Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft
File: bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft (raw, json)
Hash identifier: +k9FCh7CX4uZZf3AWtOcN4j6qF8mTS8XXBPZyZdsYhk=
Subject key identifier: 86:87:84:07:77:0B:E7:FD:6E:06:1D:04:3E:2A:D9:B3:6C:B4:DE:98
Authority key identifier: 6F:06:04:74:08:86:06:EC:4E:E8:EE:D7:C4:1B:69:43:F8:9A:09:BD
Certificate issuer: /CN=6f060474088606ec4ee8eed7c41b6943f89a09bd
Certificate serial: 01974A43E4D319A05F8FCCCE9F51E143183A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft
Manifest number: 08C1
Signing time: Sat 07 Jun 2025 12:00:52 +0000
Manifest this update: Sat 07 Jun 2025 12:00:52 +0000
Manifest next update: Sun 08 Jun 2025 12:00:52 +0000
Files and hashes: 1: bwYEdAiGBuxO6O7XxBtpQ_iaCb0.crl (hash: DUasYnLuJhX86werRx1EkIaBgkhya0LmFqbUNHB373k=)
2: xfilALq9xVm7LJX_uaRRDqm1ZX0.roa (hash: o3xsXXS0G1bR6xk5CmXK470ksv+YeZHYJ06DDMgu6J0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:e4:d3:19:a0:5f:8f:cc:ce:9f:51:e1:43:18:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f060474088606ec4ee8eed7c41b6943f89a09bd
Validity
Not Before: Jun 7 12:00:52 2025 GMT
Not After : Jun 8 12:00:52 2025 GMT
Subject: CN=86878407770be7fd6e061d043e2ad9b36cb4de98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:27:f4:06:6a:32:79:5b:e0:93:79:7f:ff:a1:
95:11:6b:04:a7:b4:43:1e:4d:df:1b:a0:50:b8:84:
fd:d5:86:68:2d:ea:19:e5:32:9f:c9:1c:84:c0:32:
4b:f3:5c:0d:b6:eb:e2:80:a8:1c:c1:60:f4:4d:a5:
08:28:23:05:d0:17:a9:f2:f2:ae:f6:64:7f:01:53:
88:31:c8:58:f2:84:8a:38:ea:a3:f1:60:25:2d:37:
79:79:92:26:80:c4:63:da:20:a2:ab:c9:46:92:78:
d1:ce:de:31:78:af:3a:3a:e1:c7:2e:46:38:9d:a3:
b5:52:ac:bd:94:b6:3a:44:42:03:e1:2e:76:26:76:
75:fc:6d:5d:cb:c9:df:02:0c:70:53:ac:6f:16:13:
be:3a:36:9c:a7:fe:b5:7a:17:fa:90:f4:b1:ba:5e:
a4:cf:8d:c1:66:6b:ad:47:52:86:83:e6:d3:b6:d6:
f2:64:e4:d2:46:0d:cc:98:5c:0e:be:57:e0:13:98:
8e:98:12:39:bc:0b:21:fa:77:e1:76:32:d1:1b:cb:
f2:6d:9b:a9:83:39:71:76:af:06:ec:bb:3c:b3:0b:
83:94:9a:0f:e9:36:fc:93:30:84:4f:16:d2:8e:bb:
28:15:68:25:70:93:77:34:d4:fe:a9:db:8c:9b:3b:
32:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:87:84:07:77:0B:E7:FD:6E:06:1D:04:3E:2A:D9:B3:6C:B4:DE:98
X509v3 Authority Key Identifier:
keyid:6F:06:04:74:08:86:06:EC:4E:E8:EE:D7:C4:1B:69:43:F8:9A:09:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ce:86:48:09:08:f0:00:03:2c:9d:85:90:d5:dc:77:a5:1d:22:
1f:a9:b4:bb:e3:f3:29:a7:f8:31:38:ba:e7:bd:ff:25:39:61:
c9:72:fe:27:f3:92:17:c7:8b:b0:71:27:54:e7:19:75:35:54:
a3:92:7b:ad:e3:ac:87:6c:41:c7:16:0f:24:8f:cc:90:59:b5:
8c:c9:75:d8:64:2c:c4:60:da:e8:eb:c5:f9:ba:db:0d:2e:ef:
3d:ff:1c:99:6d:78:f2:91:e6:92:35:46:71:6c:95:a2:2f:06:
f6:e0:2a:72:97:95:61:ea:ab:9d:be:60:e8:a6:b0:b0:14:81:
0b:63:21:e5:3b:be:27:d1:17:7c:0f:2e:a5:47:fc:b1:61:35:
31:95:b1:90:9a:03:4f:fc:71:b4:f3:83:cf:f1:0d:30:69:1c:
f9:f2:c0:3a:1c:dd:68:31:8f:9c:87:76:be:24:60:30:4e:76:
fd:a0:0f:37:e8:11:a9:3b:d7:ee:8d:01:c9:18:91:5f:b1:93:
a8:8b:78:c6:0c:f7:54:13:94:5a:c5:54:5a:a2:f6:9d:33:3b:
e8:10:a1:b8:c7:5a:9e:a6:e2:36:9f:ae:ea:9b:87:ce:d0:0f:
00:db:e1:5f:59:6b:17:39:8b:a6:ed:a2:69:06:31:2d:01:e1:
c5:4c:38:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:04:19 2025 by rpki-client