Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.mft
File: rBoLnMXOi_2e4m0J1-kRUaQtNw0.mft (raw, json)
Hash identifier: HdbBU3BkvdNcu9hzNOjlL84TrSPdx6NGquWHYZXPq3Q=
Subject key identifier: 71:D7:8A:50:1A:7D:5D:DF:4A:46:EB:ED:67:40:F3:B9:F9:51:5A:08
Authority key identifier: AC:1A:0B:9C:C5:CE:8B:FD:9E:E2:6D:09:D7:E9:11:51:A4:2D:37:0D
Certificate issuer: /CN=ac1a0b9cc5ce8bfd9ee26d09d7e91151a42d370d
Certificate serial: 019872D0128969651E97E98F1F1C4F364806
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rBoLnMXOi_2e4m0J1-kRUaQtNw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.mft
Manifest number: 1616
Signing time: Mon 04 Aug 2025 02:01:35 +0000
Manifest this update: Mon 04 Aug 2025 02:01:35 +0000
Manifest next update: Tue 05 Aug 2025 02:01:35 +0000
Files and hashes: 1: e7v6KfsQ42Ju_th6J-KjayhE0pc.roa (hash: 2QzdBlDL7vaApFGThIZoir4ZfxpYLQiDlB23vrYFa1A=)
2: rBoLnMXOi_2e4m0J1-kRUaQtNw0.crl (hash: UTwiMTBZbLwkFi2deVJidyz+SAfrkZKqPpEChVb5wJ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rBoLnMXOi_2e4m0J1-kRUaQtNw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:d0:12:89:69:65:1e:97:e9:8f:1f:1c:4f:36:48:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac1a0b9cc5ce8bfd9ee26d09d7e91151a42d370d
Validity
Not Before: Aug 4 02:01:35 2025 GMT
Not After : Aug 5 02:01:35 2025 GMT
Subject: CN=71d78a501a7d5ddf4a46ebed6740f3b9f9515a08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1e:23:17:0a:cc:b8:2b:ae:e2:1b:10:b4:3f:
18:ab:3d:f3:ab:97:ea:db:a9:6b:a2:1d:2a:76:90:
35:e1:3a:54:b7:30:9a:6f:5e:18:12:fa:49:61:30:
de:18:21:e4:5b:4c:d2:e2:07:e2:22:f4:fa:01:d0:
cc:33:33:14:aa:3c:94:cb:2f:58:86:f3:d7:4e:ca:
ef:dc:58:d6:c8:93:aa:cc:b3:28:ad:4a:80:2d:12:
f2:ad:69:9b:ce:35:09:bd:67:1a:b8:49:f8:94:c9:
4b:20:12:27:1b:95:db:0a:a7:83:75:a0:06:78:26:
3d:9f:73:cb:9b:74:1f:da:c0:4d:6c:66:cd:c5:08:
22:c3:95:b1:16:07:3c:9f:ad:79:af:21:8a:7b:ab:
63:ed:c9:79:30:fe:ae:30:a2:f9:b8:4a:56:bb:19:
36:5e:34:aa:5b:6a:6a:a2:06:ce:52:86:dd:60:49:
ad:53:88:ba:42:ee:1c:ed:2e:b0:b9:a9:a4:1e:21:
c6:81:b5:59:17:ce:68:98:bf:50:d3:d7:6b:a3:30:
0c:3c:e9:e4:d0:77:d0:8b:c4:46:a5:e1:86:94:8b:
c6:fb:87:96:eb:5e:bd:5b:a0:5a:58:69:4c:92:2e:
26:8e:4a:1d:51:c1:8d:da:27:b7:16:b1:46:e8:cd:
70:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:D7:8A:50:1A:7D:5D:DF:4A:46:EB:ED:67:40:F3:B9:F9:51:5A:08
X509v3 Authority Key Identifier:
keyid:AC:1A:0B:9C:C5:CE:8B:FD:9E:E2:6D:09:D7:E9:11:51:A4:2D:37:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rBoLnMXOi_2e4m0J1-kRUaQtNw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:1a:e5:c1:57:37:8b:c6:be:46:aa:55:c5:e2:a4:43:ab:62:
0b:99:1c:f4:12:a3:26:14:90:75:99:de:83:0f:af:de:a9:7e:
6d:dd:dc:6e:f7:13:ff:62:37:3e:da:5c:e4:54:09:fa:d8:29:
d1:a8:78:3d:f9:71:fc:54:f9:e7:c1:d4:ae:b7:c8:38:0d:c4:
a0:c0:0e:66:9b:3a:d9:93:6b:4a:0a:92:bf:42:a0:00:ab:a7:
03:3e:37:01:8c:a4:5e:13:25:ab:b8:da:49:32:4c:ed:85:26:
da:c8:05:09:8d:20:3b:c7:23:74:c6:64:98:04:77:c9:99:4e:
9c:4e:1c:70:84:23:a3:da:92:13:21:f2:3c:00:28:28:14:f4:
0c:1c:bd:94:6f:88:25:94:b5:cc:0e:2d:1a:ec:94:b1:3f:34:
42:ec:3a:07:35:17:e0:47:ba:8d:5e:a2:d3:93:7d:d0:c4:df:
ad:b2:3c:b7:d9:31:a7:93:c9:2a:ca:24:4f:67:0e:06:82:7a:
d4:cd:74:a7:ed:0a:cc:4d:b8:e5:87:f2:c7:d0:7d:36:67:3c:
9f:bc:2d:21:fe:81:a3:c4:60:65:e5:a7:19:e4:3e:9d:b8:ce:
59:08:f8:75:ca:2f:28:61:35:de:81:5f:d9:2b:3b:35:ae:45:
89:c6:00:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhy0BKJaWUel+mPHxxPNkgGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjMWEwYjljYzVjZThiZmQ5ZWUyNmQwOWQ3ZTkxMTUxYTQy
ZDM3MGQwHhcNMjUwODA0MDIwMTM1WhcNMjUwODA1MDIwMTM1WjAzMTEwLwYDVQQD
Eyg3MWQ3OGE1MDFhN2Q1ZGRmNGE0NmViZWQ2NzQwZjNiOWY5NTE1YTA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3x4jFwrMuCuu4hsQtD8Yqz3zq5fq
26lroh0qdpA14TpUtzCab14YEvpJYTDeGCHkW0zS4gfiIvT6AdDMMzMUqjyUyy9Y
hvPXTsrv3FjWyJOqzLMorUqALRLyrWmbzjUJvWcauEn4lMlLIBInG5XbCqeDdaAG
eCY9n3PLm3Qf2sBNbGbNxQgiw5WxFgc8n615ryGKe6tj7cl5MP6uMKL5uEpWuxk2
XjSqW2pqogbOUobdYEmtU4i6Qu4c7S6wuamkHiHGgbVZF85omL9Q09drozAMPOnk
0HfQi8RGpeGGlIvG+4eW6169W6BaWGlMki4mjkodUcGN2ie3FrFG6M1wrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHHXilAafV3fSkbr7WdA87n5UVoIMB8GA1UdIwQY
MBaAFKwaC5zFzov9nuJtCdfpEVGkLTcNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvckJvTG5NWE9pXzJlNG0wSjEta1JVYVF0TncwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9hMzI4NzItODhhMy00ZTg0LTlmODMt
YWE3MzUzZDRkOThmLzEvckJvTG5NWE9pXzJlNG0wSjEta1JVYVF0TncwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC9hMzI4NzItODhhMy00ZTg0LTlmODMtYWE3MzUzZDRkOThm
LzEvckJvTG5NWE9pXzJlNG0wSjEta1JVYVF0TncwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeRrlwVc3
i8a+RqpVxeKkQ6tiC5kc9BKjJhSQdZnegw+v3ql+bd3cbvcT/2I3Ptpc5FQJ+tgp
0ah4Pflx/FT558HUrrfIOA3EoMAOZps62ZNrSgqSv0KgAKunAz43AYykXhMlq7ja
STJM7YUm2sgFCY0gO8cjdMZkmAR3yZlOnE4ccIQjo9qSEyHyPAAoKBT0DBy9lG+I
JZS1zA4tGuyUsT80Quw6BzUX4Ee6jV6i05N90MTfrbI8t9kxp5PJKsokT2cOBoJ6
1M10p+0KzE245Yfyx9B9Nmc8n7wtIf6Bo8RgZeWnGeQ+nbjOWQj4dcovKGE13oFf
2Ss7Na5FicYA0A==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:09:04 2025 by rpki-client