Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a23404-f219-49f5-bf33-245650f842d5/1/bwXPdx2ZkucP9nQOayBiDOUtDYs.mft
File: bwXPdx2ZkucP9nQOayBiDOUtDYs.mft (raw, json)
Hash identifier: Jh6jSwmdWYXZVnjfq1N/DVhXXHT1mn8pLMFbIeJe1QE=
Subject key identifier: A6:18:65:4C:80:13:A7:3F:2C:67:23:F4:17:6F:4D:C8:5E:CA:DA:7A
Authority key identifier: 6F:05:CF:77:1D:99:92:E7:0F:F6:74:0E:6B:20:62:0C:E5:2D:0D:8B
Certificate issuer: /CN=6f05cf771d9992e70ff6740e6b20620ce52d0d8b
Certificate serial: 01984965E7B993D15AB4CFD84A2F74732DA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwXPdx2ZkucP9nQOayBiDOUtDYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a23404-f219-49f5-bf33-245650f842d5/1/bwXPdx2ZkucP9nQOayBiDOUtDYs.mft
Manifest number: 0BA0
Signing time: Sun 27 Jul 2025 01:01:11 +0000
Manifest this update: Sun 27 Jul 2025 01:01:11 +0000
Manifest next update: Mon 28 Jul 2025 01:01:11 +0000
Files and hashes: 1: bwXPdx2ZkucP9nQOayBiDOUtDYs.crl (hash: LHc4ost1se2svaPDGv+RhoXh1GatkaBaN3UfJC55dJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/a23404-f219-49f5-bf33-245650f842d5/1/bwXPdx2ZkucP9nQOayBiDOUtDYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/a23404-f219-49f5-bf33-245650f842d5/1/bwXPdx2ZkucP9nQOayBiDOUtDYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/bwXPdx2ZkucP9nQOayBiDOUtDYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:65:e7:b9:93:d1:5a:b4:cf:d8:4a:2f:74:73:2d:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f05cf771d9992e70ff6740e6b20620ce52d0d8b
Validity
Not Before: Jul 27 01:01:11 2025 GMT
Not After : Jul 28 01:01:11 2025 GMT
Subject: CN=a618654c8013a73f2c6723f4176f4dc85ecada7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:4a:8b:a0:d2:7a:ef:d4:b0:d5:7c:21:f5:6e:
1a:5d:6f:8a:3a:7d:fc:a3:da:2a:cf:f4:01:3d:6c:
6c:1b:96:8e:09:22:b1:b2:04:95:1f:bd:1a:b5:6e:
e0:74:ea:b8:73:2e:a4:e5:c5:52:e1:27:1f:31:69:
ec:5d:cb:bb:90:c8:b5:03:17:74:99:e8:d9:5f:3c:
80:18:5e:2a:bd:39:9b:07:29:7f:6c:02:b6:36:68:
ea:8a:5b:c9:e1:63:da:8c:ad:27:72:46:b8:0f:2f:
50:3a:48:e6:a9:17:8f:9a:10:cf:ee:3e:ae:e8:c4:
8b:d3:03:4c:56:f1:ec:02:55:3b:64:a3:88:44:fe:
2e:b1:4e:b3:0f:c7:3e:21:d6:d0:60:f3:33:49:34:
90:3c:45:35:c4:be:23:da:56:8a:15:fb:62:9b:1c:
af:d3:d7:fc:fe:1d:87:2b:c9:d0:05:d3:8e:5f:6d:
b8:2b:35:01:b3:b2:df:e8:e4:86:77:18:0d:67:a4:
b8:f4:6e:0d:89:f2:5e:59:6a:a2:09:a4:b9:9b:11:
e8:fa:cf:54:22:4f:d3:3e:8d:6b:ee:1e:42:28:3d:
0b:d2:9a:db:7e:0a:14:56:02:18:7c:15:e1:9e:c8:
33:5d:77:0f:13:e1:11:f3:fe:f9:ab:bc:46:c3:a2:
97:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:18:65:4C:80:13:A7:3F:2C:67:23:F4:17:6F:4D:C8:5E:CA:DA:7A
X509v3 Authority Key Identifier:
keyid:6F:05:CF:77:1D:99:92:E7:0F:F6:74:0E:6B:20:62:0C:E5:2D:0D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwXPdx2ZkucP9nQOayBiDOUtDYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a23404-f219-49f5-bf33-245650f842d5/1/bwXPdx2ZkucP9nQOayBiDOUtDYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a23404-f219-49f5-bf33-245650f842d5/1/bwXPdx2ZkucP9nQOayBiDOUtDYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:2c:f7:ba:fe:b0:b4:be:ed:2e:9d:f7:b3:b4:fe:13:ee:db:
21:f3:c6:49:13:15:ca:0c:14:5d:d2:ea:72:1b:52:93:e5:e5:
dd:e4:1f:a7:b2:cc:83:7b:e3:87:e2:3a:56:c3:7b:57:ce:e1:
aa:00:83:69:ae:5f:84:76:7e:f9:77:c3:75:72:45:34:77:0e:
bb:56:1d:08:f0:50:74:eb:ea:7f:f8:9b:7e:57:89:0b:2b:53:
65:63:b6:2d:4d:eb:fa:7e:2d:59:c5:b6:f7:41:89:44:e3:ba:
58:d8:f5:3a:7f:72:52:5d:6a:61:97:23:38:83:99:43:14:35:
c7:09:e0:d2:fe:10:2e:65:64:cb:9f:f0:f4:5b:63:15:bf:58:
1e:6d:37:e5:7f:9f:58:59:72:f9:17:a9:0f:09:f6:27:de:8a:
d2:6c:9b:7d:32:52:3e:6d:15:bd:61:24:43:98:39:0a:53:65:
08:ba:e5:f1:ce:cc:2f:a8:30:c9:e2:ee:5b:f4:c8:15:c8:80:
8b:85:60:30:4b:f1:84:76:72:9d:ed:99:95:08:f0:f5:01:a9:
f4:37:e3:89:df:ac:43:72:a8:0d:55:d2:7c:b7:4a:c7:6a:dc:
db:1c:12:05:9f:08:0a:b5:c7:68:b3:c5:8d:a4:24:d9:3a:45:
14:87:ef:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 05:28:06 2025 by rpki-client