Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
File: BmVsWtlzg3LVTAN-OX81vpqpJNs.mft (raw, json)
Hash identifier: yEryRcrXCbBGqLeyFwZ4aB5+9Vh0ZNZ/uyKtv6EN3u4=
Subject key identifier: 07:1F:B6:D7:BD:4C:AE:7D:75:AC:59:5F:1A:D2:42:6E:72:88:03:21
Authority key identifier: 06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
Certificate issuer: /CN=06656c5ad9738372d54c037e397f35be9aa924db
Certificate serial: 01967DFCC688127549D0F4D23290C6AA4579
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
Manifest number: E1
Signing time: Mon 28 Apr 2025 20:00:40 +0000
Manifest this update: Mon 28 Apr 2025 20:00:40 +0000
Manifest next update: Tue 29 Apr 2025 20:00:40 +0000
Files and hashes: 1: BOJlFcCNxlleMHUbR9TjmHCDeZc.roa (hash: ujITDNQNM0fpryFmlYjLZ0Q/wbil/+me/IAh88EFBg8=)
2: BmVsWtlzg3LVTAN-OX81vpqpJNs.crl (hash: JDXqrAckiPhdTL9qgwhk7rtiIJ4Kzj0vpHUSlg/WsHg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 20:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:fc:c6:88:12:75:49:d0:f4:d2:32:90:c6:aa:45:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06656c5ad9738372d54c037e397f35be9aa924db
Validity
Not Before: Apr 28 20:00:40 2025 GMT
Not After : Apr 29 20:00:40 2025 GMT
Subject: CN=071fb6d7bd4cae7d75ac595f1ad2426e72880321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:be:25:31:cd:db:f9:91:1e:eb:8e:1b:f7:2e:
e2:69:6b:ea:6d:92:89:16:da:20:a9:88:8b:b2:63:
30:28:d1:5e:c7:17:9a:03:fd:9e:b8:30:ee:d8:8e:
04:f9:80:f2:dd:64:94:8e:bf:9b:bd:c6:9e:47:fe:
64:45:b6:39:08:9d:f0:13:04:77:8a:51:15:0f:db:
8d:a4:76:d3:7a:e0:65:e0:c3:ed:5b:9d:e2:9a:14:
66:a9:a0:9f:34:7e:cd:0e:09:de:ce:ec:00:44:56:
b6:5a:ac:5d:9c:26:d8:5a:ed:2c:f1:6b:b7:94:a6:
f6:56:c6:e2:1a:e0:04:1b:d9:5f:c4:55:e7:dd:86:
53:58:2a:14:b1:62:b5:3c:26:18:e9:39:fa:44:9e:
91:9d:3f:38:f9:0a:7a:2d:45:36:6d:c9:31:f3:c4:
9c:6e:b9:0f:a8:f4:13:53:fc:b9:7f:51:3f:a8:07:
9b:cc:1a:10:97:56:d6:b6:d4:17:c5:b8:29:6c:f7:
c5:b7:2e:a9:ae:b1:68:90:24:bd:75:28:46:03:45:
63:9f:6a:3e:27:68:e7:d3:a6:83:ce:97:0d:34:55:
61:78:5b:b2:ef:3a:74:ae:ee:69:18:ba:b7:c3:7e:
a6:59:c6:eb:63:53:47:df:6d:0f:2e:37:f2:7d:78:
ba:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:1F:B6:D7:BD:4C:AE:7D:75:AC:59:5F:1A:D2:42:6E:72:88:03:21
X509v3 Authority Key Identifier:
keyid:06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:4c:1d:8b:95:e0:4f:52:8f:1f:0a:da:0f:9c:92:09:a3:e5:
29:fd:5f:a6:a1:54:58:1e:8a:b0:4b:00:d3:91:8b:d6:e7:bd:
ee:c3:7d:4d:e3:11:a2:a0:a0:fa:89:1d:d2:57:22:e2:7f:4a:
ce:cf:12:bb:0b:a0:34:65:ed:ca:6c:1a:8f:13:be:71:9b:e9:
ba:84:2c:94:6d:9d:8b:58:21:d0:98:18:22:de:3d:88:e8:2c:
b4:f5:21:c6:bf:f7:39:03:b9:8f:3c:85:ce:8b:4c:52:97:bb:
e4:df:22:6d:d7:20:df:57:11:1c:59:e3:b0:5a:58:59:d3:c6:
2b:e5:ce:c9:a8:ed:78:18:cd:a6:b7:00:9a:8f:db:8b:83:41:
5f:16:2b:df:0e:51:a8:c9:e5:c1:59:6b:f3:44:83:2b:89:0e:
ad:41:35:10:49:47:fb:62:6b:b5:77:1f:7e:37:be:04:8f:22:
4b:61:4d:a7:28:56:cd:d3:4d:0a:31:fe:3e:96:42:09:fd:5f:
f9:e5:6f:cd:73:3e:d5:7a:9d:7e:60:4b:25:ed:7a:56:69:bf:
4e:ec:0c:10:ac:ee:2a:58:6f:91:96:69:2a:3d:0c:9c:08:d8:
12:f2:07:c9:74:69:66:ff:7f:1f:b5:ac:0d:12:08:d4:2c:31:
ba:41:93:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 02:27:58 2025 by rpki-client