Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft
File: BvPXAJgq-awbr-TyqnGEStAHWR0.mft (raw, json)
Hash identifier: gHyZhxnfoUyVw5qrueQglhvvHRG5QG0/WNq0RZKDeDo=
Subject key identifier: A5:37:46:F3:EC:EE:56:C4:B9:3A:99:5D:A8:36:48:91:37:86:2C:FD
Authority key identifier: 06:F3:D7:00:98:2A:F9:AC:1B:AF:E4:F2:AA:71:84:4A:D0:07:59:1D
Certificate issuer: /CN=06f3d700982af9ac1bafe4f2aa71844ad007591d
Certificate serial: 0196760C4F8618AB9CC51FC328833F87E1E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BvPXAJgq-awbr-TyqnGEStAHWR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft
Manifest number: 0841
Signing time: Sun 27 Apr 2025 07:00:40 +0000
Manifest this update: Sun 27 Apr 2025 07:00:40 +0000
Manifest next update: Mon 28 Apr 2025 07:00:40 +0000
Files and hashes: 1: BvPXAJgq-awbr-TyqnGEStAHWR0.crl (hash: 2H+RsCoTwZqW5M0upjR+CP+RMXODaBk3AnJFTz6Vey4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BvPXAJgq-awbr-TyqnGEStAHWR0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:4f:86:18:ab:9c:c5:1f:c3:28:83:3f:87:e1:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06f3d700982af9ac1bafe4f2aa71844ad007591d
Validity
Not Before: Apr 27 07:00:40 2025 GMT
Not After : Apr 28 07:00:40 2025 GMT
Subject: CN=a53746f3ecee56c4b93a995da836489137862cfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:3c:03:d2:eb:c8:ed:42:f0:80:c2:f4:a1:91:
42:95:93:c3:be:fd:07:23:2a:c5:73:97:91:45:a7:
45:d0:15:bf:a2:dd:86:7c:c4:c5:40:17:c7:28:5e:
93:88:6e:dc:71:cb:32:0d:58:a6:13:6d:27:ee:14:
09:94:23:0e:5a:25:c2:b3:87:0f:cf:77:0d:e6:37:
03:7d:11:cc:7f:f6:1f:14:f3:66:67:26:ac:d1:53:
78:88:3c:10:ce:4b:45:50:22:bd:24:11:a7:89:44:
1d:d0:ee:27:6e:60:cf:8e:ff:7d:04:bc:23:54:5d:
50:64:97:aa:35:53:35:75:6a:e0:1b:b7:18:5f:4a:
55:6e:0e:c3:c4:83:13:d9:af:e5:a5:65:34:c5:cf:
c5:83:08:59:40:fc:74:92:5c:1e:c8:69:a2:81:08:
67:d2:39:73:43:4c:b7:3b:0e:ab:02:09:81:ef:ec:
41:71:2f:59:d6:0c:e4:11:9f:5d:00:97:4d:13:66:
f9:35:4d:f4:10:c5:07:35:85:57:63:a5:df:20:e8:
27:b9:97:e2:b6:df:cc:18:37:37:da:bf:c9:e6:c0:
4e:ad:c6:eb:0b:39:b3:ff:27:8c:c3:10:92:b1:93:
29:3f:1d:82:5a:85:69:c6:72:5c:71:95:74:ef:ef:
eb:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:37:46:F3:EC:EE:56:C4:B9:3A:99:5D:A8:36:48:91:37:86:2C:FD
X509v3 Authority Key Identifier:
keyid:06:F3:D7:00:98:2A:F9:AC:1B:AF:E4:F2:AA:71:84:4A:D0:07:59:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BvPXAJgq-awbr-TyqnGEStAHWR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:f7:dc:67:95:0f:85:08:c4:c4:a0:80:50:90:ed:03:c9:24:
f5:c6:16:f5:2c:29:04:bf:41:11:5f:70:7e:23:ab:02:8f:3e:
30:c8:eb:65:3e:6c:8e:cf:a7:ab:5b:ca:2f:6a:ca:9f:81:dd:
69:6e:38:b1:fd:26:2b:f3:22:09:09:b8:24:e3:e3:c9:1f:e0:
34:dc:1e:02:52:98:4d:8e:e6:67:3a:dd:19:78:12:26:b0:95:
0f:27:b0:53:39:38:0c:45:8c:3e:69:63:a4:6d:36:af:fa:86:
9d:25:e7:84:7c:fc:ed:6d:16:03:b4:5b:91:64:35:ed:16:f8:
6e:de:47:c6:d8:8b:62:84:4d:6f:aa:4f:11:43:42:f5:0b:6b:
62:9e:a9:f4:8b:66:41:a1:2e:9b:21:30:a0:2a:69:ac:dc:16:
72:cc:97:77:1a:18:c7:0c:88:95:8b:d7:b7:3d:ad:d7:c4:63:
cf:e4:20:d2:e6:15:89:a2:b7:3c:75:36:d1:0e:56:38:b3:2f:
6d:5f:7a:a0:a2:0c:b4:74:31:de:b4:07:35:34:71:e0:b2:0f:
bb:48:87:6f:bf:7d:d1:26:27:1c:3d:66:30:e9:77:8a:b8:5b:
e9:8e:4f:10:20:45:e6:18:28:1d:31:d4:43:7d:55:8c:c4:b0:
c1:5d:c1:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:17:34 2025 by rpki-client