Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
File: BaO2FkB7l-JhFjNId8aqkoqq7rI.mft (raw, json)
Hash identifier: h81IXXVeeK97wkJAIsxW2Qjjq4TYbZNWeEkpMYl7nNQ=
Subject key identifier: A1:84:2C:2C:8C:EE:65:34:A2:C1:68:DF:B0:29:9C:41:AA:E1:6F:6F
Authority key identifier: 05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
Certificate issuer: /CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Certificate serial: 019749D5AB4B048A7F0C4943988CA7F33F0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
Manifest number: 096B
Signing time: Sat 07 Jun 2025 10:00:29 +0000
Manifest this update: Sat 07 Jun 2025 10:00:29 +0000
Manifest next update: Sun 08 Jun 2025 10:00:29 +0000
Files and hashes: 1: BaO2FkB7l-JhFjNId8aqkoqq7rI.crl (hash: 2g8L35G21YUvmERG1DIAotcFN2sxClK1ZpKqtoHt4xM=)
2: bDkAt0CCYnB2xqRfpALpEK1gmgo.roa (hash: HzyjrIASJdGjjHtk6b54LHkaX+3Gt8eRcO+z/aYxOaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:ab:4b:04:8a:7f:0c:49:43:98:8c:a7:f3:3f:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Validity
Not Before: Jun 7 10:00:29 2025 GMT
Not After : Jun 8 10:00:29 2025 GMT
Subject: CN=a1842c2c8cee6534a2c168dfb0299c41aae16f6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8f:0d:3b:68:77:6b:dc:fe:96:da:8c:1e:99:
7b:ee:72:8e:7c:5e:11:7a:83:dd:8e:68:b2:2b:37:
c8:13:67:91:3a:ce:02:17:70:78:96:06:c0:31:23:
9c:94:f9:9e:19:9f:a4:12:d6:09:1e:50:9e:15:c7:
1b:26:b6:37:8f:64:0b:c4:38:65:c7:7d:4b:ea:d9:
d9:2c:53:7f:d9:5e:ed:b0:80:1a:e3:66:bf:a9:f8:
79:36:65:4f:8d:de:74:62:d9:65:08:eb:72:f9:f0:
ed:a1:b3:91:70:87:c3:4e:4e:80:7e:c8:c1:98:4c:
a5:3d:75:06:25:35:e7:ae:2f:5a:93:dd:2b:87:35:
fc:6f:df:e2:bb:49:96:32:e8:7a:40:d1:d4:b3:04:
4e:01:fa:ca:22:ac:92:30:e9:f0:cb:34:5a:06:7f:
89:f6:b8:74:83:84:1b:28:44:69:1b:dd:ba:28:fd:
14:22:f8:81:de:06:8b:4c:a5:4a:53:02:55:a4:99:
28:9d:85:a7:86:9d:94:08:2d:fa:10:62:be:65:96:
84:44:09:5c:ea:f1:f6:fb:1b:fb:cb:cb:56:51:31:
33:24:a4:f6:35:05:11:69:3d:1d:63:e7:44:b9:a4:
c8:7a:4b:a0:b4:34:ff:83:3a:03:06:6a:ae:ba:1a:
94:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:84:2C:2C:8C:EE:65:34:A2:C1:68:DF:B0:29:9C:41:AA:E1:6F:6F
X509v3 Authority Key Identifier:
keyid:05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:cc:30:05:e2:c5:39:ae:fd:fb:fc:7e:01:3f:07:ce:32:fb:
7a:ef:a3:8e:51:a2:e4:e1:06:c2:33:03:34:46:35:58:a4:6e:
8d:85:48:99:99:f8:95:18:5f:d9:d0:68:cb:9b:e4:b4:06:26:
c9:ba:59:7f:4f:5c:15:91:c0:f4:b1:58:56:74:2f:49:0f:b2:
0c:be:23:f9:e7:d4:98:a4:78:7f:2e:6b:e1:79:cb:4c:ec:c5:
ea:76:ad:4a:33:05:fa:33:03:f8:42:58:64:fa:84:f4:4d:98:
a0:ff:a1:74:ce:0a:52:48:90:d5:bf:35:64:4c:fe:e7:14:59:
1b:e3:be:b2:4d:4b:eb:28:28:56:de:8d:44:77:00:4a:dd:f6:
6a:d9:1f:d3:d0:8e:3a:8c:84:2e:09:e3:d1:b8:77:7d:14:0f:
77:02:00:7f:1c:67:2f:1c:fe:e6:62:37:07:74:b7:9b:8e:d8:
c3:7d:6e:bb:30:f1:7b:00:c2:3e:6e:50:b0:b1:0a:98:bd:14:
a0:97:5e:d3:07:dc:f3:53:c1:24:33:12:58:75:c4:7f:2a:90:
10:90:f6:09:28:72:ce:bd:f7:e0:42:a5:63:ff:f1:5e:ba:8c:
7b:1f:3f:26:16:00:6d:4b:0a:d8:aa:29:5b:a4:7b:89:19:6c:
2e:30:62:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:31:48 2025 by rpki-client