Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
File: bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft (raw, json)
Hash identifier: F7OeVO8+kvSOIEqxc9b/aPZCVhyS1iqD0NdXIfGU3L8=
Subject key identifier: 03:0C:E2:B7:F6:C9:0B:3F:18:D2:FC:7F:7E:8E:B5:47:FB:44:F7:5E
Authority key identifier: 6C:DA:15:00:F5:C9:63:ED:23:4F:D9:48:59:F2:3B:32:F4:88:5D:FC
Certificate issuer: /CN=6cda1500f5c963ed234fd94859f23b32f4885dfc
Certificate serial: 0197778A79BFAD717C5D0A686E4CE0C29E18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
Manifest number: 1373
Signing time: Mon 16 Jun 2025 07:00:53 +0000
Manifest this update: Mon 16 Jun 2025 07:00:53 +0000
Manifest next update: Tue 17 Jun 2025 07:00:53 +0000
Files and hashes: 1: VL7EtVPW-Ba0tPYDXOg-sXCbn4U.roa (hash: gs/UbUcaVfJny1jbjzMdFc3Au+82Qsl/IH1AWl7JplE=)
2: bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl (hash: H1yNrJKNg55JpDTGpbaIyxuC0oTYHLW68DSAGc9ahaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:8a:79:bf:ad:71:7c:5d:0a:68:6e:4c:e0:c2:9e:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cda1500f5c963ed234fd94859f23b32f4885dfc
Validity
Not Before: Jun 16 07:00:53 2025 GMT
Not After : Jun 17 07:00:53 2025 GMT
Subject: CN=030ce2b7f6c90b3f18d2fc7f7e8eb547fb44f75e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:fa:05:85:33:42:26:c4:09:26:8e:b0:cc:b3:
37:97:2b:48:1f:5b:cd:35:c5:67:8c:2b:31:ab:f5:
b1:56:9b:07:99:6f:d6:4b:68:fc:54:ae:eb:a7:ff:
49:2f:7f:dc:d5:6f:6b:69:6a:e7:b2:41:43:ee:ce:
43:1b:31:cc:ff:10:8b:1f:1d:f0:f1:b5:aa:ab:4e:
88:04:9a:b0:86:1c:c8:ce:6e:31:c4:ab:fd:31:e5:
62:57:d6:8f:09:41:59:94:32:13:e0:b4:46:3e:76:
76:c5:9d:40:ba:61:6d:ef:cd:8a:3a:51:7f:64:6e:
68:98:44:0a:8c:5c:58:36:a4:04:48:5d:4e:d7:62:
2a:b7:3f:bf:c8:7c:54:c2:8e:74:7f:57:84:18:47:
17:63:89:e4:c0:20:77:a8:2f:01:9f:06:2a:2b:7b:
b9:7a:83:ab:62:dc:7a:a3:98:cf:da:af:36:c1:3d:
3d:5c:fe:97:21:5e:10:06:97:9a:82:84:88:77:23:
49:66:91:8f:be:f1:6f:94:9a:ba:88:b8:fa:44:c1:
cd:c4:1d:3a:4e:93:75:33:e5:cc:ea:1b:57:7b:cc:
9e:b7:f3:0a:58:ba:64:3d:b8:2e:89:a0:57:e8:c3:
d8:3c:5c:7c:56:c3:8f:64:61:bb:8b:37:ee:10:3b:
e0:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:0C:E2:B7:F6:C9:0B:3F:18:D2:FC:7F:7E:8E:B5:47:FB:44:F7:5E
X509v3 Authority Key Identifier:
keyid:6C:DA:15:00:F5:C9:63:ED:23:4F:D9:48:59:F2:3B:32:F4:88:5D:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:ab:36:ff:83:04:3c:aa:26:fc:1a:bd:5d:46:26:a4:b8:03:
ba:7c:df:bf:27:0d:71:c9:cc:94:e1:a1:fa:7c:88:d9:14:a1:
16:7c:e0:d2:5b:53:6d:42:54:8a:81:d9:33:c7:44:b0:94:38:
52:ab:1a:79:8c:e3:89:10:e7:f7:e6:27:b2:c0:2d:a7:7b:b7:
f9:66:06:63:33:6f:c5:d6:4c:84:2f:bb:e0:ad:7e:3a:f4:52:
56:89:9d:7b:b0:2d:ff:c8:b2:46:86:67:1d:8f:96:25:93:90:
25:84:86:c9:97:f5:a7:80:19:a5:df:a7:68:9f:e6:97:1f:07:
77:fa:cc:b7:d6:a9:6e:58:5b:a4:91:e6:ab:3a:c7:9d:f9:52:
fa:88:84:30:af:64:73:9a:60:88:1d:7d:ef:e2:d0:97:f4:87:
96:24:5b:f0:32:26:07:57:0b:5f:9c:c4:05:ff:02:bb:b0:ae:
97:6f:fe:e6:7b:31:74:b7:39:3b:d4:53:53:50:cb:84:d8:06:
9a:80:fe:eb:7a:22:5b:29:25:47:80:af:18:d8:bb:46:32:1a:
4d:90:69:98:15:6e:3a:f0:cd:41:67:57:e7:c5:13:c2:36:57:
81:98:ee:2b:86:bd:d5:ea:53:6c:b2:22:90:b8:3d:1e:59:f0:
cf:99:ba:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 11:56:26 2025 by rpki-client