Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
File: bOLuhMz1bNwA_CyqWSknna4UiIo.mft (raw, json)
Hash identifier: A/HzW3F0Aw7p1IMCiuJmt0jqE/j5SVeZ57q4lfOxRWo=
Subject key identifier: AA:8A:8D:0A:A7:22:B3:B3:87:98:68:4B:4E:9B:FF:7F:28:F3:5D:4C
Authority key identifier: 6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
Certificate issuer: /CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Certificate serial: 019A7225EC1D907996D1438A0CD05D83FB8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
Manifest number: 1262
Signing time: Tue 11 Nov 2025 09:01:19 +0000
Manifest this update: Tue 11 Nov 2025 09:01:19 +0000
Manifest next update: Wed 12 Nov 2025 09:01:19 +0000
Files and hashes: 1: bOLuhMz1bNwA_CyqWSknna4UiIo.crl (hash: 5xwDvwXH9h0VuK7J8ZJWCC1/IVimJ+xTZG4VuYZyrFA=)
2: cm9pm1Y4fh7VmcKkQuyOuu9QXgE.roa (hash: T9xnzREMcoc526+ebS5GUXWxlrjNz60+DOHB2xM8pA4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:ec:1d:90:79:96:d1:43:8a:0c:d0:5d:83:fb:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Validity
Not Before: Nov 11 09:01:19 2025 GMT
Not After : Nov 12 09:01:19 2025 GMT
Subject: CN=aa8a8d0aa722b3b38798684b4e9bff7f28f35d4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:24:fa:ca:7c:99:cd:97:cb:be:3d:8f:49:eb:
ca:b3:a1:84:43:3c:8d:e9:84:55:14:e6:d3:af:7f:
06:4e:98:67:e0:2a:01:f4:51:52:75:5e:1a:8b:6b:
8b:2d:dc:42:90:36:d6:13:e1:c4:7d:fa:61:74:f7:
2d:0b:a0:29:70:df:2f:6b:21:c0:9d:20:e7:59:b3:
83:a8:03:33:1a:bf:33:d7:69:96:07:76:de:e6:19:
73:5f:89:da:36:24:b7:e0:fc:66:5c:81:52:bb:e4:
4b:0e:97:5a:04:fc:2c:c7:d1:7f:9a:68:e0:10:9f:
c8:16:8c:b3:6e:56:5f:b5:da:d8:2e:20:a3:56:3e:
4a:10:0f:37:5f:57:07:0c:ce:79:22:9e:f5:7b:0b:
85:1f:92:a9:47:33:64:e1:fd:a1:cc:86:c9:88:b5:
1a:d8:57:46:14:2d:b3:b7:2d:96:29:e7:92:ed:3d:
f8:14:d4:6c:58:ad:db:a2:31:db:22:39:97:9f:19:
c3:fe:c0:b8:a2:0f:1f:56:6f:c8:ba:0b:28:26:44:
6c:a2:3f:27:33:19:e2:7e:db:bf:77:92:f8:67:c6:
9d:6b:9d:33:34:58:69:9b:1a:5b:43:01:56:87:7b:
84:66:62:56:15:2c:9f:f8:43:ef:e1:9f:b2:cf:b5:
3f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:8A:8D:0A:A7:22:B3:B3:87:98:68:4B:4E:9B:FF:7F:28:F3:5D:4C
X509v3 Authority Key Identifier:
keyid:6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:fc:32:0f:24:94:a4:0d:de:16:c5:d3:b5:14:5f:1b:6e:56:
a4:17:e3:e0:ac:e8:10:7d:f8:d9:17:07:55:df:3d:ae:f1:ad:
f1:07:b8:fd:a7:56:19:54:4b:3f:ac:28:8a:3e:b1:75:13:26:
a9:40:a4:bd:34:06:29:f7:00:f6:12:17:a8:72:f4:9e:ae:0e:
cd:f1:f4:09:d6:69:55:e8:32:92:d7:6c:48:75:2e:8b:aa:76:
d9:68:17:87:0e:01:7c:fc:a5:70:62:34:24:8e:64:b5:0a:f9:
bc:25:61:ea:79:a6:3c:68:55:3d:a1:e3:53:37:9c:65:dd:44:
ed:4f:75:0d:73:cc:a6:2b:da:ad:42:39:96:f1:95:c6:0f:d9:
07:e1:98:78:ff:74:6a:89:8b:68:bc:78:00:58:26:b9:32:c1:
b3:da:bb:20:1a:e5:7c:05:6f:3b:55:0b:27:a6:20:cf:cf:b3:
6f:0b:67:62:47:85:af:81:62:76:61:b8:dc:87:df:84:87:8a:
f1:d7:1a:61:44:c4:d6:6a:0d:7c:2d:f8:db:e9:59:a2:45:1d:
f6:5b:00:21:4c:7c:7d:8d:07:d6:86:5e:49:55:dd:3d:4f:94:
5f:55:ae:20:81:57:4d:13:a2:29:7e:63:92:7f:27:34:5f:db:
b2:80:82:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:43:54 2025 by rpki-client