Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft
File: bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft (raw, json)
Hash identifier: 7zGITVaoTdP/lBYMDy9B78btx5mv9tN6VotIvE7Byu8=
Subject key identifier: 42:4B:8D:34:C4:C4:1E:D3:38:75:15:5D:6C:34:A2:7B:BC:01:89:D9
Authority key identifier: 6E:AE:4B:B0:51:39:80:C8:7F:9B:AC:59:29:52:C0:95:77:7A:C1:2E
Certificate issuer: /CN=6eae4bb0513980c87f9bac592952c095777ac12e
Certificate serial: 019677FBA81BDE9D19F7AEFE15FF712D5E40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bq5LsFE5gMh_m6xZKVLAlXd6wS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft
Manifest number: 016B
Signing time: Sun 27 Apr 2025 16:01:43 +0000
Manifest this update: Sun 27 Apr 2025 16:01:43 +0000
Manifest next update: Mon 28 Apr 2025 16:01:43 +0000
Files and hashes: 1: C_vZrzZdhy-uejOZ6_GWZTSm_n0.roa (hash: 79ZNhw6Fw3tlIyCfv3zLmQ4ilyJAmRJY2DfEyitGouQ=)
2: bq5LsFE5gMh_m6xZKVLAlXd6wS4.crl (hash: qUn+06smOcpnKz2J8fW3FV3ZInkhBb3QGY3mxFcMJRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bq5LsFE5gMh_m6xZKVLAlXd6wS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fb:a8:1b:de:9d:19:f7:ae:fe:15:ff:71:2d:5e:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eae4bb0513980c87f9bac592952c095777ac12e
Validity
Not Before: Apr 27 16:01:43 2025 GMT
Not After : Apr 28 16:01:43 2025 GMT
Subject: CN=424b8d34c4c41ed33875155d6c34a27bbc0189d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:87:e4:8d:da:26:4d:eb:2b:7c:c8:3f:6a:a3:
6c:60:48:84:d4:85:e8:c1:8a:ab:44:e6:c9:14:db:
2a:30:2c:6c:2d:cf:28:9d:8a:0c:e1:0b:9d:25:de:
33:d7:c8:94:15:49:de:23:e8:10:35:b5:35:91:f9:
77:3c:a7:27:68:ad:30:d7:05:26:bf:7f:a0:1b:e8:
77:fa:e9:91:90:b9:7d:3e:b2:a9:81:ac:1e:cb:a6:
c3:48:0b:2c:fa:9d:30:c0:08:e6:c7:41:df:32:1a:
44:d8:b6:9a:50:8f:65:2b:18:8a:e9:0e:e6:20:20:
72:f0:3d:df:f9:41:e0:1c:98:8c:d6:03:17:45:15:
00:bf:2d:2c:2b:29:b8:84:a1:83:70:fd:9b:e5:ad:
8c:ab:ce:cd:99:19:55:a8:7a:77:5b:34:d7:bc:8f:
7e:be:7b:83:a5:3c:d2:25:2f:20:56:fd:d5:ca:eb:
63:3a:35:a8:16:40:03:2c:f5:13:fd:47:77:95:f2:
c8:48:37:33:c3:da:1a:25:65:a6:cf:54:c4:3c:e4:
e9:64:a8:82:9d:e7:19:7b:68:5a:07:da:15:d9:88:
53:c2:11:64:d9:ed:6d:c7:55:53:7e:2c:88:18:61:
ce:a1:d4:3a:5a:c2:a2:af:0b:94:3d:be:3b:0b:ea:
24:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:4B:8D:34:C4:C4:1E:D3:38:75:15:5D:6C:34:A2:7B:BC:01:89:D9
X509v3 Authority Key Identifier:
keyid:6E:AE:4B:B0:51:39:80:C8:7F:9B:AC:59:29:52:C0:95:77:7A:C1:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bq5LsFE5gMh_m6xZKVLAlXd6wS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:88:10:40:bd:da:ea:74:f3:cc:7a:f4:df:98:fa:a5:24:d5:
6a:76:dc:2c:68:e0:b2:c2:74:8c:57:35:d5:88:a2:4f:dd:69:
cf:4b:f8:0f:05:14:7a:3c:ef:7f:ee:b0:bd:1b:73:8e:70:54:
e4:6b:24:c3:d2:c5:c1:a2:23:8c:e3:32:2b:4f:05:5e:63:65:
2e:39:02:e6:63:26:f4:03:ec:95:47:62:55:ee:2f:c7:8e:76:
7b:b0:b9:97:97:4b:94:b8:91:9d:44:32:b3:85:16:83:13:b7:
9c:9f:1b:b6:03:e0:24:77:2a:05:0e:da:29:84:c1:29:d7:ad:
d7:8d:5d:5b:8c:4e:64:3c:a8:57:90:1b:4c:01:71:b4:ce:42:
47:31:5b:40:3f:01:f2:a9:57:61:19:c2:21:fb:50:dc:cb:92:
18:8d:c4:d7:29:34:00:63:10:82:f2:ec:27:a8:da:af:25:fb:
1b:24:e2:26:42:6e:cc:5a:d5:47:ea:56:7a:89:b3:6c:c8:ba:
d0:f9:fd:09:2f:ad:4d:4a:94:6c:bc:e5:23:87:2a:ab:bd:da:
74:be:c8:5f:52:03:2a:f9:9f:b8:85:1f:59:2f:6a:35:20:68:
b8:a3:8c:dd:c3:2d:f2:cf:90:03:8c:61:96:4a:c2:bd:99:ae:
f6:89:1f:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 20:22:25 2025 by rpki-client