85:98:11:d9:a1:6a:5e:64:33:1e:f2:86:b0:
f7:35:e9:d4:1f:e5:5e:31:e1:e0:3b:2b:f3:9e:47:
b0:2c:e3:a6:8d:1e:b3:5f:2e:2c:91:a8:78:15:24:
ec:19:0a:d0:cf:ce:b0:d0:c2:1e:9c:50:e0:c2:53:
89:fb:56:d7:5f:84:eb:df:cb:82:9b:a6:fa:a5:28:
f1:a9:68:0a:f1:df:13:d8:76:99:e2:b3:59:58:e3:
25:4a:25:2c:7c:95:a3:a3:07:ff:78:45:1c:82:3b:
dd:1c:07:d7:75:19:2e:ab:0e:98:08:7d:6f:26:54:
48:c3:7d:52:b2:79:4a:0f:74:ae:50:89:33:50:00:
71:97:e0:76:e7:1e:5f:39:d3:05:1c:22:87:fc:88:
7c:37:a0:89:45:af:02:c9:48:12:8a:60:2a:34:db:
05:9a:35:49:6a:79:ed:27:ee:97:d5:ec:a3:37:c5:
b0:dd:2a:14:bd:d9:74:e7:f3:0b:bb:26:b5:c9:35:
38:9e:2e:77:d9:52:23:3e:1d:b6:db:1b:32:14:1b:
7b:b9:7b:06:e7:f0:e9:1d:f3:e7:aa:5b:c4:e5:42:
f6:86:59:eb:df:c0:bb:87:87:c7:b8:b5:de:b5:f5:
f6:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:C7:05:7C:25:AC:07:47:11:EB:93:6D:29:9F:C2:DC:CD:D9:F1:00
X509v3 Authority Key Identifier:
keyid:6C:EA:E7:A0:28:89:60:A7:5A:F8:CE:80:E7:88:85:43:C7:F7:7C:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:f1:ea:21:b8:07:76:77:ae:12:11:5a:d9:a6:e7:6b:58:68:
35:ea:f5:f6:8e:f1:80:35:09:26:eb:3c:fa:6a:97:5f:1a:6b:
02:a0:de:ba:e2:d4:af:d9:8f:7f:20:cb:5a:90:c2:0c:29:06:
30:18:29:37:58:c8:38:98:45:54:0f:8d:7d:e9:fb:79:ad:1d:
e7:0e:27:a4:74:d0:f1:1f:38:33:bd:8e:81:a6:eb:53:f4:6d:
36:7c:12:74:cf:58:11:6d:f4:50:33:2e:0d:60:1c:f0:f3:93:
81:51:8a:c0:58:29:57:42:71:03:e3:09:a6:f7:16:6f:d1:ed:
1f:2c:7d:ef:b8:e1:9e:96:4d:00:1c:5f:e0:63:17:eb:18:6f:
a9:db:ae:fb:df:ee:4e:1d:32:59:8f:5e:9a:e7:6e:73:47:e0:
5d:73:29:8e:5e:c3:58:90:2e:bd:1a:2c:92:f0:ac:23:50:a6:
16:18:09:29:5a:60:4e:04:24:70:35:03:7e:3a:a7:2e:d7:f5:
a9:1b:56:46:d7:e7:9e:c1:e8:3e:64:c7:04:e6:5f:2d:f5:1e:
be:1e:b0:00:9c:79:c6:e9:c1:4a:35:eb:dc:d3:33:af:bb:e5:
de:12:f2:87:ce:b8:b6:62:60:2a:7d:01:1c:99:36:30:0d:5a:
2a:c3:b6:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2DG2PQI/Q3Ri5WmA/HN1RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjZWFlN2EwMjg4OTYwYTc1YWY4Y2U4MGU3ODg4NTQzYzdm
NzdjZDcwHhcNMjUwNDI3MDcwMDQ4WhcNMjUwNDI4MDcwMDQ4WjAzMTEwLwYDVQQD
EyhkY2M3MDU3YzI1YWMwNzQ3MTFlYjkzNmQyOTlmYzJkY2NkZDlmMTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzHLIq1kaI6LChKZVomV8JIWYEdmh
al5kMx7yhrD3NenUH+VeMeHgOyvznkewLOOmjR6zXy4skah4FSTsGQrQz86w0MIe
nFDgwlOJ+1bXX4Tr38uCm6b6pSjxqWgK8d8T2HaZ4rNZWOMlSiUsfJWjowf/eEUc
gjvdHAfXdRkuqw6YCH1vJlRIw31SsnlKD3SuUIkzUABxl+B25x5fOdMFHCKH/Ih8
N6CJRa8CyUgSimAqNNsFmjVJanntJ+6X1eyjN8Ww3SoUvdl05/MLuya1yTU4ni53
2VIjPh222xsyFBt7uXsG5/DpHfPnqlvE5UL2hlnr38C7h4fHuLXetfX2zQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNzHBXwlrAdHEeuTbSmfwtzN2fEAMB8GA1UdIwQY
MBaAFGzq56AoiWCnWvjOgOeIhUPH93zXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk9ybm9DaUpZS2RhLU02QTU0aUZROGYzZk5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS83MDhmNzYtNTZlZi00MzNmLTllYWMt
NGE0YTNiMDQwOGE2LzEvYk9ybm9DaUpZS2RhLU02QTU0aUZROGYzZk5jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS83MDhmNzYtNTZlZi00MzNmLTllYWMtNGE0YTNiMDQwOGE2
LzEvYk9ybm9DaUpZS2RhLU02QTU0aUZROGYzZk5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn/HqIbgH
dneuEhFa2abna1hoNer19o7xgDUJJus8+mqXXxprAqDeuuLUr9mPfyDLWpDCDCkG
MBgpN1jIOJhFVA+Nfen7ea0d5w4npHTQ8R84M72OgabrU/RtNnwSdM9YEW30UDMu
DWAc8POTgVGKwFgpV0JxA+MJpvcWb9HtHyx977jhnpZNABxf4GMX6xhvqduu+9/u
Th0yWY9emuduc0fgXXMpjl7DWJAuvRoskvCsI1CmFhgJKVpgTgQkcDUDfjqnLtf1
qRtWRtfnnsHoPmTHBOZfLfUevh6wAJx5xunBSjXr3NMzr7vl3hLyh864tmJgKn0B
HJk2MA1aKsO2fw==
-----END CERTIFICATE-----
Generated at Sun Apr 27 15:21:13 2025 by rpki-client