Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
File: BsdGzX1N-VptA8qVVKdUdg1eTgY.mft (raw, json)
Hash identifier: YVbFqK6+ZsMBkifHK/JT2Jkt6RZsjE/W+1lxMBt/y/0=
Subject key identifier: 3A:3A:CE:6E:79:65:4A:E2:26:14:6B:FE:6E:19:D4:36:2F:EB:94:28
Authority key identifier: 06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06
Certificate issuer: /CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06
Certificate serial: 01977F7B329C502DCE25316AF43ECA2ACCF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
Manifest number: 060F
Signing time: Tue 17 Jun 2025 20:01:09 +0000
Manifest this update: Tue 17 Jun 2025 20:01:09 +0000
Manifest next update: Wed 18 Jun 2025 20:01:09 +0000
Files and hashes: 1: BsdGzX1N-VptA8qVVKdUdg1eTgY.crl (hash: H5RF33PJ1uQNBCbsnG5vY7OCFF8W5fA44BVBVZjtwMM=)
2: X40tLgIMCQZAYRAwmZdn2JjY2Sg.roa (hash: eDaX3dI5fxxRGSOkAJcdOwrelUSaDgM3W7s+OAzNuqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 20:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7f:7b:32:9c:50:2d:ce:25:31:6a:f4:3e:ca:2a:cc:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06
Validity
Not Before: Jun 17 20:01:09 2025 GMT
Not After : Jun 18 20:01:09 2025 GMT
Subject: CN=3a3ace6e79654ae226146bfe6e19d4362feb9428
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:4d:50:13:63:a1:96:e2:dc:7b:e8:b0:a9:2f:
5c:8d:11:41:d4:25:1d:55:c3:b3:ec:df:d5:22:3b:
ad:c1:36:69:e7:51:3f:0f:e6:51:9d:2e:3a:7b:06:
74:a8:b7:4f:37:eb:b7:19:46:5d:91:13:35:c2:8d:
55:a2:b3:4d:80:e1:66:35:c0:1f:26:db:80:1a:e7:
73:7b:f5:b3:40:6f:82:31:e8:78:9e:46:75:bf:c1:
d4:4a:70:0b:ed:31:bf:02:d2:4b:44:bf:df:b0:49:
17:d7:b5:1e:09:e2:77:fa:a7:3e:8e:94:e0:e0:0a:
40:a9:3d:0e:bc:f9:c2:01:ca:c2:e6:c7:9d:15:10:
9c:1c:ea:e0:20:41:bb:58:97:31:40:3b:28:39:02:
22:e8:d7:ec:32:c5:e9:ef:15:ba:d5:61:c2:a6:7e:
e3:17:e6:eb:a4:44:6d:41:d3:24:8e:57:30:fe:82:
22:25:7f:67:17:89:c2:2a:6c:7b:ad:fb:5d:61:27:
d3:79:a7:68:3a:b5:9c:ba:f5:8f:7c:9b:02:e3:52:
18:c9:a6:c4:da:47:b3:e8:4f:de:44:52:98:04:c7:
47:79:30:42:59:1e:89:2e:2b:63:a0:80:99:db:d7:
ca:38:56:15:49:bd:01:77:be:67:f0:d2:d3:ae:75:
a1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:3A:CE:6E:79:65:4A:E2:26:14:6B:FE:6E:19:D4:36:2F:EB:94:28
X509v3 Authority Key Identifier:
keyid:06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:be:6f:21:50:3c:db:27:c6:6e:e3:c9:c0:65:ef:2a:b4:f3:
17:d8:8c:98:26:82:58:c0:7b:a0:74:ea:d4:ea:e9:99:33:e4:
da:ee:66:02:71:40:cc:17:47:d7:b6:24:29:4a:56:2c:01:6e:
c3:34:99:93:b1:84:c1:3c:89:1b:dd:63:e4:92:b0:b8:83:f6:
8a:cf:84:45:0b:aa:73:24:40:38:28:9e:a9:a4:b4:1a:55:90:
9b:a3:fa:17:ac:6e:31:44:d5:36:71:b8:c3:c5:54:ba:3c:ab:
ec:93:93:97:b4:3c:fa:bc:c7:09:81:36:7a:0a:07:e6:70:50:
68:7f:59:b6:c2:0d:da:fa:5e:e0:fa:de:e0:e3:3f:85:3c:ac:
b4:86:d4:6d:71:67:30:d8:e5:2e:e7:6d:f6:1f:4b:a3:45:64:
f7:18:98:47:bc:95:03:43:f0:8c:c7:c7:d6:80:85:ce:52:73:
5d:62:68:c4:bd:3d:ad:ea:4f:37:78:d2:53:8f:bb:c0:88:e9:
d5:33:b9:86:de:a0:b3:2f:0c:29:40:eb:ba:af:bc:41:24:39:
23:9a:cc:29:cc:4d:98:b9:ce:22:86:18:87:44:15:2b:db:2c:
4a:3e:f8:3d:81:4b:f5:0b:d8:f4:62:ed:e5:5e:57:bf:d6:39:
e7:94:85:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 06:46:41 2025 by rpki-client