Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
File: bG9jkROWOM74MYEUEyzPJuFn06Q.mft (raw, json)
Hash identifier: 06TLiyJ/c+f+eIwmVLdiWEO6d4eLjKEFpcKkE+3E+Fs=
Subject key identifier: 99:B0:BD:61:64:43:D6:E2:EF:0D:17:AA:35:C7:D5:CE:49:9D:E1:AB
Authority key identifier: 6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
Certificate issuer: /CN=6c6f6391139638cef8318114132ccf26e167d3a4
Certificate serial: 01975234EBC0DA8DDE7476103C818DBF0EF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
Manifest number: 125A
Signing time: Mon 09 Jun 2025 01:01:29 +0000
Manifest this update: Mon 09 Jun 2025 01:01:29 +0000
Manifest next update: Tue 10 Jun 2025 01:01:29 +0000
Files and hashes: 1: _HGowDUCSG2pcAysO4ogxA6yosc.roa (hash: UPTC6ZbpFxK2iqUZ6z67RcYvcbR0/gldSq3kNUHLLJI=)
2: bG9jkROWOM74MYEUEyzPJuFn06Q.crl (hash: tY1TlpKoH4ZJn+H2QNrjZM/HFgu4vIZXTw1Np1br5p4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:34:eb:c0:da:8d:de:74:76:10:3c:81:8d:bf:0e:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c6f6391139638cef8318114132ccf26e167d3a4
Validity
Not Before: Jun 9 01:01:29 2025 GMT
Not After : Jun 10 01:01:29 2025 GMT
Subject: CN=99b0bd616443d6e2ef0d17aa35c7d5ce499de1ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7d:ec:37:30:51:d7:d0:a5:8d:ca:f6:2a:79:
33:41:ab:85:3b:23:b0:e3:bf:9e:89:30:bc:0e:82:
2a:1b:3f:7c:4a:e6:3c:80:7a:0b:dd:f4:99:e8:2d:
bf:03:19:a4:ff:c7:25:fa:91:c7:b9:f2:29:af:dd:
5d:e6:38:17:36:02:04:27:0c:d4:a3:b5:4a:a6:02:
d4:d8:e5:85:26:d2:af:bf:29:1b:99:e7:bc:70:c2:
4e:b2:62:e2:f7:33:ae:9e:bc:b2:06:e5:2b:e1:2d:
3d:3e:f5:82:1e:a8:44:24:64:b6:88:ad:cc:8d:33:
31:15:9d:0c:66:30:f0:7b:91:69:53:78:5b:8c:4f:
2c:fb:90:65:35:fe:17:01:75:cb:91:cc:2c:52:0e:
6e:2a:22:bf:8b:93:80:ab:63:7c:10:f7:49:a8:87:
31:f8:47:5a:82:32:8f:2d:05:ed:d9:83:5d:5f:11:
1d:95:6d:28:9f:7e:06:ea:44:0d:7d:be:e0:94:3a:
59:44:bb:42:f0:0c:74:78:66:ea:63:ba:7d:bc:c5:
33:a4:f9:31:3b:54:09:70:5a:80:c8:1c:a8:09:e2:
4d:f4:81:3a:06:53:b1:bc:4e:07:52:24:c0:a3:94:
5f:08:44:21:8f:c6:5d:95:3f:eb:21:5c:65:3a:b9:
4b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:B0:BD:61:64:43:D6:E2:EF:0D:17:AA:35:C7:D5:CE:49:9D:E1:AB
X509v3 Authority Key Identifier:
keyid:6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:44:d4:4c:6e:81:90:e9:5a:40:80:cb:f6:40:ba:ff:78:26:
32:d8:7a:0f:dd:e0:35:fa:43:47:29:1c:43:df:b4:22:29:e9:
c5:70:0b:40:09:8e:f5:0c:ae:40:5e:e4:05:d3:3d:df:19:bb:
cc:e6:d2:ed:3b:85:32:8c:13:74:68:a2:f7:d0:62:73:ab:ce:
e2:c1:52:48:39:2f:83:30:14:e5:9f:a2:63:74:79:29:e4:20:
1b:17:e3:77:5d:78:ee:de:dc:d0:18:95:ca:50:4c:3b:77:f5:
b8:e1:83:34:a2:dd:f6:3a:4c:ee:1e:33:27:da:87:65:5a:d9:
15:4b:cd:39:34:41:2b:4b:c4:61:03:22:73:08:c6:c6:5d:a0:
65:4b:04:52:ac:5e:f0:40:db:31:5a:51:dc:47:14:f4:bd:6d:
d7:88:50:e8:3d:5e:da:98:93:9f:f3:e7:e1:8a:d6:f2:e6:3d:
5e:fd:34:80:86:66:67:a1:48:1a:4f:16:01:fa:bb:ec:cb:a5:
f6:9a:9a:e0:ec:67:dc:4d:8d:f4:41:b6:6e:b8:78:2b:d9:e7:
dd:4b:74:1b:0c:f4:62:e8:5e:6e:01:ec:6b:be:d0:a1:d5:6c:
cd:82:6f:78:e8:b8:ab:f7:1d:d4:c1:f5:5c:5c:5e:08:6f:9f:
72:1a:e0:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdSNOvA2o3edHYQPIGNvw7zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjNmY2MzkxMTM5NjM4Y2VmODMxODExNDEzMmNjZjI2ZTE2
N2QzYTQwHhcNMjUwNjA5MDEwMTI5WhcNMjUwNjEwMDEwMTI5WjAzMTEwLwYDVQQD
Eyg5OWIwYmQ2MTY0NDNkNmUyZWYwZDE3YWEzNWM3ZDVjZTQ5OWRlMWFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtX3sNzBR19Cljcr2KnkzQauFOyOw
47+eiTC8DoIqGz98SuY8gHoL3fSZ6C2/Axmk/8cl+pHHufIpr91d5jgXNgIEJwzU
o7VKpgLU2OWFJtKvvykbmee8cMJOsmLi9zOunryyBuUr4S09PvWCHqhEJGS2iK3M
jTMxFZ0MZjDwe5FpU3hbjE8s+5BlNf4XAXXLkcwsUg5uKiK/i5OAq2N8EPdJqIcx
+EdagjKPLQXt2YNdXxEdlW0on34G6kQNfb7glDpZRLtC8Ax0eGbqY7p9vMUzpPkx
O1QJcFqAyByoCeJN9IE6BlOxvE4HUiTAo5RfCEQhj8ZdlT/rIVxlOrlLgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJmwvWFkQ9bi7w0XqjXH1c5JneGrMB8GA1UdIwQY
MBaAFGxvY5ETljjO+DGBFBMszybhZ9OkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS85NWE2ZjQtODIyMC00NmRjLWIyMzgt
MzRhZDFjODUzNTk5LzEvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS85NWE2ZjQtODIyMC00NmRjLWIyMzgtMzRhZDFjODUzNTk5
LzEvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJkTUTG6B
kOlaQIDL9kC6/3gmMth6D93gNfpDRykcQ9+0IinpxXALQAmO9QyuQF7kBdM93xm7
zObS7TuFMowTdGii99Bic6vO4sFSSDkvgzAU5Z+iY3R5KeQgGxfjd1147t7c0BiV
ylBMO3f1uOGDNKLd9jpM7h4zJ9qHZVrZFUvNOTRBK0vEYQMicwjGxl2gZUsEUqxe
8EDbMVpR3EcU9L1t14hQ6D1e2piTn/Pn4YrW8uY9Xv00gIZmZ6FIGk8WAfq77Mul
9pqa4Oxn3E2N9EG2brh4K9nn3Ut0Gwz0YuhebgHsa77QodVszYJveOi4q/cd1MH1
XFxeCG+fchrgFA==
-----END CERTIFICATE-----
Generated at Mon Jun 9 03:05:11 2025 by rpki-client