Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
File: BsdGzX1N-VptA8qVVKdUdg1eTgY.mft (raw, json)
Hash identifier: 26bx7JZ1iry8rZyGpCYwVVNEDPq0lsxXAtVvAgtAcF4=
Subject key identifier: 01:2F:99:B0:80:D2:A3:9C:5F:EA:AE:27:55:66:B8:B8:D7:50:2D:62
Authority key identifier: 06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06
Certificate issuer: /CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06
Certificate serial: 01968C26A1897ADD41C7E3A0960D126C2D55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
Manifest number: 0591
Signing time: Thu 01 May 2025 14:01:03 +0000
Manifest this update: Thu 01 May 2025 14:01:03 +0000
Manifest next update: Fri 02 May 2025 14:01:03 +0000
Files and hashes: 1: BsdGzX1N-VptA8qVVKdUdg1eTgY.crl (hash: H7R2/NP5IYF19wsWcfebKZlk0zTv9NE77MPR/qjrItg=)
2: X40tLgIMCQZAYRAwmZdn2JjY2Sg.roa (hash: eDaX3dI5fxxRGSOkAJcdOwrelUSaDgM3W7s+OAzNuqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8c:26:a1:89:7a:dd:41:c7:e3:a0:96:0d:12:6c:2d:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06
Validity
Not Before: May 1 14:01:03 2025 GMT
Not After : May 2 14:01:03 2025 GMT
Subject: CN=012f99b080d2a39c5feaae275566b8b8d7502d62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b3:ed:4d:f1:08:97:4f:8c:73:a2:d8:d3:4f:
25:75:d9:49:03:ba:47:31:92:0d:2d:69:f5:aa:de:
e3:c6:eb:71:64:7f:96:4e:48:65:c2:df:e3:56:0e:
66:ef:23:25:2d:37:2f:bd:64:14:0f:6c:a0:60:73:
92:cc:2d:ba:ba:46:6d:6f:ca:e4:43:aa:f7:34:bb:
a2:ca:da:7c:e1:b4:a1:ad:2c:60:61:e1:44:cd:81:
21:82:f1:e4:33:9f:30:25:6b:7d:99:18:ad:64:59:
77:0d:e9:71:dc:33:c1:6d:7d:00:cc:cc:95:25:92:
b0:d8:ae:9b:f2:80:92:53:48:83:52:c4:be:ff:2f:
a9:7b:aa:3f:56:5a:3f:a6:9d:5d:91:72:c8:1d:88:
cb:d9:00:b7:14:ca:b7:f2:2d:5d:2a:8d:3f:03:ce:
3a:ad:de:96:a4:1a:27:76:05:39:1b:48:d2:35:ca:
a7:fb:80:c0:80:4e:3e:52:76:50:28:a8:db:e7:1d:
ab:b6:e3:4d:0c:92:45:ea:d4:b2:57:02:e7:53:28:
4a:71:c0:7c:1e:48:fb:86:88:e2:5d:a7:2f:1d:e0:
32:d3:a5:3f:bd:66:59:31:ee:7e:27:8b:08:16:95:
11:6b:3d:df:00:99:17:f6:5a:fb:f4:7e:9a:3c:f9:
df:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:2F:99:B0:80:D2:A3:9C:5F:EA:AE:27:55:66:B8:B8:D7:50:2D:62
X509v3 Authority Key Identifier:
keyid:06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:7a:76:29:11:8a:40:a5:7f:32:c9:c2:b3:25:fc:e4:53:b4:
dd:f4:de:14:06:64:b0:ef:2b:d6:37:0e:51:d1:f4:6b:86:1a:
1e:4d:c4:ba:68:e3:f5:24:8d:67:2b:a7:16:74:38:d4:31:61:
6c:cd:8a:61:c6:14:c0:0e:ff:ab:09:f4:df:86:67:c6:57:eb:
47:25:6b:65:6f:e8:f6:2d:28:2a:d1:8d:c7:2d:df:c4:a5:a5:
19:7e:3b:70:8d:e9:ca:31:42:2b:0b:9b:ac:61:c2:61:b8:9a:
3a:11:bd:c1:e2:5b:e1:ea:75:e6:e8:ca:d3:e1:59:19:80:72:
34:27:d7:17:9a:19:63:ee:40:00:dd:e5:0b:1d:d3:6d:aa:72:
33:3c:7e:d5:81:13:35:d8:87:de:fe:3d:c5:e7:92:e6:2b:af:
51:3d:44:ad:02:ee:0b:b6:52:6a:14:90:d1:6d:df:7c:7f:dd:
ba:72:64:11:7e:63:31:20:ec:a5:6c:66:7c:53:b4:06:13:06:
fa:69:9d:c6:5a:92:5e:f9:d8:5e:c3:d4:bf:a9:d6:40:f0:f6:
4c:3d:c9:23:aa:a3:4b:10:e3:62:73:9d:34:3c:44:a2:2e:cd:
47:a9:26:5b:12:42:fb:67:28:6a:69:88:e3:f0:e9:5c:0a:b6:
e5:df:ae:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 15:56:21 2025 by rpki-client