Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
File: bQih9MOF86e2KYTVPoFmWplUEPM.mft (raw, json)
Hash identifier: kGtJuHzhLF1JZOCcm+OUg2vG5XmTu15pLEahs4aebNk=
Subject key identifier: C9:6A:4A:01:D2:27:44:AF:6A:EE:3E:97:CD:21:D3:03:81:CD:FB:81
Authority key identifier: 6D:08:A1:F4:C3:85:F3:A7:B6:29:84:D5:3E:81:66:5A:99:54:10:F3
Certificate issuer: /CN=6d08a1f4c385f3a7b62984d53e81665a995410f3
Certificate serial: 019848F72D17EA98D0605F9D3BB0ADABDE58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
Manifest number: 0A00
Signing time: Sat 26 Jul 2025 23:00:14 +0000
Manifest this update: Sat 26 Jul 2025 23:00:14 +0000
Manifest next update: Sun 27 Jul 2025 23:00:14 +0000
Files and hashes: 1: J7EMvjCrDCSEaNvEXQjzbwryII4.roa (hash: Ak6AJOV8w0m5lQCAa41zEyYCpJIBSURSyT+w9pihP/8=)
2: bQih9MOF86e2KYTVPoFmWplUEPM.crl (hash: zMtRLbukfQXGfqOUTXfPtPwI+Y6K3SxWhZ3Gl0a6o0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 23:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:f7:2d:17:ea:98:d0:60:5f:9d:3b:b0:ad:ab:de:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d08a1f4c385f3a7b62984d53e81665a995410f3
Validity
Not Before: Jul 26 23:00:14 2025 GMT
Not After : Jul 27 23:00:14 2025 GMT
Subject: CN=c96a4a01d22744af6aee3e97cd21d30381cdfb81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:06:21:62:09:b3:dd:8d:f7:a6:bc:08:c4:d3:
a8:ee:e9:19:97:6b:e5:3b:6e:02:ab:f3:43:6f:6a:
d3:41:b4:85:e8:1c:2a:3c:c3:9f:28:b8:44:01:89:
76:cb:49:1b:85:dd:72:f2:56:4b:f3:29:97:91:5a:
a5:63:2c:a9:e8:cd:45:13:ec:35:81:ff:d3:1a:6c:
63:cf:7f:ac:23:67:14:0b:d0:26:cd:99:f4:58:9b:
a1:fb:8c:57:aa:2e:c3:d5:97:9f:98:3b:b8:83:2a:
a9:8a:e3:ea:d7:8e:89:b4:3e:cd:e5:5e:2b:75:d9:
ef:f4:29:cc:0a:40:76:f5:53:3f:0d:2b:9b:76:b7:
5e:59:8e:a0:e5:8e:60:39:af:a6:85:be:f7:8c:4e:
7b:2c:0d:71:f6:99:e5:7d:85:b5:77:0a:c5:2d:a7:
b6:53:bf:21:35:2a:a9:58:05:3e:7d:da:44:c3:8e:
12:66:5f:00:7e:e6:04:2d:fb:bd:ca:a0:68:a3:93:
35:d7:1f:1c:d9:a5:da:26:d2:90:a3:98:c2:fe:7d:
49:03:0c:e6:5b:0a:b7:ae:31:bd:7e:e6:a6:be:ca:
af:39:59:29:c9:b3:59:a8:21:4d:36:ce:5f:77:0c:
af:d5:89:4e:e8:0e:67:4a:dc:8d:5e:59:63:25:8a:
b7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:6A:4A:01:D2:27:44:AF:6A:EE:3E:97:CD:21:D3:03:81:CD:FB:81
X509v3 Authority Key Identifier:
keyid:6D:08:A1:F4:C3:85:F3:A7:B6:29:84:D5:3E:81:66:5A:99:54:10:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:18:8c:f4:39:f9:7c:6b:79:b7:7a:7d:b9:bf:d8:bd:fe:08:
51:59:83:dc:0f:4d:2c:67:da:2c:5f:30:cf:8c:63:9b:8a:bf:
45:02:e3:03:ce:1d:ed:7f:9a:f7:54:5b:71:eb:01:7b:66:61:
7a:d5:bf:64:c0:75:9a:12:f4:62:22:d4:7a:96:6b:69:56:22:
4b:b2:eb:6e:ca:2a:74:33:0b:1b:f1:d0:ea:6c:11:a0:49:57:
c3:b5:e0:a1:1b:ea:13:81:82:a5:75:cc:70:79:9e:8b:48:5f:
a4:e8:db:3e:0a:d2:a1:ff:b1:bc:0f:05:9d:36:53:f9:1c:dc:
96:bb:43:bc:4b:c2:b1:2d:c4:37:7c:0f:d1:32:65:84:20:77:
c3:a3:4e:c9:46:d7:9d:79:6e:02:01:ae:57:40:e1:ee:50:37:
a1:70:c1:ac:4e:5c:29:db:dd:86:a3:4f:62:b7:dc:32:d2:0c:
13:35:5f:bf:e6:af:a7:a8:8f:f3:06:d3:ff:11:43:5a:3a:92:
c8:02:f6:2b:96:52:7f:c5:e7:7b:d4:f9:07:79:90:c0:36:b4:
2d:52:b2:77:54:17:9f:85:c4:fd:3b:45:af:3b:9d:27:2b:9d:
ed:b6:9c:3f:ba:c5:c8:0f:81:ff:06:fc:41:46:50:45:24:75:
7e:bf:81:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 07:47:09 2025 by rpki-client