Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft
File: bHO9JP2DCIa_otKWFBbSGF3jN3I.mft (raw, json)
Hash identifier: 1XYHCm3Qaj7kZQQTPOkk6Tqke65mm65zZ6RXDu8pvK0=
Subject key identifier: BB:A9:0C:2D:96:A4:4C:E2:05:51:B5:94:6C:74:05:58:4F:B5:57:F5
Authority key identifier: 6C:73:BD:24:FD:83:08:86:BF:A2:D2:96:14:16:D2:18:5D:E3:37:72
Certificate issuer: /CN=6c73bd24fd830886bfa2d2961416d2185de33772
Certificate serial: 019873E2BEFFC53F4E5878CB6AD2E1C9A3DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft
Manifest number: 0963
Signing time: Mon 04 Aug 2025 07:01:36 +0000
Manifest this update: Mon 04 Aug 2025 07:01:36 +0000
Manifest next update: Tue 05 Aug 2025 07:01:36 +0000
Files and hashes: 1: bHO9JP2DCIa_otKWFBbSGF3jN3I.crl (hash: f02t75iABAHrmntnVk7bg0g8Mpolt7v3lUuAghJRiv0=)
2: qHEAWZ6N3iBzcK7IIzIjqot58Rk.roa (hash: n8u6jtIG9RsDk/UjBbBpLB8puiC2i8ky96Vt7ctj0eY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft
rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:be:ff:c5:3f:4e:58:78:cb:6a:d2:e1:c9:a3:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c73bd24fd830886bfa2d2961416d2185de33772
Validity
Not Before: Aug 4 07:01:36 2025 GMT
Not After : Aug 5 07:01:36 2025 GMT
Subject: CN=bba90c2d96a44ce20551b5946c7405584fb557f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9c:a6:00:7d:62:e1:1f:a8:f0:0c:c8:bf:2d:
4e:e0:11:36:6e:f2:c6:bf:8e:d0:6f:72:f5:e5:4d:
ad:d7:19:d4:5f:ad:22:c2:f0:94:3a:e5:fb:30:b7:
20:57:2a:35:2d:c7:66:f7:f9:4e:e0:76:8f:6c:79:
83:14:4f:fb:6b:22:23:2d:aa:6e:21:cc:9e:cf:85:
e7:5a:c4:c5:90:86:93:b6:86:8d:5c:96:77:cb:1a:
77:ef:bb:2d:46:31:d7:0c:02:53:88:20:e0:1f:1c:
f2:07:a5:2b:6f:93:6f:e1:e0:99:d3:df:a8:8a:52:
f8:da:3c:ef:91:e9:ad:a9:6f:75:57:95:d3:95:c1:
2f:b2:56:b8:e4:f0:b8:ee:13:d8:38:82:2e:b5:a4:
8b:8f:e9:65:85:fc:78:b5:74:cc:e5:2e:b2:1d:73:
72:e8:a9:c6:e8:80:78:a7:b9:2f:5a:c9:0f:2a:29:
16:b9:fd:1a:59:16:d7:c5:e1:36:3f:05:09:9c:fb:
0c:2e:dd:af:30:94:4e:d3:80:61:de:63:48:79:11:
d9:90:a4:4d:b2:de:14:eb:e1:e4:1f:40:4b:33:5d:
42:72:04:48:c1:81:1b:0b:7c:74:31:9c:57:3f:da:
55:f7:6f:dc:c4:ae:68:d3:3f:1d:45:f3:56:91:e6:
ab:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:A9:0C:2D:96:A4:4C:E2:05:51:B5:94:6C:74:05:58:4F:B5:57:F5
X509v3 Authority Key Identifier:
keyid:6C:73:BD:24:FD:83:08:86:BF:A2:D2:96:14:16:D2:18:5D:E3:37:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:7b:4f:95:0a:4b:39:55:0c:89:b5:a1:08:ed:5d:45:d9:a1:
5c:7a:d5:1d:cf:1a:67:34:0e:a7:d7:f1:40:58:2f:c4:3f:24:
0a:7e:c2:e4:24:ad:4b:cd:e2:bf:d3:95:a5:01:29:0f:35:d5:
c3:18:0a:84:d1:d8:be:c3:1a:2f:15:32:7b:7c:1d:d0:55:62:
d8:ae:8c:ca:34:e3:f1:08:ee:cd:6f:23:81:9e:a2:6c:37:d9:
85:43:74:9a:63:27:ea:3f:57:e0:bf:dc:b8:83:d3:43:2d:e6:
5a:38:ec:7e:5e:d1:ff:53:ea:a9:1c:b0:74:76:fa:0f:66:95:
df:a3:3e:77:04:35:e6:40:2d:7a:06:a3:5b:3d:9a:ea:38:d9:
7e:a3:c5:8c:3d:c3:1f:58:5a:a2:d9:36:4d:35:4d:d5:6e:30:
6c:83:a0:3f:84:2c:82:be:5d:8f:0d:07:04:0d:16:83:a9:c4:
26:f5:24:0f:5f:17:dd:18:53:fa:ce:13:3d:f3:ad:d2:43:9b:
49:2f:ff:76:cc:3a:4f:36:ac:ca:c5:cf:da:7f:fd:cd:da:ea:
3a:ad:9a:9b:be:b5:34:92:30:0d:cd:f7:d1:28:23:fe:fd:54:
20:b1:07:4e:9d:a6:43:f0:f7:d8:32:3f:c2:0a:d3:0d:45:50:
0d:01:b4:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:14:09 2025 by rpki-client