Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
File: bOLuhMz1bNwA_CyqWSknna4UiIo.mft (raw, json)
Hash identifier: 7noJegNk3imkZ9btY5IU0o4Y9U+9TR6cC5b6vkosny8=
Subject key identifier: 06:D5:F0:19:8A:AA:D7:1D:21:46:2D:F5:A8:0F:D4:79:1E:1C:92:88
Authority key identifier: 6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
Certificate issuer: /CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Certificate serial: 019748FAAD04EEF0C1B5AF5E3C74FC167F12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
Manifest number: 10BF
Signing time: Sat 07 Jun 2025 06:01:16 +0000
Manifest this update: Sat 07 Jun 2025 06:01:16 +0000
Manifest next update: Sun 08 Jun 2025 06:01:16 +0000
Files and hashes: 1: bOLuhMz1bNwA_CyqWSknna4UiIo.crl (hash: OnHtOkN0hZOdenv/qyFfg6mTjLncuBkx+k5vWAkBYqs=)
2: cm9pm1Y4fh7VmcKkQuyOuu9QXgE.roa (hash: T9xnzREMcoc526+ebS5GUXWxlrjNz60+DOHB2xM8pA4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:ad:04:ee:f0:c1:b5:af:5e:3c:74:fc:16:7f:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Validity
Not Before: Jun 7 06:01:16 2025 GMT
Not After : Jun 8 06:01:16 2025 GMT
Subject: CN=06d5f0198aaad71d21462df5a80fd4791e1c9288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:3d:e1:86:d1:6e:bd:88:a1:9d:5e:1e:9e:1b:
32:b7:da:cc:48:0c:1e:37:1e:0a:d1:70:b5:97:dc:
74:10:1e:50:14:2e:18:31:2b:21:15:b9:fe:19:65:
09:a3:7e:98:96:5d:a5:fb:fa:96:02:f4:cc:dc:67:
ad:af:ef:b7:df:ca:60:4c:4c:5c:8d:42:d1:18:d5:
fe:59:de:89:d9:c5:7c:05:d9:b1:54:36:23:79:1d:
4a:de:bb:a6:9b:48:4f:a3:f6:8b:21:ae:ad:0e:7f:
56:b7:b5:e9:44:c2:73:17:cc:d6:e3:77:4f:91:7e:
e9:a9:2d:2f:20:df:cb:e1:81:c7:61:77:ea:58:0a:
f5:ad:9b:fc:be:4d:eb:ab:e9:92:02:38:e5:6a:c9:
bb:96:51:ae:fa:74:32:90:f4:67:73:a3:15:84:43:
ee:58:68:86:8d:53:d5:95:27:ba:06:51:23:8a:2b:
e1:0a:f1:67:81:a2:12:e6:ea:56:06:64:c0:25:40:
84:18:61:63:4c:c0:75:96:b0:32:87:4f:69:c3:ac:
94:ff:17:00:74:ea:dd:2d:55:1d:d9:d5:bc:b2:74:
f5:cd:71:a0:b0:a0:91:63:e8:69:8f:47:db:27:f8:
91:b5:56:a2:b2:d6:98:2f:f7:7c:f6:e4:1d:d4:4d:
37:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:D5:F0:19:8A:AA:D7:1D:21:46:2D:F5:A8:0F:D4:79:1E:1C:92:88
X509v3 Authority Key Identifier:
keyid:6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:30:d9:82:dd:c2:a7:d9:4f:a7:6e:be:2c:9b:6a:01:2e:1b:
ad:a6:24:a6:10:10:cb:79:d0:6a:b2:9b:da:e3:17:d7:0c:c7:
3a:ae:b5:a3:af:26:54:61:dc:00:8d:0c:83:35:7e:92:74:5b:
29:7d:d7:30:6b:68:5a:e6:4b:4c:7d:7d:e9:fb:4f:a2:d3:03:
de:b6:f1:de:4c:cd:32:b9:9b:bc:f2:69:c3:e7:6c:82:51:31:
c6:38:67:b8:9b:31:df:c4:e2:d5:8d:26:b7:fc:8a:b9:79:16:
69:73:4b:52:7e:34:19:2e:01:ba:39:79:ef:2d:60:a6:f3:fe:
94:3e:4f:7c:da:aa:1c:ff:f2:a7:66:30:a1:c5:39:b6:0b:66:
46:ac:b6:af:54:59:54:d1:6c:b2:b7:7d:4f:06:47:b5:73:fe:
ce:a3:68:14:f6:2f:b6:eb:01:cc:ac:40:46:e8:ba:d7:75:a7:
fc:06:4e:23:31:17:d7:fc:ac:37:5b:7e:ee:95:03:d0:46:04:
51:68:ef:f4:c7:0a:54:a5:12:6a:28:4b:c7:24:fa:e3:66:4e:
a6:c3:a6:4f:95:43:c7:ca:35:f2:a1:b3:f7:6d:ec:e8:30:1e:
7a:7a:f7:79:c1:90:c5:ad:89:56:b5:18:fe:13:41:1a:f0:11:
0f:ed:ef:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:41:01 2025 by rpki-client