Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
File: bOLuhMz1bNwA_CyqWSknna4UiIo.mft (raw, json)
Hash identifier: xP7TeeH9T8z8iLpQGrnzJ6UVKZ2Vfjjm+Z1rh2K9WOw=
Subject key identifier: A1:11:EA:91:10:7E:D4:BF:4B:5F:61:9E:0E:2E:61:30:F0:3B:71:13
Authority key identifier: 6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
Certificate issuer: /CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Certificate serial: 019881D5B70D214DC383CE58C02060666CBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
Manifest number: 1161
Signing time: Thu 07 Aug 2025 00:02:03 +0000
Manifest this update: Thu 07 Aug 2025 00:02:03 +0000
Manifest next update: Fri 08 Aug 2025 00:02:03 +0000
Files and hashes: 1: bOLuhMz1bNwA_CyqWSknna4UiIo.crl (hash: qbZNvKJ0vaKiC3EVfJDiVMX/w1fGcHsddqlTHwbrEwI=)
2: cm9pm1Y4fh7VmcKkQuyOuu9QXgE.roa (hash: T9xnzREMcoc526+ebS5GUXWxlrjNz60+DOHB2xM8pA4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:d5:b7:0d:21:4d:c3:83:ce:58:c0:20:60:66:6c:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Validity
Not Before: Aug 7 00:02:03 2025 GMT
Not After : Aug 8 00:02:03 2025 GMT
Subject: CN=a111ea91107ed4bf4b5f619e0e2e6130f03b7113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:9a:05:c5:97:f4:61:9a:ab:e1:d8:6f:25:ac:
ef:6b:ca:7c:6b:19:05:47:f0:2b:79:77:96:bb:ae:
4e:d8:2f:8c:7d:f0:01:1f:d5:1e:fa:ff:10:65:27:
19:c4:97:52:ce:3c:a3:bb:e2:02:0b:40:2a:a8:29:
38:a8:2b:1a:b3:83:27:c0:58:1b:7a:47:4a:fd:d2:
67:6f:2b:ac:8b:1e:70:a7:46:5d:f4:39:d7:2f:91:
76:82:25:56:e4:88:64:33:9a:ed:e7:bc:da:e1:4e:
b8:78:6e:13:db:09:61:79:1f:c8:8f:28:7f:aa:b7:
7d:00:ac:0e:56:eb:6c:9d:9e:fe:44:bc:6c:2e:32:
f3:21:20:d0:25:cf:04:4e:56:6c:e7:46:10:28:e8:
6c:2b:ca:2e:4b:81:02:49:44:4e:8a:2e:7c:07:a6:
c0:ef:34:35:44:68:54:25:09:f7:94:ff:56:c6:e1:
53:01:39:94:80:70:b4:d0:a5:17:46:bb:d8:75:28:
ed:6d:c1:f9:a1:5f:99:c4:a4:cc:94:92:0a:ca:2c:
61:50:9a:65:6f:c7:43:43:2b:0c:1f:fd:f7:7b:43:
1d:1a:29:d5:42:3f:cc:94:6b:d1:16:79:fc:80:ac:
99:56:f0:07:d3:d6:26:b7:ab:da:dc:b4:51:9b:ee:
ee:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:11:EA:91:10:7E:D4:BF:4B:5F:61:9E:0E:2E:61:30:F0:3B:71:13
X509v3 Authority Key Identifier:
keyid:6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:fa:68:ef:bc:ea:d6:21:7f:28:ea:c0:dc:6a:55:f2:a2:2a:
71:1f:da:58:06:45:d9:97:dc:c6:44:75:f2:9b:8f:0b:a2:ac:
f0:21:54:e2:4b:1c:ad:fb:af:47:ea:d9:4b:cb:6a:19:22:9c:
c5:3a:2b:0d:93:0b:0e:e4:d9:68:e2:ff:e7:f5:fa:00:c4:00:
19:95:3d:47:36:5d:82:fd:32:08:ca:d8:2c:b0:af:c6:77:32:
b4:84:f6:6e:83:71:e3:0b:44:81:8f:8d:a6:06:6a:3a:1a:92:
f0:f0:6f:c6:14:dd:69:26:5f:6d:53:a0:9b:43:f1:69:14:5f:
a7:b3:51:c9:a4:c6:05:98:81:e2:79:57:8a:a3:f2:bf:c2:2a:
8e:5d:b9:e5:b7:d4:c2:7b:f7:36:ee:01:47:d5:be:1d:a1:9e:
4e:62:d4:7c:36:0d:3f:72:7b:3f:77:ee:8f:19:13:8c:47:62:
48:d2:79:6e:58:1a:13:a3:f4:51:7e:ba:cc:a8:62:23:cb:97:
fa:8f:a2:76:4a:9b:f2:c6:a6:80:98:37:db:8b:53:6c:2a:8c:
a3:01:3b:8b:72:2d:71:46:dd:83:b4:21:94:3d:1e:f0:bd:e5:
09:55:70:79:35:45:60:7e:bc:f4:ed:aa:d5:95:5e:42:0d:2f:
ac:73:b1:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 05:02:54 2025 by rpki-client