Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
File: bJSdK9ZO4X711H-WPj1depgrEq8.mft (raw, json)
Hash identifier: MmkKWNzehQrrWyLKYzFPxQolMxfI6ZKQyuuMGUcb5kE=
Subject key identifier: 90:32:E0:B0:74:C3:DC:FF:C7:D8:92:BC:81:60:C7:65:AD:05:15:3D
Authority key identifier: 6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
Certificate issuer: /CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Certificate serial: 019748F9E4704F196FDFAD7037FFF63849F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
Manifest number: 09E8
Signing time: Sat 07 Jun 2025 06:00:25 +0000
Manifest this update: Sat 07 Jun 2025 06:00:25 +0000
Manifest next update: Sun 08 Jun 2025 06:00:25 +0000
Files and hashes: 1: OyVcB1brzSxuoeEjBo4fT0W9OFc.roa (hash: sut6tQHQTuBMJAc0/1shERZEk1RWFKSSDeDy5cd5Klo=)
2: bJSdK9ZO4X711H-WPj1depgrEq8.crl (hash: QjzBjyAufgBYkb2iIuU+TUZWXFu+dLUkYPzLfGKGZR4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:f9:e4:70:4f:19:6f:df:ad:70:37:ff:f6:38:49:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Validity
Not Before: Jun 7 06:00:25 2025 GMT
Not After : Jun 8 06:00:25 2025 GMT
Subject: CN=9032e0b074c3dcffc7d892bc8160c765ad05153d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a9:bd:e8:39:ac:ef:16:b4:05:86:92:15:9f:
c1:6f:97:cb:09:83:f5:4c:bb:a0:3e:1c:12:a5:11:
09:62:32:3e:73:19:e2:4e:bc:50:9a:0d:66:8c:8c:
9d:d8:5f:ef:85:5f:3d:76:94:b9:1e:5d:95:e2:fe:
38:6d:36:a5:e1:3a:dc:58:98:2a:07:4d:f9:91:9d:
10:f1:7b:a9:82:50:83:64:1d:39:41:f3:42:80:fa:
81:d6:6e:f3:66:0c:04:d0:de:d4:ad:69:d7:1f:d4:
27:c0:98:98:60:84:be:c5:04:68:14:e5:c8:e5:28:
a0:ae:65:57:b6:d5:84:ca:5a:2d:f3:ea:3b:60:5c:
47:27:bf:d1:b8:c8:6c:3b:55:51:a7:90:28:f9:9f:
40:e8:64:c4:64:83:a5:de:69:cb:18:b4:e1:4b:0a:
91:2a:f8:74:a5:66:5d:d0:6d:d8:84:52:6a:df:eb:
ee:44:8c:8e:6c:2a:d0:e1:27:d6:4a:d3:f8:31:84:
72:e6:f8:5c:b1:75:fa:05:04:38:6b:c5:ce:df:d4:
f1:b9:27:95:6c:c3:59:26:69:9c:09:63:8a:92:71:
78:0c:7c:a7:a6:dd:a3:9e:98:0c:97:6e:07:86:51:
c2:9c:ca:c8:db:0d:0d:65:05:b3:24:2e:eb:d3:d5:
5f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:32:E0:B0:74:C3:DC:FF:C7:D8:92:BC:81:60:C7:65:AD:05:15:3D
X509v3 Authority Key Identifier:
keyid:6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:17:0b:2e:72:a6:e9:60:30:8a:38:72:c0:95:e2:9f:1a:29:
63:b9:e2:f8:2e:c3:7f:bb:fb:db:40:df:b9:39:7d:fa:64:1f:
e7:82:5b:e6:4f:80:c2:cf:f9:c3:6e:48:0b:da:e7:f6:d2:01:
95:1a:bf:98:4a:bc:b1:88:2f:08:30:6d:08:46:6b:59:1f:86:
3a:96:b1:3f:0d:1f:89:95:5a:af:b4:0f:74:6c:ce:45:5b:98:
84:49:9d:d7:e3:78:d3:08:39:16:1f:62:d7:51:9e:7d:f9:d4:
ff:a2:d3:82:93:97:bb:54:70:88:08:49:13:de:a5:1f:50:55:
79:90:e4:dc:8f:3c:38:40:d6:47:68:48:06:ca:a8:74:01:cf:
44:5a:68:e6:b8:ad:e1:e6:3e:62:22:41:06:06:4e:17:4b:ac:
37:c2:87:06:d4:1a:7f:78:32:d2:c1:64:e4:f2:93:00:8d:7c:
03:a4:a9:3d:76:9d:ae:0b:e0:52:a7:96:1b:6c:1b:25:82:2a:
86:bb:ce:25:7a:7b:f9:07:74:0e:0e:d4:f5:2a:3e:2b:1e:91:
a4:ec:f6:35:f1:48:74:8b:c1:cd:d7:29:3f:ce:5b:83:81:47:
71:b7:2d:48:ed:bd:49:b2:ed:1d:da:e0:eb:a7:4a:d4:90:f8:
3c:76:81:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:56:03 2025 by rpki-client