Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
File: bSPOewwQBo-8RMAhlD4zkBPyruA.mft (raw, json)
Hash identifier: K7WSYU7OoLoHZEtDzNhnFz1THielFGnSkUi2BMx78AI=
Subject key identifier: 51:86:BF:45:85:8B:3A:F3:AE:C6:0E:31:C4:9B:C6:FC:DE:41:DA:2F
Authority key identifier: 6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
Certificate issuer: /CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Certificate serial: 019768BBD5F713218C9FD2BC0F329940D8DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
Manifest number: 158C
Signing time: Fri 13 Jun 2025 10:00:29 +0000
Manifest this update: Fri 13 Jun 2025 10:00:29 +0000
Manifest next update: Sat 14 Jun 2025 10:00:29 +0000
Files and hashes: 1: LQcm0nhQTgxfcAEHFSpSeQFsVHo.roa (hash: ScQNvXtsK5w/Wj3QzlqfHMAUcdIYUpFbtGKhSGmn1FI=)
2: bSPOewwQBo-8RMAhlD4zkBPyruA.crl (hash: e1zlu15Qh0m1hKVhJVoXC35m2jfs5fDhTWm3vindIfA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 10:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:bb:d5:f7:13:21:8c:9f:d2:bc:0f:32:99:40:d8:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Validity
Not Before: Jun 13 10:00:29 2025 GMT
Not After : Jun 14 10:00:29 2025 GMT
Subject: CN=5186bf45858b3af3aec60e31c49bc6fcde41da2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:39:d1:8f:78:56:c9:1a:8e:9a:b5:5e:17:ad:
e9:1f:59:5b:10:3b:df:30:75:61:af:42:73:09:c0:
4e:12:d0:4d:85:a3:c1:f2:5f:3e:42:78:87:55:a7:
21:6f:a9:91:e2:66:fa:03:a9:06:9d:4a:d0:09:fc:
81:48:6e:3a:e8:c2:82:f3:9b:7c:6f:41:f7:82:65:
6e:a1:35:fd:44:dc:ed:70:22:2d:01:c2:0a:83:6d:
99:d2:10:89:c0:dd:0c:3b:b4:9c:41:5c:ef:ac:24:
a2:bb:9f:5a:85:d6:bc:0a:d3:2b:1d:46:5e:91:76:
4e:45:37:d7:20:67:eb:74:06:c0:e4:ac:6d:88:43:
21:ca:fe:41:f3:ef:71:b8:f5:d8:4f:c6:5a:bf:e6:
1d:7b:1c:68:7f:62:a3:08:a9:f6:74:fd:d4:15:a1:
c8:22:c5:2c:49:c5:56:ae:a2:8c:a2:a8:26:c7:c0:
e4:0c:62:a1:aa:f5:86:d0:b4:72:d5:91:62:75:aa:
12:df:33:a3:b7:42:fb:db:a0:a4:01:c3:20:91:4c:
16:3c:e1:d3:44:f0:af:33:43:89:71:15:da:01:23:
59:91:48:25:47:4e:ca:0f:72:f3:f0:bf:37:60:e6:
82:9d:33:d3:02:c0:f1:d9:38:45:a4:3b:13:b3:6f:
90:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:86:BF:45:85:8B:3A:F3:AE:C6:0E:31:C4:9B:C6:FC:DE:41:DA:2F
X509v3 Authority Key Identifier:
keyid:6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:89:33:0c:b7:9b:ae:cb:aa:43:6a:b4:ec:16:d6:de:94:91:
35:83:5b:88:b0:fe:5a:97:46:14:a4:1d:c0:cd:80:f2:08:93:
9b:2a:1d:59:9e:ee:e2:ec:af:7e:da:54:9c:c6:ef:4b:7d:3c:
75:85:e1:38:12:3e:60:13:c1:63:06:dc:bc:98:f8:0a:18:60:
d6:c8:57:b1:7a:ec:0f:ca:c4:90:49:d5:e3:86:50:40:e3:a9:
ea:c9:c5:90:7b:e6:31:db:fd:87:a6:4e:35:c5:04:c6:57:ff:
35:6d:3b:c1:e5:31:0d:30:b0:8e:a3:7d:65:29:c3:e9:12:3c:
19:c8:58:29:9e:f9:a9:fa:af:4a:c8:15:bf:fa:c0:dc:1e:59:
79:64:f6:2b:58:67:7b:70:6b:6b:e5:02:33:23:36:f7:99:7f:
49:00:9b:ca:bb:94:4c:61:ad:08:44:3d:e3:9f:e0:89:86:46:
a4:30:d1:c3:e9:7c:be:bf:11:57:c3:80:b6:d7:3d:40:f1:5c:
5e:ea:c9:9f:79:a5:b8:c7:86:66:22:7c:f8:6d:00:ca:f5:22:
c7:c0:d8:a0:96:ef:1a:03:36:04:b2:77:75:01:7a:6f:a2:ee:
e7:ff:94:fb:21:5b:4d:62:06:b0:48:a4:ca:80:80:b2:1e:67:
1b:f8:9a:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdou9X3EyGMn9K8DzKZQNjfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMjNjZTdiMGMxMDA2OGZiYzQ0YzAyMTk0M2UzMzkwMTNm
MmFlZTAwHhcNMjUwNjEzMTAwMDI5WhcNMjUwNjE0MTAwMDI5WjAzMTEwLwYDVQQD
Eyg1MTg2YmY0NTg1OGIzYWYzYWVjNjBlMzFjNDliYzZmY2RlNDFkYTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmDnRj3hWyRqOmrVeF63pH1lbEDvf
MHVhr0JzCcBOEtBNhaPB8l8+QniHVachb6mR4mb6A6kGnUrQCfyBSG466MKC85t8
b0H3gmVuoTX9RNztcCItAcIKg22Z0hCJwN0MO7ScQVzvrCSiu59ahda8CtMrHUZe
kXZORTfXIGfrdAbA5KxtiEMhyv5B8+9xuPXYT8Zav+Ydexxof2KjCKn2dP3UFaHI
IsUsScVWrqKMoqgmx8DkDGKhqvWG0LRy1ZFidaoS3zOjt0L726CkAcMgkUwWPOHT
RPCvM0OJcRXaASNZkUglR07KD3Lz8L83YOaCnTPTAsDx2ThFpDsTs2+QZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFGGv0WFizrzrsYOMcSbxvzeQdovMB8GA1UdIwQY
MBaAFG0jznsMEAaPvETAIZQ+M5AT8q7gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlNQT2V3d1FCby04Uk1BaGxENHprQlB5cnVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My82NmFmMDctMzMxOC00ZjRhLTg5ZmYt
NDBjNWViYzZmNzM2LzEvYlNQT2V3d1FCby04Uk1BaGxENHprQlB5cnVBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My82NmFmMDctMzMxOC00ZjRhLTg5ZmYtNDBjNWViYzZmNzM2
LzEvYlNQT2V3d1FCby04Uk1BaGxENHprQlB5cnVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq4kzDLeb
rsuqQ2q07BbW3pSRNYNbiLD+WpdGFKQdwM2A8giTmyodWZ7u4uyvftpUnMbvS308
dYXhOBI+YBPBYwbcvJj4Chhg1shXsXrsD8rEkEnV44ZQQOOp6snFkHvmMdv9h6ZO
NcUExlf/NW07weUxDTCwjqN9ZSnD6RI8GchYKZ75qfqvSsgVv/rA3B5ZeWT2K1hn
e3Bra+UCMyM295l/SQCbyruUTGGtCEQ945/giYZGpDDRw+l8vr8RV8OAttc9QPFc
XurJn3mluMeGZiJ8+G0AyvUix8DYoJbvGgM2BLJ3dQF6b6Lu5/+U+yFbTWIGsEik
yoCAsh5nG/iafg==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:07:09 2025 by rpki-client