Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.mft
File: bTi1QIMcnNXfSAhRpygGZ-181kc.mft (raw, json)
Hash identifier: r+Rm0620QvHu84MMHu34BlB7SXz1hP7bWd7rhLFsnL4=
Subject key identifier: 32:DF:DB:4F:F8:16:F5:6B:3D:51:30:2E:2C:7F:0E:65:B1:DA:B3:E3
Authority key identifier: 6D:38:B5:40:83:1C:9C:D5:DF:48:08:51:A7:28:06:67:ED:7C:D6:47
Certificate issuer: /CN=6d38b540831c9cd5df480851a7280667ed7cd647
Certificate serial: 0197458BA98965D33EAC63DAFEB082D6BE78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bTi1QIMcnNXfSAhRpygGZ-181kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.mft
Manifest number: 099A
Signing time: Fri 06 Jun 2025 14:01:10 +0000
Manifest this update: Fri 06 Jun 2025 14:01:10 +0000
Manifest next update: Sat 07 Jun 2025 14:01:10 +0000
Files and hashes: 1: bTi1QIMcnNXfSAhRpygGZ-181kc.crl (hash: cH4ZM/+xI5iz6tcSi860Z3tScmfhFp0e8vRfUOnmU1E=)
2: okBQ3HYZQrL6ORKAHfJHyIzTOqU.roa (hash: 8hx35QaymOBGYmgY5QQuJWW8cF+INO74gqLHBnenUT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bTi1QIMcnNXfSAhRpygGZ-181kc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 14:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:8b:a9:89:65:d3:3e:ac:63:da:fe:b0:82:d6:be:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d38b540831c9cd5df480851a7280667ed7cd647
Validity
Not Before: Jun 6 14:01:10 2025 GMT
Not After : Jun 7 14:01:10 2025 GMT
Subject: CN=32dfdb4ff816f56b3d51302e2c7f0e65b1dab3e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:15:40:a0:43:3b:71:b9:cf:fd:81:f9:97:6a:
57:9e:73:c1:31:04:c9:3f:36:1f:1e:ee:60:1b:1e:
5d:82:e8:a5:16:03:33:53:31:cc:34:08:1d:77:11:
f7:08:cd:80:8c:79:8d:a2:92:8b:bc:b4:44:54:55:
e6:4a:31:f5:90:d7:6f:9b:43:57:0f:ec:76:72:bd:
e2:e9:d1:a0:ae:62:fa:0c:4c:59:05:b1:93:e1:d2:
7d:ce:f5:66:48:e8:d7:7c:4f:45:5b:86:26:9f:7f:
9f:65:0e:b4:9f:6f:6c:ec:c1:c7:73:33:e0:e1:2f:
98:a4:dc:6b:5b:91:c2:62:fe:ba:06:78:5d:38:c8:
a9:c1:d3:22:fd:37:a3:24:e3:b7:d7:f1:7f:b4:38:
05:f6:b1:0b:0f:de:19:79:c9:de:67:33:0b:cd:65:
b7:33:05:94:46:99:fe:63:5d:e7:4d:f0:19:83:21:
e4:10:4c:df:41:ce:07:3a:d2:92:c9:ff:ee:c1:62:
35:38:55:27:a9:2f:b7:f5:62:e4:a1:e2:a6:8b:18:
06:c7:83:10:76:e6:1e:82:7c:d3:bb:a5:15:59:e9:
b0:b2:2b:e0:4c:b6:ef:f1:a8:1e:a3:4c:66:aa:e2:
b5:39:35:f5:96:e2:7c:cc:cc:85:f6:50:35:0f:e6:
80:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:DF:DB:4F:F8:16:F5:6B:3D:51:30:2E:2C:7F:0E:65:B1:DA:B3:E3
X509v3 Authority Key Identifier:
keyid:6D:38:B5:40:83:1C:9C:D5:DF:48:08:51:A7:28:06:67:ED:7C:D6:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bTi1QIMcnNXfSAhRpygGZ-181kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:39:35:70:f2:fb:78:20:e7:54:81:8f:6a:60:67:b3:87:68:
69:fc:89:29:f3:1c:67:e9:e8:db:2e:94:3c:01:b6:21:6d:51:
60:67:e7:52:02:f9:3d:cc:e0:86:19:d3:1f:d4:57:b3:b1:63:
a9:79:29:b4:ff:be:f6:38:80:5d:b9:1f:ca:8f:60:b3:1b:d6:
1b:f6:a3:93:09:27:28:9c:10:8e:7b:29:99:51:e5:c6:0f:02:
4c:10:78:bf:62:68:73:9e:02:2e:2c:68:05:dc:1e:22:54:0b:
36:7a:74:d4:8d:16:1e:9f:13:e6:92:83:a7:67:4d:38:f1:a3:
15:c2:ad:6f:e9:06:b1:20:bd:fc:4b:3f:72:72:27:55:86:7f:
a7:8c:6e:3f:ad:de:a6:4d:f5:87:f9:20:b2:45:5f:be:be:d8:
1e:0f:32:06:79:6b:a1:d1:8d:70:33:80:96:59:96:80:d1:b5:
19:01:8b:2f:ca:0e:be:9b:f9:4f:94:b7:36:b4:cb:12:a6:1c:
ff:28:68:c4:9e:4b:1f:1d:4d:99:5a:8b:b4:8b:a5:f9:c7:49:
56:59:7d:83:01:f6:14:8f:ce:32:6f:ec:60:85:0e:8e:cd:79:
2a:b1:de:74:b8:92:3d:01:28:ee:d8:53:a0:16:41:b0:3a:2d:
3a:b0:0f:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:23:56 2025 by rpki-client