Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/ae5e6c-c70f-40f2-890d-575cf5d335e4/1/bgC7pk9Ra41jNaAc8wS4It7hrtA.mft
File: bgC7pk9Ra41jNaAc8wS4It7hrtA.mft (raw, json)
Hash identifier: E/v8Cj0Jm94MA4yUNkexY74GRBPatKIP0ZO6QUFRYPE=
Subject key identifier: B3:67:F1:72:A3:DC:BE:50:35:9C:87:F1:D3:28:8C:B3:03:F6:67:6D
Authority key identifier: 6E:00:BB:A6:4F:51:6B:8D:63:35:A0:1C:F3:04:B8:22:DE:E1:AE:D0
Certificate issuer: /CN=6e00bba64f516b8d6335a01cf304b822dee1aed0
Certificate serial: 0197684E5CD3D2C7A67659A015301FFBB32D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bgC7pk9Ra41jNaAc8wS4It7hrtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/ae5e6c-c70f-40f2-890d-575cf5d335e4/1/bgC7pk9Ra41jNaAc8wS4It7hrtA.mft
Manifest number: 158A
Signing time: Fri 13 Jun 2025 08:00:55 +0000
Manifest this update: Fri 13 Jun 2025 08:00:55 +0000
Manifest next update: Sat 14 Jun 2025 08:00:55 +0000
Files and hashes: 1: bgC7pk9Ra41jNaAc8wS4It7hrtA.crl (hash: mgeSWBq5NvcSUzBaC/rmsleuyYlWhFBmZJp43pS/qRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/ae5e6c-c70f-40f2-890d-575cf5d335e4/1/bgC7pk9Ra41jNaAc8wS4It7hrtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/ae5e6c-c70f-40f2-890d-575cf5d335e4/1/bgC7pk9Ra41jNaAc8wS4It7hrtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bgC7pk9Ra41jNaAc8wS4It7hrtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 08:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:4e:5c:d3:d2:c7:a6:76:59:a0:15:30:1f:fb:b3:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e00bba64f516b8d6335a01cf304b822dee1aed0
Validity
Not Before: Jun 13 08:00:55 2025 GMT
Not After : Jun 14 08:00:55 2025 GMT
Subject: CN=b367f172a3dcbe50359c87f1d3288cb303f6676d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:46:4d:07:2f:46:91:67:7a:77:cc:74:ac:47:
c0:82:4e:32:ba:05:83:7f:e1:15:6d:4a:c1:30:95:
4f:f8:bb:dd:a6:da:57:e4:5a:66:7f:09:b5:95:b2:
cb:4d:74:d2:9d:90:42:87:da:19:a3:80:d7:79:e6:
af:ae:5a:50:c2:72:ea:92:b9:4a:e4:6b:19:70:e8:
9f:50:48:72:5a:4f:b5:81:96:09:c1:9a:ad:2d:69:
0b:71:e0:1e:80:77:89:60:d1:7d:75:79:71:c2:dc:
0e:f5:de:2f:72:1f:0c:92:34:53:c8:c5:56:2e:ca:
8b:dc:a8:04:dc:c3:b4:0f:b9:6d:60:70:39:01:5f:
43:3d:ec:8d:fa:60:e2:e7:20:a4:7c:69:7e:6b:df:
d0:7e:b8:45:c6:34:fa:d8:5f:51:60:23:58:08:68:
f6:9a:85:51:04:83:ae:c7:19:e6:cb:35:b5:7e:e8:
82:84:d9:4f:3e:fb:7f:2b:6b:b5:d0:b9:e7:1a:0c:
75:35:ca:be:ed:e1:72:91:3d:6d:d0:a6:8c:97:88:
b7:cf:5a:9e:06:1e:22:08:31:f5:f4:f7:b4:0c:ab:
c0:34:07:2a:76:04:41:1a:ce:d6:18:a9:9c:b4:24:
68:04:c4:60:e1:8c:8a:1d:94:10:70:2c:f5:2a:d2:
34:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:67:F1:72:A3:DC:BE:50:35:9C:87:F1:D3:28:8C:B3:03:F6:67:6D
X509v3 Authority Key Identifier:
keyid:6E:00:BB:A6:4F:51:6B:8D:63:35:A0:1C:F3:04:B8:22:DE:E1:AE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bgC7pk9Ra41jNaAc8wS4It7hrtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ae5e6c-c70f-40f2-890d-575cf5d335e4/1/bgC7pk9Ra41jNaAc8wS4It7hrtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ae5e6c-c70f-40f2-890d-575cf5d335e4/1/bgC7pk9Ra41jNaAc8wS4It7hrtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:a1:ac:21:f9:33:2c:d7:75:38:10:aa:55:59:8b:0f:8e:24:
d8:75:df:1c:c1:15:0a:ea:1a:25:f5:37:11:d9:88:e3:87:9e:
8d:a8:76:81:4f:26:2b:70:88:40:a2:ea:5d:37:67:f8:0a:a5:
a2:db:b1:5b:88:c5:fe:2e:46:ad:0b:62:dd:71:fe:ca:0d:6a:
e8:6b:68:04:46:0b:f7:65:f4:8a:22:d6:61:a2:3a:f7:f4:e7:
61:b8:8e:e7:2d:9d:bb:87:b5:87:5c:67:24:bf:fa:07:5c:2b:
1e:24:38:d8:dd:cc:b8:0a:4c:98:58:20:b5:f4:23:fa:f5:49:
f9:e2:ad:ca:22:3b:e6:4d:9b:e7:09:50:50:f2:b3:40:75:75:
7f:02:9f:b1:6f:db:a8:22:df:67:6a:ab:58:0f:e0:5a:b1:83:
e5:ff:78:4a:c8:10:a0:0a:3a:a6:1f:91:35:d8:41:26:58:2d:
cc:7b:43:7e:44:e0:98:a3:96:1a:c9:c0:ea:61:e8:22:45:91:
da:be:19:2d:54:bc:2b:f4:7f:2c:4f:6d:ff:cd:3d:e2:f2:16:
03:38:1f:ff:a2:16:e8:46:28:a3:d4:30:0c:46:59:20:90:92:
b9:3d:d1:2e:60:1e:4a:fb:69:ee:9c:db:e7:ca:a3:66:6d:bf:
91:1d:f8:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:28:57 2025 by rpki-client