Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
File: bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft (raw, json)
Hash identifier: f3ZKEgoOdTzKwgUKCsAwuHnYzyBXi/vP1xEhRgUhhwQ=
Subject key identifier: 5E:DC:11:DB:F3:EE:43:CC:7A:CB:BC:CE:26:EF:BC:7C:EC:4A:64:16
Authority key identifier: 6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
Certificate issuer: /CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Certificate serial: 01976C61BB58A0FF726C3B7C206D929FA5B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
Manifest number: 024A
Signing time: Sat 14 Jun 2025 03:00:33 +0000
Manifest this update: Sat 14 Jun 2025 03:00:33 +0000
Manifest next update: Sun 15 Jun 2025 03:00:33 +0000
Files and hashes: 1: MYDLO2vvDKfPNW5B_jde2eQkJYg.roa (hash: wV9kbvDo8W5gfhdwsvfFoAGi3mrp4nPR/cUxhX5vacM=)
2: bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl (hash: 3eEkaFYj4u8tLYws0u8naozawACmTtw4G6WB9tNDjo4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:bb:58:a0:ff:72:6c:3b:7c:20:6d:92:9f:a5:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Validity
Not Before: Jun 14 03:00:33 2025 GMT
Not After : Jun 15 03:00:33 2025 GMT
Subject: CN=5edc11dbf3ee43cc7acbbcce26efbc7cec4a6416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8d:0b:91:a9:76:3f:d1:fe:f2:6a:cf:8b:51:
60:23:38:fc:2b:db:0d:e2:7c:51:ff:3d:7f:9e:8b:
4b:e5:e0:36:c4:47:7a:85:51:8c:b9:e9:49:43:47:
ed:93:b2:a4:82:e0:ca:76:52:44:9e:6f:b3:b1:46:
67:70:23:19:7e:4f:a0:92:0d:2c:b5:f9:d1:16:ca:
21:8c:78:20:92:0f:84:12:fb:d7:81:7a:dc:d7:88:
61:1e:ef:54:84:15:90:07:b8:3e:43:09:d4:5e:59:
62:a0:73:d7:89:d6:e4:bc:25:0a:fc:e9:c2:a2:6f:
3e:a8:ea:f5:a0:b0:fb:46:27:51:9d:4a:9f:25:af:
f4:fe:5e:5a:1f:00:87:8a:54:fc:d6:f5:33:4f:c1:
65:a6:e2:c5:3d:52:13:8c:20:f6:d6:ba:56:b3:7e:
4e:74:e8:4e:57:ca:e8:a6:83:93:73:b6:77:84:b8:
1e:d8:fb:9f:85:ef:38:57:15:06:1f:55:37:c1:0f:
56:e3:3d:8a:22:5e:3d:4b:22:da:57:d4:1f:a2:36:
70:e7:2f:6f:e3:df:7a:1c:47:3a:36:10:79:88:86:
17:82:45:9e:5a:76:c3:ae:ea:e6:b2:c7:db:a1:7a:
3e:7b:03:28:9d:27:46:1d:28:b9:2f:a7:90:44:8a:
24:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:DC:11:DB:F3:EE:43:CC:7A:CB:BC:CE:26:EF:BC:7C:EC:4A:64:16
X509v3 Authority Key Identifier:
keyid:6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:b9:63:9e:b6:88:87:30:90:23:79:44:b6:be:a8:31:a5:b9:
1a:30:7a:5e:56:d0:59:b8:5e:51:75:16:0a:04:7a:fa:ef:f2:
be:d3:f3:5e:d0:62:ff:db:9b:d9:37:2c:64:d0:d1:bd:2b:06:
2b:f9:22:32:50:90:13:95:c7:4c:91:ec:11:db:f6:23:75:9f:
84:a2:8d:af:81:05:8e:06:43:f6:1b:4b:34:11:0f:c6:b7:12:
05:0f:bb:ef:ed:3d:bc:f8:f8:95:95:54:b7:02:e4:64:e6:54:
d3:33:dd:90:29:2b:af:14:89:78:29:27:45:cf:bd:ac:e9:52:
17:d1:1e:49:77:14:f2:07:b7:2f:8b:ae:73:68:68:f3:6e:78:
81:d2:ed:fc:d1:7b:df:ff:ec:3b:c5:37:63:fd:17:5e:f3:9a:
90:b4:c2:ad:92:cb:cb:de:34:29:f1:d6:82:f4:a7:1a:53:19:
ce:1f:95:f2:1e:16:36:d7:6e:58:be:e2:2a:50:7b:71:23:ee:
e2:9a:e0:07:1c:0c:c4:e7:02:18:c1:c6:ba:13:a0:54:56:d4:
6f:d9:02:31:e0:b9:8c:83:b2:5f:a1:29:91:48:d2:1b:6a:16:
ab:a2:eb:03:06:d4:4e:67:8b:bf:44:55:0a:cb:5c:04:b4:51:
2b:21:b4:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:20:11 2025 by rpki-client