Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
File: bG9jkROWOM74MYEUEyzPJuFn06Q.mft (raw, json)
Hash identifier: ZHEfxfibi2z3u09tC6ei239Z5FtkE2u8uSdYTT+Bs0Q=
Subject key identifier: CA:AF:7B:04:3C:32:CF:26:70:64:33:2C:FE:D4:64:EE:94:FD:0B:86
Authority key identifier: 6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
Certificate issuer: /CN=6c6f6391139638cef8318114132ccf26e167d3a4
Certificate serial: 019923A09ED5A7F3879E8A89E520C3E012CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
Manifest number: 134B
Signing time: Sun 07 Sep 2025 10:02:32 +0000
Manifest this update: Sun 07 Sep 2025 10:02:32 +0000
Manifest next update: Mon 08 Sep 2025 10:02:32 +0000
Files and hashes: 1: _HGowDUCSG2pcAysO4ogxA6yosc.roa (hash: UPTC6ZbpFxK2iqUZ6z67RcYvcbR0/gldSq3kNUHLLJI=)
2: bG9jkROWOM74MYEUEyzPJuFn06Q.crl (hash: 2um1VUvzuKB9s7wLAusQPqQR9S27uU/heqLd4KTX0wk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:9e:d5:a7:f3:87:9e:8a:89:e5:20:c3:e0:12:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c6f6391139638cef8318114132ccf26e167d3a4
Validity
Not Before: Sep 7 10:02:32 2025 GMT
Not After : Sep 8 10:02:32 2025 GMT
Subject: CN=caaf7b043c32cf267064332cfed464ee94fd0b86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1b:6f:1f:68:e7:65:5d:04:de:b2:58:8e:c5:
0a:0d:33:94:6e:67:74:02:40:d6:5a:2a:dc:cc:97:
b4:15:47:73:72:ec:9f:4a:01:8f:66:06:20:11:c5:
96:bf:97:94:37:6a:76:29:8d:93:e3:19:8b:27:fe:
73:13:f4:88:ad:3b:af:86:3d:64:2d:fb:6c:6d:64:
77:e6:8b:14:a0:e5:70:43:91:30:7f:19:56:cd:06:
00:b4:af:44:a3:0c:40:04:8b:1f:57:3e:53:73:99:
a1:21:0c:a1:17:cc:f7:a3:47:fa:97:9b:62:b8:93:
8a:6f:ac:fc:c0:3c:2f:99:c7:93:de:34:19:5b:1e:
12:17:38:c1:95:a1:55:0e:9e:b3:06:2a:00:05:c0:
29:69:74:42:35:fa:24:62:27:06:c6:64:57:70:18:
8d:e2:d6:0c:fb:27:bc:8a:3a:dc:9f:8c:d5:9d:53:
00:1c:6d:bd:cf:b1:63:5d:7e:96:3f:cb:3a:09:21:
ef:7f:39:8d:b4:36:4e:c6:da:18:71:0c:dd:c2:c4:
05:a5:41:24:7a:ca:c0:89:b0:ea:a9:90:6e:7e:51:
dc:92:03:6d:80:5a:7f:56:f5:9d:a8:3f:ed:19:c5:
c4:7c:2b:3f:4d:12:d2:00:af:ae:23:f4:0b:a7:91:
92:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:AF:7B:04:3C:32:CF:26:70:64:33:2C:FE:D4:64:EE:94:FD:0B:86
X509v3 Authority Key Identifier:
keyid:6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:e8:4d:0a:11:b3:87:25:31:dd:03:22:f8:09:11:94:36:aa:
1d:4f:6a:32:f4:b7:ea:a6:c7:c1:e2:98:8a:72:6f:25:c0:1d:
11:8b:21:d9:97:cc:70:e7:24:96:76:ee:55:3c:3a:17:18:23:
da:bb:2a:04:fe:46:18:bc:59:e8:d0:30:4b:cb:54:e1:88:3e:
c9:0e:16:8b:db:e4:01:b4:a2:61:6e:89:63:45:9e:82:2b:4c:
ce:2b:81:4a:9b:9f:72:4d:3d:0b:72:88:97:7c:f6:90:eb:a7:
8a:25:e4:b6:ee:17:90:af:f5:77:61:85:0b:cb:3d:f6:35:6c:
d0:19:8f:31:cb:f1:ff:15:f2:33:7b:1c:03:59:42:f0:cb:e0:
71:64:c9:2c:26:c0:7c:58:5d:79:be:23:79:54:57:41:b2:bf:
5c:7f:c5:10:c8:46:f3:c2:86:ee:7e:fb:40:f4:27:35:04:9f:
73:66:7a:d1:b5:da:15:92:52:90:0a:32:1e:2a:a4:25:f2:46:
41:eb:af:e7:d2:6d:e3:89:d7:f8:eb:29:59:ed:14:30:67:6a:
f1:6e:79:14:57:e9:93:cf:53:1e:29:24:6f:89:be:ca:fb:4d:
1f:74:81:fa:d3:fd:c8:41:b5:6d:1c:58:6d:11:e0:33:92:c0:
36:66:85:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:31:10 2025 by rpki-client