Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
File: bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft (raw, json)
Hash identifier: C3OvWtg/jAmrlBGBaiIUu1ABcFISfq46b6kfMtS5oKE=
Subject key identifier: 0F:21:A4:EE:A9:66:29:00:7F:69:F9:7C:54:5B:C3:AF:1F:B3:E1:4C
Authority key identifier: 6C:19:5B:9B:D4:70:01:EA:B5:0F:DB:A1:DE:0D:2D:3F:45:27:F6:75
Certificate issuer: /CN=6c195b9bd47001eab50fdba1de0d2d3f4527f675
Certificate serial: 01976C623C9D6339341FD3CB17E142BC8C58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
Manifest number: 0121
Signing time: Sat 14 Jun 2025 03:01:06 +0000
Manifest this update: Sat 14 Jun 2025 03:01:06 +0000
Manifest next update: Sun 15 Jun 2025 03:01:06 +0000
Files and hashes: 1: MB79B-8QZwUqYrXc2Ibwogq_qLQ.roa (hash: bNBfBbjDpqRStExCWEma6tP6lj9BYj7p2ZAmcoBXfmY=)
2: bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl (hash: LMae4aHyabVVa7hNjUxW8xboplo7AN6pcwP/qnNfYVw=)
3: jf4WdQ24BygRnLqj51WchS5928k.roa (hash: /f6JdSqZIG39wyf+D4unjoQWcyolGzjFS4yjumA6E0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:62:3c:9d:63:39:34:1f:d3:cb:17:e1:42:bc:8c:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c195b9bd47001eab50fdba1de0d2d3f4527f675
Validity
Not Before: Jun 14 03:01:06 2025 GMT
Not After : Jun 15 03:01:06 2025 GMT
Subject: CN=0f21a4eea96629007f69f97c545bc3af1fb3e14c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b4:0a:67:64:44:e9:61:03:ee:bf:88:f5:4f:
39:1d:fe:15:f5:90:9f:ef:70:32:46:0c:e3:3b:6c:
bf:01:11:83:30:58:63:01:b3:42:5c:80:e5:da:a2:
de:c1:19:0b:4f:9c:e3:30:88:3c:41:84:2c:05:25:
ba:e8:03:14:26:de:c6:bb:05:51:c2:28:d2:72:0b:
e3:7a:04:3c:d0:ee:07:06:95:56:74:60:08:d9:f1:
74:95:fb:e2:69:ca:84:a4:1e:2b:1c:cb:4b:3f:c0:
a6:4e:e8:f3:5a:82:ef:aa:59:f5:91:c7:c6:44:fa:
00:6e:1d:0a:35:c8:35:14:e3:f6:7b:a6:20:a3:c5:
c5:1c:b4:15:7f:8d:dc:54:9b:91:68:d5:01:ce:17:
e9:6e:53:e1:d6:fe:90:68:c7:ac:af:c4:a2:4d:fc:
35:cb:4e:39:3e:65:c5:75:54:d6:4f:1d:94:b1:ba:
d5:66:5b:86:41:44:11:f5:80:07:a7:36:25:c6:71:
fc:82:eb:7f:97:38:48:c4:47:b4:2f:9a:58:35:40:
19:1c:e9:bc:e6:50:48:8e:d3:63:41:c1:1d:e8:e0:
ba:41:b0:0b:9e:6c:a2:57:a9:5f:17:37:db:99:e9:
fd:71:0a:87:0d:92:8d:a4:11:e0:2a:f4:2b:2c:75:
f5:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:21:A4:EE:A9:66:29:00:7F:69:F9:7C:54:5B:C3:AF:1F:B3:E1:4C
X509v3 Authority Key Identifier:
keyid:6C:19:5B:9B:D4:70:01:EA:B5:0F:DB:A1:DE:0D:2D:3F:45:27:F6:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:f9:52:2c:ff:22:fe:41:4b:e8:b3:8f:e2:bb:d8:9e:b3:92:
f2:9a:45:1d:90:5b:df:a4:56:e4:14:51:2b:07:3c:5c:85:e4:
cd:12:7a:db:50:5f:6c:a6:42:f4:7c:b8:e5:d3:eb:d8:40:22:
09:40:36:2a:43:95:17:c5:d6:4f:dc:ed:48:8e:6b:24:5b:d5:
32:00:90:7c:fd:38:d6:56:86:46:93:fb:7d:7f:79:39:d7:0b:
4e:d0:a4:fc:9a:0d:90:58:ce:5a:c8:37:e8:c7:3c:6c:ea:65:
27:67:b0:46:e6:8b:d5:fe:8c:88:bf:63:3f:24:e6:d8:02:23:
ed:5e:61:15:60:22:6c:8f:cf:5b:fc:df:eb:47:22:39:b0:7f:
b0:89:db:db:ec:97:01:fe:20:00:09:ac:44:3b:da:8e:55:f8:
dd:5a:e9:fd:d8:51:68:50:e6:9c:c4:3a:cc:5f:e3:ee:d5:04:
d3:d4:39:48:9f:05:6e:69:48:74:86:3b:9d:52:d0:af:e0:6b:
14:2a:77:41:59:69:5e:62:63:ea:45:ca:62:d1:cf:b9:77:37:
1c:32:89:f0:4f:fa:02:c8:36:b3:34:ec:52:c9:f6:c4:90:fb:
1e:dd:bf:63:8b:95:58:de:26:73:36:00:08:00:ce:37:4f:48:
27:2f:cc:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:57:59 2025 by rpki-client