Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
File: bJSdK9ZO4X711H-WPj1depgrEq8.mft (raw, json)
Hash identifier: Lyc8yMv16fZxT6gclPPX2CEb7pY4VNeGgTGbpW2+wzo=
Subject key identifier: 2E:8C:8D:16:E8:31:C6:26:93:C0:A7:A6:A8:BF:B7:81:5F:2F:20:87
Authority key identifier: 6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
Certificate issuer: /CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Certificate serial: 019883C32967F20F97AE6C1DE772A58D1EF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
Manifest number: 0A8B
Signing time: Thu 07 Aug 2025 09:01:02 +0000
Manifest this update: Thu 07 Aug 2025 09:01:02 +0000
Manifest next update: Fri 08 Aug 2025 09:01:02 +0000
Files and hashes: 1: OyVcB1brzSxuoeEjBo4fT0W9OFc.roa (hash: sut6tQHQTuBMJAc0/1shERZEk1RWFKSSDeDy5cd5Klo=)
2: bJSdK9ZO4X711H-WPj1depgrEq8.crl (hash: We/erW6R/y6STg637Xq2HQSku3frmQm68S6ifhOZzSw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 08:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:83:c3:29:67:f2:0f:97:ae:6c:1d:e7:72:a5:8d:1e:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Validity
Not Before: Aug 7 09:01:02 2025 GMT
Not After : Aug 8 09:01:02 2025 GMT
Subject: CN=2e8c8d16e831c62693c0a7a6a8bfb7815f2f2087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:13:cb:30:3f:c1:1a:c7:63:e4:69:36:4c:93:
88:d0:d2:bb:d2:2d:02:06:a5:1e:a4:9e:18:94:5e:
05:68:b9:6f:d8:2a:f5:ad:23:64:95:f8:a2:c4:f7:
87:69:61:b0:23:b1:01:be:8d:5b:aa:d8:4d:f3:cb:
2d:a4:fe:69:ae:0c:ad:f1:4b:68:bd:3b:44:33:ad:
36:c2:f8:4b:fe:e2:e1:9d:4b:ef:9f:2a:c4:93:b7:
ea:80:76:c5:8f:32:1f:dd:a3:2a:9c:00:87:f4:93:
e3:20:3a:02:4d:e5:52:67:e7:55:8a:26:74:67:25:
9d:0d:a3:cb:bd:ea:75:96:f2:2f:2b:6d:96:7c:ee:
6d:fd:1d:5d:64:3b:a5:29:82:a0:1c:1f:56:cc:8b:
37:e9:77:73:a2:f3:87:f6:f1:cd:47:11:53:b3:17:
95:8e:a7:ee:9e:e3:ab:6b:54:8c:fb:88:3b:49:8b:
1a:4d:5f:fb:7a:c5:ce:dd:84:f2:61:83:42:d6:47:
91:dc:50:f8:8b:93:d7:12:d9:95:26:4c:60:1f:78:
da:71:c1:30:61:59:2a:71:41:4f:96:40:13:89:9d:
9e:17:28:1a:94:25:25:0e:04:d0:83:1d:6e:a4:a8:
be:81:12:6c:ad:9f:71:20:cb:85:bb:6b:18:0d:ab:
26:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:8C:8D:16:E8:31:C6:26:93:C0:A7:A6:A8:BF:B7:81:5F:2F:20:87
X509v3 Authority Key Identifier:
keyid:6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:16:f1:39:27:0f:b5:ca:96:79:27:79:43:80:ba:da:d1:e6:
fe:1e:a0:04:41:f0:3d:16:23:7e:5d:b1:e3:8e:a9:f0:7e:9c:
5c:0a:a5:8c:29:4f:35:77:cc:38:96:a2:e4:6e:95:c0:d7:81:
34:12:9e:8b:92:8c:ff:99:1b:ce:2e:b4:0f:75:fa:a0:2b:1d:
3b:95:6b:d1:92:af:d7:89:07:f7:6e:5f:1a:5d:8d:ab:ec:cf:
a0:f4:d5:3f:25:72:b7:40:76:76:d2:9c:a6:83:c6:83:85:51:
dc:c5:78:f3:31:90:b6:15:29:b9:fd:7c:f2:a0:81:3d:23:e7:
af:93:aa:e8:78:e0:a9:7c:46:34:70:19:44:09:6d:51:f9:cd:
14:27:b5:46:b9:02:9b:91:7c:db:9f:0d:ac:ba:c0:1e:3c:06:
fa:a5:6a:12:73:a9:1c:8c:6b:61:9d:60:f8:ff:49:fe:01:07:
ba:c6:3e:80:4d:da:e5:6c:df:7c:dd:c6:fc:65:da:64:51:d1:
b3:21:a1:79:94:6e:e3:70:d7:4f:11:98:7b:e9:a1:22:5e:a5:
09:ca:b9:6b:24:d6:14:d3:01:d9:a9:88:a7:31:9c:f6:c7:75:
c2:bf:b7:90:e4:47:f8:3f:ef:02:86:97:3b:20:1e:73:29:3e:
a1:93:82:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiDwyln8g+Xrmwd53KljR7zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjOTQ5ZDJiZDY0ZWUxN2VmNWQ0N2Y5NjNlM2Q1ZDdhOTgy
YjEyYWYwHhcNMjUwODA3MDkwMTAyWhcNMjUwODA4MDkwMTAyWjAzMTEwLwYDVQQD
EygyZThjOGQxNmU4MzFjNjI2OTNjMGE3YTZhOGJmYjc4MTVmMmYyMDg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRPLMD/BGsdj5Gk2TJOI0NK70i0C
BqUepJ4YlF4FaLlv2Cr1rSNklfiixPeHaWGwI7EBvo1bqthN88stpP5prgyt8Uto
vTtEM602wvhL/uLhnUvvnyrEk7fqgHbFjzIf3aMqnACH9JPjIDoCTeVSZ+dViiZ0
ZyWdDaPLvep1lvIvK22WfO5t/R1dZDulKYKgHB9WzIs36XdzovOH9vHNRxFTsxeV
jqfunuOra1SM+4g7SYsaTV/7esXO3YTyYYNC1keR3FD4i5PXEtmVJkxgH3jaccEw
YVkqcUFPlkATiZ2eFygalCUlDgTQgx1upKi+gRJsrZ9xIMuFu2sYDasmvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC6MjRboMcYmk8Cnpqi/t4FfLyCHMB8GA1UdIwQY
MBaAFGyUnSvWTuF+9dR/lj49XXqYKxKvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9mODY1MWItYzEyYi00MmQ0LWFmZGEt
MjMyZjQ3MDM0OTFmLzEvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9mODY1MWItYzEyYi00MmQ0LWFmZGEtMjMyZjQ3MDM0OTFm
LzEvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIBbxOScP
tcqWeSd5Q4C62tHm/h6gBEHwPRYjfl2x446p8H6cXAqljClPNXfMOJai5G6VwNeB
NBKei5KM/5kbzi60D3X6oCsdO5Vr0ZKv14kH925fGl2Nq+zPoPTVPyVyt0B2dtKc
poPGg4VR3MV48zGQthUpuf188qCBPSPnr5Oq6HjgqXxGNHAZRAltUfnNFCe1RrkC
m5F8258NrLrAHjwG+qVqEnOpHIxrYZ1g+P9J/gEHusY+gE3a5WzffN3G/GXaZFHR
syGheZRu43DXTxGYe+mhIl6lCcq5ayTWFNMB2amIpzGc9sd1wr+3kORH+D/vAoaX
OyAecyk+oZOCpw==
-----END CERTIFICATE-----
Generated at Thu Aug 7 12:49:47 2025 by rpki-client