Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
File: bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft (raw, json)
Hash identifier: QHYi7+FKEtHvprfqqpWlrFzzhHYSYsTTbQsP/n6zGO4=
Subject key identifier: 0D:63:0F:41:FB:88:76:4C:2A:E1:BE:38:F4:D9:D1:F7:72:5A:38:0A
Authority key identifier: 6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
Certificate issuer: /CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Certificate serial: 019874F51CF70EA807F158C76014193ACFFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
Manifest number: 02D3
Signing time: Mon 04 Aug 2025 12:01:17 +0000
Manifest this update: Mon 04 Aug 2025 12:01:17 +0000
Manifest next update: Tue 05 Aug 2025 12:01:17 +0000
Files and hashes: 1: MYDLO2vvDKfPNW5B_jde2eQkJYg.roa (hash: wV9kbvDo8W5gfhdwsvfFoAGi3mrp4nPR/cUxhX5vacM=)
2: bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl (hash: ePEVBM1StpxLzo1+vTG4EdJo6Kl90ZRCbZnLHTbomrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:52:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:f5:1c:f7:0e:a8:07:f1:58:c7:60:14:19:3a:cf:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Validity
Not Before: Aug 4 12:01:17 2025 GMT
Not After : Aug 5 12:01:17 2025 GMT
Subject: CN=0d630f41fb88764c2ae1be38f4d9d1f7725a380a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:20:6a:23:d6:6b:ca:4b:1d:61:11:04:82:01:
f3:04:4c:ce:d3:fb:b4:e6:e6:17:71:58:b8:f2:3d:
f3:f4:c2:26:52:58:08:3a:96:f8:3e:60:8c:44:68:
ed:f9:50:70:dd:de:d3:0a:59:7d:f7:24:79:63:d8:
09:c5:24:88:56:ef:05:9d:6c:06:43:d0:b1:ea:b2:
cb:2b:e7:7b:23:6a:35:4e:5a:d4:b9:d8:02:72:79:
f7:35:d6:1d:2f:c2:4e:09:46:56:82:c6:17:dc:ec:
93:33:2b:8c:84:72:8f:d2:06:9a:5a:44:17:45:6d:
2a:02:30:96:4f:42:71:4d:6a:9a:11:ec:31:b7:94:
19:97:0f:0d:9e:c6:97:a1:e4:2f:89:36:7e:eb:88:
43:16:b7:90:d1:8d:c6:80:39:d8:f4:93:61:51:ce:
db:22:b4:bf:5f:6f:21:da:f6:27:74:ac:5a:be:08:
34:b3:90:84:39:a0:d8:cd:c7:4d:77:d1:f8:cc:1a:
71:03:8f:e9:63:0a:ff:54:e3:6e:0f:d4:58:bc:75:
16:b6:cb:ac:96:52:4f:44:6b:69:d6:79:cb:a2:ec:
e4:bf:17:42:7e:1d:73:e1:56:2c:4b:52:6f:27:44:
f0:75:8c:15:69:24:ac:dc:11:e6:2f:2e:50:35:50:
3e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:63:0F:41:FB:88:76:4C:2A:E1:BE:38:F4:D9:D1:F7:72:5A:38:0A
X509v3 Authority Key Identifier:
keyid:6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:26:90:5a:d5:80:a2:7b:f8:59:1b:c5:f0:2f:af:88:88:30:
f4:e6:4a:f7:1d:d6:28:f6:78:fe:d6:a6:f4:fa:e3:87:57:98:
bd:9f:c0:62:df:f0:b8:42:8e:20:04:29:0e:7c:33:56:a9:31:
14:1f:77:28:f1:cb:55:f2:02:45:80:aa:79:e1:28:67:37:16:
2a:0c:06:99:15:40:b2:fe:c2:88:c1:04:32:f5:07:35:fc:19:
2d:45:c9:08:38:15:68:31:dc:67:e0:f6:23:39:7d:32:f0:5b:
f3:2c:b4:8d:e3:0c:60:09:1d:62:5c:b2:95:12:ae:62:fb:5d:
31:50:d9:df:c6:a1:68:92:c4:5c:f8:58:a1:d6:34:59:df:90:
4e:6a:34:84:d3:36:5b:30:6e:99:51:14:2b:d9:55:51:03:07:
b0:ed:ce:7c:2e:42:96:7d:5a:61:6e:13:9d:f0:30:22:31:57:
17:98:c1:ac:2d:6d:98:58:f1:0c:0e:0d:ab:ac:56:9c:27:87:
cf:2b:d8:17:d8:3a:82:ea:57:35:ef:c4:8f:7b:9d:b1:d7:ac:
65:21:37:0c:ce:19:36:a8:9f:91:04:55:19:cc:8a:7d:2e:15:
5f:f8:f0:a9:f5:bd:c2:5e:d3:bc:7f:75:60:62:9d:25:95:62:
26:67:b5:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:10:25 2025 by rpki-client