Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
File: bOrnoCiJYKda-M6A54iFQ8f3fNc.mft (raw, json)
Hash identifier: Re5+2PjHS8kexuZEjkz2FG1m6GxclsJsPQZjHyQ3Rro=
Subject key identifier: 7C:DB:41:F2:57:13:03:4C:65:B7:87:84:EA:F1:58:56:90:EC:C9:DF
Authority key identifier: 6C:EA:E7:A0:28:89:60:A7:5A:F8:CE:80:E7:88:85:43:C7:F7:7C:D7
Certificate issuer: /CN=6ceae7a0288960a75af8ce80e7888543c7f77cd7
Certificate serial: 01976F2C2A3FB80210B538B372B1A72D68FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
Manifest number: 129E
Signing time: Sat 14 Jun 2025 16:00:54 +0000
Manifest this update: Sat 14 Jun 2025 16:00:54 +0000
Manifest next update: Sun 15 Jun 2025 16:00:54 +0000
Files and hashes: 1: 6Zx8tvFW-otCSIx-0XXwdAcWAvY.roa (hash: vXtudZUUi1vh+dqd99m5Me5cUdKc0jshPf9ev6mVJpw=)
2: bOrnoCiJYKda-M6A54iFQ8f3fNc.crl (hash: 5VJEbt7ypLQR0Sks8GiXCPKC0FODBFokIwfq61ngs2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2c:2a:3f:b8:02:10:b5:38:b3:72:b1:a7:2d:68:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ceae7a0288960a75af8ce80e7888543c7f77cd7
Validity
Not Before: Jun 14 16:00:54 2025 GMT
Not After : Jun 15 16:00:54 2025 GMT
Subject: CN=7cdb41f25713034c65b78784eaf1585690ecc9df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:76:8d:25:34:5d:28:ae:4a:02:d8:5e:33:73:
08:48:3d:4e:c8:e8:c0:b1:68:5f:25:d2:d0:c6:08:
08:76:37:39:c0:b4:9f:0c:6b:27:d7:98:77:6b:6b:
2a:6d:a4:1c:3e:d0:7f:6c:e2:01:8f:c4:34:ea:14:
d4:a5:59:9c:33:4d:95:2b:87:7a:50:8f:db:c9:87:
1e:d5:02:dc:d0:fd:be:dc:79:bc:f3:80:a8:80:cf:
fc:3d:6c:fe:15:ff:e7:d2:d5:be:35:7a:81:d5:c9:
90:4c:82:f7:b8:ae:a0:6a:0c:46:93:9c:4c:38:53:
2a:9f:d0:ea:a2:c1:a3:25:a3:c5:ac:76:73:c5:a8:
6e:1c:c3:be:69:89:91:26:4d:c1:b1:74:50:af:0f:
09:8f:9a:77:8e:ea:7a:9f:b3:71:c4:5b:e9:bf:52:
38:4e:01:06:2f:d5:97:d9:f8:49:cd:c7:59:93:ed:
44:92:1e:a1:1d:2a:62:55:7f:a7:68:4c:aa:b5:9d:
f9:bd:91:1e:82:75:ca:b2:44:3c:35:b1:1b:1c:81:
86:79:f7:69:d1:74:b5:c0:ca:1d:e3:2a:01:af:11:
d4:ce:7e:e7:2a:df:22:4f:a2:4b:e8:6c:eb:da:77:
5c:c5:6b:8d:6e:53:1b:23:71:2c:66:f6:63:0b:1d:
b8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:DB:41:F2:57:13:03:4C:65:B7:87:84:EA:F1:58:56:90:EC:C9:DF
X509v3 Authority Key Identifier:
keyid:6C:EA:E7:A0:28:89:60:A7:5A:F8:CE:80:E7:88:85:43:C7:F7:7C:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:97:a8:e2:be:10:1b:5b:dd:28:a0:89:47:65:20:f4:ef:c2:
b8:ac:f0:55:9f:b1:5b:3d:f2:8f:1e:cd:44:06:5e:02:e4:11:
27:6c:44:b7:f2:ca:73:2e:68:19:da:0f:77:b9:43:3b:29:8d:
b7:f4:28:0c:4e:25:24:cb:bf:11:c0:63:bf:23:5c:47:64:6e:
77:fc:83:94:1d:c7:e6:78:27:d4:e9:28:95:f9:65:d0:2a:aa:
3c:b5:c9:e9:ea:f6:f2:9e:a2:f7:db:d2:fc:11:45:be:e0:5f:
65:9a:25:17:dc:61:c9:99:06:6a:84:75:cb:1e:64:94:e4:63:
df:98:c3:41:49:5d:8e:e3:7f:7d:ab:74:b1:97:44:00:39:45:
4f:15:75:fb:7a:65:1a:d3:e6:2d:81:62:3a:ef:30:0c:00:3c:
6b:9e:e7:e7:26:d8:7e:f9:b1:5c:ba:36:16:fc:9a:28:45:dd:
91:aa:16:f4:f7:96:6f:75:dc:de:f3:ec:ff:ea:4d:60:77:68:
0e:8a:f8:11:13:94:36:fd:be:b6:cf:99:94:21:c0:95:12:57:
f0:58:a2:7d:08:4b:5a:62:86:84:bd:2a:fd:14:f3:bf:1c:4d:
a2:be:9b:47:14:de:1f:00:e9:7e:18:43:2d:06:73:58:c0:19:
16:ce:bc:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdvLCo/uAIQtTizcrGnLWj+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjZWFlN2EwMjg4OTYwYTc1YWY4Y2U4MGU3ODg4NTQzYzdm
NzdjZDcwHhcNMjUwNjE0MTYwMDU0WhcNMjUwNjE1MTYwMDU0WjAzMTEwLwYDVQQD
Eyg3Y2RiNDFmMjU3MTMwMzRjNjViNzg3ODRlYWYxNTg1NjkwZWNjOWRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyHaNJTRdKK5KAtheM3MISD1OyOjA
sWhfJdLQxggIdjc5wLSfDGsn15h3a2sqbaQcPtB/bOIBj8Q06hTUpVmcM02VK4d6
UI/byYce1QLc0P2+3Hm884CogM/8PWz+Ff/n0tW+NXqB1cmQTIL3uK6gagxGk5xM
OFMqn9DqosGjJaPFrHZzxahuHMO+aYmRJk3BsXRQrw8Jj5p3jup6n7NxxFvpv1I4
TgEGL9WX2fhJzcdZk+1Ekh6hHSpiVX+naEyqtZ35vZEegnXKskQ8NbEbHIGGefdp
0XS1wMod4yoBrxHUzn7nKt8iT6JL6Gzr2ndcxWuNblMbI3EsZvZjCx24zwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHzbQfJXEwNMZbeHhOrxWFaQ7MnfMB8GA1UdIwQY
MBaAFGzq56AoiWCnWvjOgOeIhUPH93zXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk9ybm9DaUpZS2RhLU02QTU0aUZROGYzZk5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS83MDhmNzYtNTZlZi00MzNmLTllYWMt
NGE0YTNiMDQwOGE2LzEvYk9ybm9DaUpZS2RhLU02QTU0aUZROGYzZk5jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS83MDhmNzYtNTZlZi00MzNmLTllYWMtNGE0YTNiMDQwOGE2
LzEvYk9ybm9DaUpZS2RhLU02QTU0aUZROGYzZk5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHJeo4r4Q
G1vdKKCJR2Ug9O/CuKzwVZ+xWz3yjx7NRAZeAuQRJ2xEt/LKcy5oGdoPd7lDOymN
t/QoDE4lJMu/EcBjvyNcR2Rud/yDlB3H5ngn1Okolfll0CqqPLXJ6er28p6i99vS
/BFFvuBfZZolF9xhyZkGaoR1yx5klORj35jDQUldjuN/fat0sZdEADlFTxV1+3pl
GtPmLYFiOu8wDAA8a57n5ybYfvmxXLo2FvyaKEXdkaoW9PeWb3Xc3vPs/+pNYHdo
Dor4EROUNv2+ts+ZlCHAlRJX8FiifQhLWmKGhL0q/RTzvxxNor6bRxTeHwDpfhhD
LQZzWMAZFs68Ig==
-----END CERTIFICATE-----
Generated at Sat Jun 14 22:34:31 2025 by rpki-client