Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
File: bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft (raw, json)
Hash identifier: uPSPF1u3RxArZVUWPc1M97z2BhDHL3oYv5W/AGpHzE4=
Subject key identifier: 76:13:81:43:CD:9A:8F:3C:08:B9:4C:2D:4A:EA:74:D5:98:8E:54:46
Authority key identifier: 6C:DA:15:00:F5:C9:63:ED:23:4F:D9:48:59:F2:3B:32:F4:88:5D:FC
Certificate issuer: /CN=6cda1500f5c963ed234fd94859f23b32f4885dfc
Certificate serial: 0198748724295531C93CF60294C0FB3441A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
Manifest number: 13F6
Signing time: Mon 04 Aug 2025 10:01:10 +0000
Manifest this update: Mon 04 Aug 2025 10:01:10 +0000
Manifest next update: Tue 05 Aug 2025 10:01:10 +0000
Files and hashes: 1: VL7EtVPW-Ba0tPYDXOg-sXCbn4U.roa (hash: gs/UbUcaVfJny1jbjzMdFc3Au+82Qsl/IH1AWl7JplE=)
2: bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl (hash: UYjqkWr6/RteddTXBCjDTZgmHM4aKh0QcYCkXerotvs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 10:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:87:24:29:55:31:c9:3c:f6:02:94:c0:fb:34:41:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cda1500f5c963ed234fd94859f23b32f4885dfc
Validity
Not Before: Aug 4 10:01:10 2025 GMT
Not After : Aug 5 10:01:10 2025 GMT
Subject: CN=76138143cd9a8f3c08b94c2d4aea74d5988e5446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:a5:e2:28:25:99:5b:c9:a7:d9:bb:b1:28:a5:
77:85:45:99:ad:46:1a:f9:a2:1b:00:0f:21:a4:4c:
77:ce:b6:fd:d3:21:fc:cd:40:c8:af:e9:24:8f:6e:
22:a8:e6:19:0b:f4:23:67:e8:df:2d:39:ad:48:9e:
8d:29:bf:48:33:15:8e:87:e8:86:72:d9:e9:53:71:
b8:1a:70:d7:37:7b:75:e1:2f:a4:32:07:25:89:57:
a7:e3:33:10:5e:6d:c2:4a:5a:7f:54:87:9c:c7:73:
4e:e0:b3:10:31:ef:e3:f8:42:e4:18:5b:8e:39:72:
d0:34:eb:78:54:fd:b1:0e:cc:f4:56:d5:82:a9:6d:
07:b4:b9:22:3f:08:be:3e:20:d6:43:af:dc:b1:99:
91:ff:b6:12:44:0a:9b:10:48:b4:cb:4d:2b:a6:2d:
72:31:d9:a5:a1:16:fb:1d:6f:47:f3:96:db:b1:13:
87:46:cd:3e:d4:04:79:71:71:f6:85:ff:47:51:df:
11:94:3c:2c:dc:e9:87:cc:45:59:35:6e:32:14:4d:
4f:ae:28:39:95:90:dc:cb:7b:65:22:96:6c:ce:8d:
b7:cf:e4:cb:de:14:d1:e6:70:97:0f:e0:0a:85:b4:
00:4a:b4:21:ae:0e:46:62:16:53:21:ce:ac:64:25:
5d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:13:81:43:CD:9A:8F:3C:08:B9:4C:2D:4A:EA:74:D5:98:8E:54:46
X509v3 Authority Key Identifier:
keyid:6C:DA:15:00:F5:C9:63:ED:23:4F:D9:48:59:F2:3B:32:F4:88:5D:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:35:7d:88:11:66:11:e6:57:9a:8d:3a:e4:ef:b7:53:9e:0e:
84:33:75:fd:2a:42:48:d4:af:d7:c3:2e:03:cf:49:24:30:88:
a8:24:29:a6:ad:2a:e9:4c:57:dd:be:63:d2:39:58:0b:4f:64:
c9:dd:81:b0:1c:11:40:91:33:20:d0:e9:a4:9b:ef:01:b7:b0:
52:eb:04:99:28:2b:43:7f:a4:13:f0:82:32:18:8c:9a:32:1a:
42:6d:b8:a8:71:8a:67:be:9c:e4:9b:2b:f0:25:a4:e1:39:9e:
ad:37:83:58:a5:c5:02:8f:de:f7:d5:1a:05:79:94:1e:c3:a0:
8b:1b:2e:b1:7d:7b:68:80:bd:48:53:b8:56:a0:6d:05:d6:ad:
51:ab:b7:dd:2f:4e:e1:91:d9:45:6e:cc:8b:18:9d:5a:48:cd:
cc:60:ce:90:a4:3d:98:4e:38:d9:fb:0d:9a:c3:40:d9:eb:a5:
d3:84:de:d8:b8:be:0c:78:cb:29:e3:9b:3f:dd:08:d0:01:5d:
f2:17:33:dc:c6:fb:de:fb:0d:99:a0:11:03:df:ed:84:0e:79:
dd:96:6a:86:49:e0:60:68:c7:c7:ff:4d:99:15:9c:86:61:37:
c3:6b:10:95:b2:ef:7c:58:27:49:32:86:33:7a:23:31:cc:ae:
26:5e:e5:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:02:25 2025 by rpki-client