Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
File: bOLuhMz1bNwA_CyqWSknna4UiIo.mft (raw, json)
Hash identifier: ZeSBTdlM6ZMipemAKIH3vxc4V/Wsjby7EacXAesD4vc=
Subject key identifier: 16:D4:8A:6C:44:E9:A7:B9:96:9A:A6:CE:12:0E:82:B7:1F:21:60:3F
Authority key identifier: 6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
Certificate issuer: /CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Certificate serial: 0199221F17C2B6D8EC7FB8BE4363658B1FA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
Manifest number: 11B4
Signing time: Sun 07 Sep 2025 03:01:27 +0000
Manifest this update: Sun 07 Sep 2025 03:01:27 +0000
Manifest next update: Mon 08 Sep 2025 03:01:27 +0000
Files and hashes: 1: bOLuhMz1bNwA_CyqWSknna4UiIo.crl (hash: mje6Qm+CZMP+/pqTZQbNL66Thi4zSbUzkVBqdOut0gY=)
2: cm9pm1Y4fh7VmcKkQuyOuu9QXgE.roa (hash: T9xnzREMcoc526+ebS5GUXWxlrjNz60+DOHB2xM8pA4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:17:c2:b6:d8:ec:7f:b8:be:43:63:65:8b:1f:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Validity
Not Before: Sep 7 03:01:27 2025 GMT
Not After : Sep 8 03:01:27 2025 GMT
Subject: CN=16d48a6c44e9a7b9969aa6ce120e82b71f21603f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:06:f6:60:d5:c1:51:29:b2:c1:1d:4a:30:6f:
c5:7e:d8:c3:56:cd:bb:77:68:3a:1c:fe:20:dd:0a:
d2:39:47:90:74:8a:0f:9a:c2:94:ce:32:ea:62:d0:
1e:37:5d:6c:fc:15:1d:63:9d:f8:49:90:dd:fa:d4:
59:b4:56:fe:ac:87:e5:a3:53:27:48:c6:13:1c:34:
55:6c:bd:53:49:21:93:76:03:6f:c4:00:25:ca:a1:
06:fb:77:5b:6d:14:c9:63:61:9d:e5:29:21:db:a3:
19:b4:09:df:9b:e3:30:a7:81:1d:25:28:21:37:50:
2b:23:4c:2d:27:2c:50:32:10:50:d8:7e:0f:01:c6:
f3:69:64:e5:6f:83:9e:b7:c7:64:f1:a7:50:cd:5e:
13:e2:29:7e:6a:9a:01:18:ba:7a:b3:aa:6b:cb:5a:
59:33:87:23:b9:f2:81:a6:e2:15:92:75:98:9c:77:
04:83:0d:a9:cb:c2:5e:e9:90:4e:8e:95:5c:95:9f:
23:fc:a3:ec:16:08:d4:8b:15:1e:88:12:04:ea:f3:
1b:84:9d:72:f6:fa:8f:bc:7b:ad:af:2f:6f:df:ee:
b2:c4:21:92:a4:53:a0:46:06:2b:7d:cd:07:ca:60:
c4:b7:79:a0:4d:16:31:29:8f:18:ba:81:ad:f9:c6:
76:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D4:8A:6C:44:E9:A7:B9:96:9A:A6:CE:12:0E:82:B7:1F:21:60:3F
X509v3 Authority Key Identifier:
keyid:6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:83:b6:99:f5:05:83:3c:0b:55:9b:55:a3:25:61:e2:aa:48:
5f:0b:d2:ab:a2:de:75:e1:17:e6:be:4f:f1:fe:53:e4:de:ce:
27:10:a6:9f:43:b4:0e:45:b9:14:e1:c6:60:de:55:99:21:54:
f9:03:78:54:1e:70:e8:fb:d3:6b:94:5e:bf:d3:3e:04:9c:4d:
ef:04:ab:79:b4:4b:76:e2:d2:7d:3d:66:2d:75:97:fe:00:37:
a9:53:80:38:8d:e2:28:30:db:a9:ef:e9:b8:68:32:38:82:f5:
57:7c:b5:87:eb:49:21:4c:7d:d3:06:98:e0:2d:9b:71:0b:83:
76:e7:a3:15:f4:71:da:8a:fb:9a:aa:e6:11:ac:a6:b9:e4:c9:
25:3f:87:e2:96:73:ec:33:c5:ae:69:8c:f9:af:bf:cd:99:76:
65:6e:54:ad:b8:a5:24:ae:16:57:aa:da:ba:88:b7:1f:1c:00:
40:c4:b9:33:13:ea:d2:68:25:c0:71:5f:76:8f:00:64:70:41:
c6:5b:8e:7d:93:b9:b5:f2:0b:2d:83:4f:c9:a7:c5:1b:50:f6:
c0:67:7a:b0:39:44:ed:91:f7:56:b5:a7:fc:43:c7:56:08:d1:
0c:a7:49:59:9f:0f:22:f7:c3:ac:26:5c:2c:4e:a9:9d:d2:b3:
3b:11:79:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:22:20 2025 by rpki-client