Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
File: bOLuhMz1bNwA_CyqWSknna4UiIo.mft (raw, json)
Hash identifier: yb9j8pOt/UpcGutQhNTapFl0an0+NP2sUQQWz/z02Ss=
Subject key identifier: 20:01:95:21:BD:CE:C6:96:07:9C:0C:57:6D:C9:FD:3A:B2:01:D2:99
Authority key identifier: 6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
Certificate issuer: /CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Certificate serial: 01977188A9F1B79CAB7FA0DC19BF4414FC14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
Manifest number: 10D4
Signing time: Sun 15 Jun 2025 03:01:11 +0000
Manifest this update: Sun 15 Jun 2025 03:01:11 +0000
Manifest next update: Mon 16 Jun 2025 03:01:11 +0000
Files and hashes: 1: bOLuhMz1bNwA_CyqWSknna4UiIo.crl (hash: SmCDlQUCGwZxiqeGDKAGXS0kd0e2teN5C57bIChMDuE=)
2: cm9pm1Y4fh7VmcKkQuyOuu9QXgE.roa (hash: T9xnzREMcoc526+ebS5GUXWxlrjNz60+DOHB2xM8pA4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:88:a9:f1:b7:9c:ab:7f:a0:dc:19:bf:44:14:fc:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Validity
Not Before: Jun 15 03:01:11 2025 GMT
Not After : Jun 16 03:01:11 2025 GMT
Subject: CN=20019521bdcec696079c0c576dc9fd3ab201d299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e4:2b:b6:6f:fd:aa:6e:0c:0a:ed:93:ee:3f:
25:a5:a3:57:ef:22:29:53:93:14:73:ed:ba:2b:ab:
f7:c5:b9:8d:4f:49:3a:a0:1f:30:d5:36:31:6f:42:
39:ac:4b:79:49:1b:17:9d:79:ef:a4:b4:e9:50:c6:
1c:54:4e:83:ba:8e:84:64:6f:cf:f1:f5:0d:fa:ff:
43:c4:ce:9b:6e:b6:5d:5a:2f:f0:88:e1:21:3c:20:
97:2b:6a:f4:74:be:54:9d:bb:37:67:de:5a:24:22:
70:d1:a8:20:22:9f:7e:1f:7d:c4:09:0a:37:45:ca:
b3:57:17:98:7c:f0:0c:73:25:d9:3c:32:b9:6f:78:
18:3d:bb:8f:c2:6a:67:3f:74:e7:24:73:e8:96:82:
49:d7:24:87:cc:c0:df:42:6b:a6:49:c6:07:57:0b:
c9:68:ba:a8:04:48:af:3b:cd:6c:a3:46:85:58:8c:
fc:53:30:18:b7:bb:e3:76:3f:42:db:7e:e6:49:e2:
0e:2d:07:1a:f4:e9:9a:e1:27:9e:2b:cc:a7:a7:ba:
cb:84:cb:d9:66:c6:0d:51:50:87:4e:8b:1b:21:30:
95:88:2e:dc:de:5f:f2:01:75:a3:74:8f:8a:70:98:
83:b5:d8:19:96:5c:b7:d3:cc:d5:a4:52:ab:c1:e6:
bd:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:01:95:21:BD:CE:C6:96:07:9C:0C:57:6D:C9:FD:3A:B2:01:D2:99
X509v3 Authority Key Identifier:
keyid:6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:4c:ce:09:f2:b3:ea:1e:be:f9:fc:c4:50:6e:6c:37:46:51:
7e:b7:b8:2e:31:5c:bc:30:80:da:6a:ba:4a:87:41:4f:10:cf:
e5:0e:95:8a:a5:a2:4a:a7:ed:e2:05:94:64:e2:cb:3b:b9:7c:
62:6a:d2:03:37:64:db:f6:79:90:1a:b4:50:ea:3d:18:47:14:
f5:71:2a:47:dc:59:9c:03:13:75:c1:a7:6c:47:2b:ec:e1:14:
32:ad:ea:24:8c:eb:88:45:8b:6c:c3:2a:bf:8d:3c:05:1f:51:
00:4f:1e:a6:6f:02:cf:4e:39:99:ad:6c:77:42:9b:85:67:50:
33:08:5c:d6:a6:91:75:14:7c:53:f4:ac:45:01:c0:0b:02:13:
07:af:74:1b:0f:7f:e8:e3:a0:26:07:5e:f5:67:46:ff:3a:89:
42:ad:c6:7a:e1:e5:65:71:0d:ea:5e:57:f3:9b:1f:d6:28:cd:
0b:15:5e:a1:7b:0b:19:3d:d1:af:83:49:ab:26:5b:f2:61:5d:
ff:40:44:be:6a:e4:9b:63:79:f3:7f:e2:5d:e5:22:67:9a:8e:
a8:9b:2b:a1:f5:8a:b5:70:20:2c:56:28:8e:7f:2c:49:d1:ee:
79:89:ca:5b:5a:bb:19:48:98:d7:c2:d4:d8:34:05:ae:f7:f4:
5c:a2:3c:f4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdxiKnxt5yrf6DcGb9EFPwUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjZTJlZTg0Y2NmNTZjZGMwMGZjMmNhYTU5MjkyNzlkYWUx
NDg4OGEwHhcNMjUwNjE1MDMwMTExWhcNMjUwNjE2MDMwMTExWjAzMTEwLwYDVQQD
EygyMDAxOTUyMWJkY2VjNjk2MDc5YzBjNTc2ZGM5ZmQzYWIyMDFkMjk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl+Qrtm/9qm4MCu2T7j8lpaNX7yIp
U5MUc+26K6v3xbmNT0k6oB8w1TYxb0I5rEt5SRsXnXnvpLTpUMYcVE6Duo6EZG/P
8fUN+v9DxM6bbrZdWi/wiOEhPCCXK2r0dL5Unbs3Z95aJCJw0aggIp9+H33ECQo3
RcqzVxeYfPAMcyXZPDK5b3gYPbuPwmpnP3TnJHPoloJJ1ySHzMDfQmumScYHVwvJ
aLqoBEivO81so0aFWIz8UzAYt7vjdj9C237mSeIOLQca9Oma4SeeK8ynp7rLhMvZ
ZsYNUVCHTosbITCViC7c3l/yAXWjdI+KcJiDtdgZlly308zVpFKrwea9gQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCABlSG9zsaWB5wMV23J/TqyAdKZMB8GA1UdIwQY
MBaAFGzi7oTM9WzcAPwsqlkpJ52uFIiKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk9MdWhNejFiTndBX0N5cVdTa25uYTRVaUlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC83ZDZmMmYtOTg0ZC00OTYxLWE2M2It
NDk1YzZmMmM1MTczLzEvYk9MdWhNejFiTndBX0N5cVdTa25uYTRVaUlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC83ZDZmMmYtOTg0ZC00OTYxLWE2M2ItNDk1YzZmMmM1MTcz
LzEvYk9MdWhNejFiTndBX0N5cVdTa25uYTRVaUlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfkzOCfKz
6h6++fzEUG5sN0ZRfre4LjFcvDCA2mq6SodBTxDP5Q6ViqWiSqft4gWUZOLLO7l8
YmrSAzdk2/Z5kBq0UOo9GEcU9XEqR9xZnAMTdcGnbEcr7OEUMq3qJIzriEWLbMMq
v408BR9RAE8epm8Cz045ma1sd0KbhWdQMwhc1qaRdRR8U/SsRQHACwITB690Gw9/
6OOgJgde9WdG/zqJQq3GeuHlZXEN6l5X85sf1ijNCxVeoXsLGT3Rr4NJqyZb8mFd
/0BEvmrkm2N583/iXeUiZ5qOqJsrofWKtXAgLFYojn8sSdHueYnKW1q7GUiY18LU
2DQFrvf0XKI89A==
-----END CERTIFICATE-----
Generated at Sun Jun 15 09:13:58 2025 by rpki-client