Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft
File: bHO9JP2DCIa_otKWFBbSGF3jN3I.mft (raw, json)
Hash identifier: REQtAg93JyVoQ1tfPfesIpJlXAbzlJSG3Z3ED0ehXHs=
Subject key identifier: A7:82:D0:EE:A7:63:FC:66:20:32:5F:86:3E:31:CD:46:34:53:C5:A4
Authority key identifier: 6C:73:BD:24:FD:83:08:86:BF:A2:D2:96:14:16:D2:18:5D:E3:37:72
Certificate issuer: /CN=6c73bd24fd830886bfa2d2961416d2185de33772
Certificate serial: 01968391199BB5272657431E61CD7BA5484A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft
Manifest number: 0862
Signing time: Tue 29 Apr 2025 22:00:46 +0000
Manifest this update: Tue 29 Apr 2025 22:00:46 +0000
Manifest next update: Wed 30 Apr 2025 22:00:46 +0000
Files and hashes: 1: bHO9JP2DCIa_otKWFBbSGF3jN3I.crl (hash: sj95j/rQlZRYN6XNg49s8Qe0/J/5J3rRK42y96F2LeQ=)
2: qHEAWZ6N3iBzcK7IIzIjqot58Rk.roa (hash: n8u6jtIG9RsDk/UjBbBpLB8puiC2i8ky96Vt7ctj0eY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft
rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:91:19:9b:b5:27:26:57:43:1e:61:cd:7b:a5:48:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c73bd24fd830886bfa2d2961416d2185de33772
Validity
Not Before: Apr 29 22:00:46 2025 GMT
Not After : Apr 30 22:00:46 2025 GMT
Subject: CN=a782d0eea763fc6620325f863e31cd463453c5a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e7:4f:9b:1e:63:86:09:b4:6e:66:25:49:56:
62:df:ee:5d:ad:9c:57:ce:f5:d4:eb:49:5c:5c:c5:
97:8e:f7:8e:b7:be:ea:37:45:5d:f3:4e:f9:76:94:
e0:f0:00:ed:c0:70:0e:4f:49:d2:bc:d7:5a:36:e2:
63:21:e3:4d:22:b8:81:e5:a4:6b:d7:dd:ad:8c:9f:
90:32:20:7b:d1:58:12:7c:4f:2c:1b:cd:bf:55:e9:
aa:90:6b:17:20:f9:76:6c:ed:af:cd:98:12:a2:29:
c3:7f:0f:52:85:43:6f:33:82:fd:17:39:0b:97:78:
38:92:cb:84:f3:65:a0:ee:cf:a8:31:80:5a:5a:4e:
30:00:2c:ff:7a:7c:da:ae:b4:a8:4e:b3:6d:5e:88:
02:b2:57:32:c8:b9:ac:45:81:6b:98:99:f9:73:e0:
03:31:27:1c:31:84:79:1b:1f:22:5b:76:48:72:60:
0e:52:ae:6e:16:66:c0:57:87:30:bb:f1:2c:f7:fd:
8d:4f:0c:ae:6e:c4:6d:da:a7:54:c4:54:e4:53:a5:
d8:19:e8:a7:e3:d3:32:42:b1:a9:bd:6b:23:54:b0:
66:bf:d4:08:8d:e8:2d:7a:c1:16:4c:16:e9:a2:5b:
91:d6:48:a2:1d:95:b3:73:e1:2d:dc:1b:04:81:32:
df:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:82:D0:EE:A7:63:FC:66:20:32:5F:86:3E:31:CD:46:34:53:C5:A4
X509v3 Authority Key Identifier:
keyid:6C:73:BD:24:FD:83:08:86:BF:A2:D2:96:14:16:D2:18:5D:E3:37:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:ae:52:8c:ad:98:9b:a2:4a:d0:2b:05:c1:9b:20:32:1d:d5:
29:d7:19:67:d2:b4:22:b1:3c:ee:f9:6e:41:79:fd:50:51:18:
05:56:05:7e:9d:33:51:d7:55:26:ac:d2:a0:51:26:05:3f:7d:
58:f0:b9:41:b2:1b:22:26:fd:e4:e7:37:5a:4e:97:c0:45:e7:
f4:25:72:04:a1:62:9c:fc:bf:d2:14:be:f0:94:74:06:ec:b1:
c6:a0:32:28:2c:6b:0e:4b:7f:7c:36:05:71:74:1d:39:3f:99:
56:d2:29:29:b6:5e:a3:a6:da:83:7b:b2:2a:69:37:3c:05:72:
95:be:68:00:6f:1b:09:5d:5b:f1:ef:0e:39:d5:86:2e:9f:81:
4c:43:ad:c2:b3:6f:db:7b:26:f5:91:21:74:8b:49:ac:a1:02:
79:dd:65:1b:f1:69:f4:00:64:32:b8:f6:d1:3c:32:8c:e0:2d:
a5:0a:32:83:f5:92:3d:07:96:74:6a:f4:2e:aa:02:54:80:07:
60:7e:00:9a:8b:60:2f:15:b9:28:be:f8:7e:2d:92:1a:dd:33:
2b:02:29:36:2d:51:98:39:6a:11:47:e2:f3:26:3e:b2:f2:e0:
ec:c1:f5:69:3e:45:77:f8:35:ff:c6:58:87:03:4f:12:eb:c9:
4d:b8:9d:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 00:16:17 2025 by rpki-client