Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
File: bIkO9qiKsz-logZ2B2jdMlHCOK8.mft (raw, json)
Hash identifier: FrMJL98Oq5N2j6+NRb111rr7NdT1DMKIxTsIpKTquzY=
Subject key identifier: A4:A2:FB:53:0D:B4:9D:89:43:F5:36:53:B9:24:46:01:4C:32:B9:28
Authority key identifier: 6C:89:0E:F6:A8:8A:B3:3F:A5:A2:06:76:07:68:DD:32:51:C2:38:AF
Certificate issuer: /CN=6c890ef6a88ab33fa5a206760768dd3251c238af
Certificate serial: 0197499F2AFC0DC810CC613225D3F8CAC758
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 09:00:57 +0000
Manifest this update: Sat 07 Jun 2025 09:00:57 +0000
Manifest next update: Sun 08 Jun 2025 09:00:57 +0000
Files and hashes: 1: Jg3tAly607eUyr5ul8qsb9iYCbk.roa (hash: E+on8KClaRu9XGuipMYBlTB9A2oc11upYWwt1aQCGuI=)
2: bIkO9qiKsz-logZ2B2jdMlHCOK8.crl (hash: U354VFsIPmw6W9HUJLwBkbHuQ8IGMhy+Bhv5uaxRYfY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:2a:fc:0d:c8:10:cc:61:32:25:d3:f8:ca:c7:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c890ef6a88ab33fa5a206760768dd3251c238af
Validity
Not Before: Jun 7 09:00:57 2025 GMT
Not After : Jun 8 09:00:57 2025 GMT
Subject: CN=a4a2fb530db49d8943f53653b92446014c32b928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c5:fc:72:65:25:53:7e:ca:6d:84:6f:bc:e6:
29:5b:44:dc:b1:c4:fd:14:4d:52:40:55:eb:c7:dc:
d6:69:90:50:db:83:03:f0:01:54:92:0f:78:2a:83:
27:e9:52:b7:0e:f4:eb:fb:2d:84:22:4a:6a:32:9b:
ad:fa:96:da:e1:13:99:7d:f4:08:1c:5f:af:b3:5c:
ae:c6:07:86:bd:ac:9a:41:97:b2:c2:0f:70:05:f7:
01:4d:8e:2d:fe:21:df:cd:98:65:0e:eb:1f:54:46:
8d:e0:9f:cd:e9:66:4f:2a:fd:a9:97:83:2f:5b:e0:
8e:ec:b7:36:bc:12:06:2e:04:a9:02:6a:da:b3:84:
43:ed:21:b3:cd:e3:f5:db:39:22:b3:a9:06:2c:5b:
1d:42:99:4f:a8:c5:d4:76:1b:75:ff:03:9c:32:61:
53:55:a0:fd:d4:be:b2:61:b6:ad:81:5b:bf:7d:3d:
b6:2a:d2:bd:7d:be:f8:9e:89:18:de:93:26:7a:2d:
a1:e9:37:f0:24:2b:60:57:a1:75:ae:cf:4b:4b:cf:
85:e3:04:fd:b0:98:69:08:6c:a3:be:73:7a:ef:4d:
30:d7:a5:b7:3d:ef:67:91:07:c7:fc:82:e6:3d:34:
8d:9d:3f:62:03:f1:a8:bd:e4:28:43:01:be:c7:ad:
fa:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A2:FB:53:0D:B4:9D:89:43:F5:36:53:B9:24:46:01:4C:32:B9:28
X509v3 Authority Key Identifier:
keyid:6C:89:0E:F6:A8:8A:B3:3F:A5:A2:06:76:07:68:DD:32:51:C2:38:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:4f:29:09:7a:ea:96:7f:73:35:f3:c9:dc:eb:8d:07:68:52:
cd:3e:80:21:6f:87:ed:7f:8f:68:fd:be:78:06:9f:a4:04:c5:
3f:df:11:73:6d:70:ce:1c:ff:39:1d:60:c6:8f:32:06:f0:2c:
c2:8c:db:70:f3:c9:9a:74:4c:08:1d:fc:69:1e:5d:5a:85:3b:
b5:f7:e9:26:0b:d3:f7:cc:05:26:9c:c8:b0:50:ff:57:06:4b:
95:4d:41:2c:ba:34:fa:3e:bc:a2:e2:08:f9:8f:95:88:ca:7e:
b6:f0:96:a4:4a:97:2b:84:7c:f0:4e:c8:90:3c:e3:14:46:93:
3f:fc:f7:94:d0:85:d2:c0:c4:31:04:fa:88:b8:d4:2b:22:77:
7d:15:d2:47:51:bf:a1:69:23:eb:d1:82:6a:3c:db:fc:c0:11:
f3:93:60:65:86:a5:e7:e3:88:1d:d3:4f:91:85:b8:42:65:75:
d8:3d:e6:09:1b:34:c1:1d:f6:fa:58:5e:c8:bb:1b:d4:08:95:
f8:87:93:1b:7d:9b:90:20:b2:35:d1:e3:4b:5d:a0:b0:ce:bd:
8f:86:c3:ea:fa:2f:0a:ba:48:64:ae:90:8a:32:1b:bb:6b:08:
2a:cf:9b:8b:81:1a:84:af:91:78:2e:45:91:12:12:80:45:9d:
b3:c3:5d:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:28:03 2025 by rpki-client