Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.mft
File: Bs5bKEZrknQlJgMTktlL8aVY6EQ.mft (raw, json)
Hash identifier: wVcO6VLk8G3xgx3W9b6Dm1exSbqcYe59/BX8g96QxME=
Subject key identifier: FF:88:F0:AE:16:BF:C9:AB:3C:10:8B:B3:A1:C8:4E:0B:09:EB:0E:16
Authority key identifier: 06:CE:5B:28:46:6B:92:74:25:26:03:13:92:D9:4B:F1:A5:58:E8:44
Certificate issuer: /CN=06ce5b28466b92742526031392d94bf1a558e844
Certificate serial: 01978433436A7025838A459451D931044BC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bs5bKEZrknQlJgMTktlL8aVY6EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.mft
Manifest number: 12DA
Signing time: Wed 18 Jun 2025 18:00:41 +0000
Manifest this update: Wed 18 Jun 2025 18:00:41 +0000
Manifest next update: Thu 19 Jun 2025 18:00:41 +0000
Files and hashes: 1: Bs5bKEZrknQlJgMTktlL8aVY6EQ.crl (hash: mNt0KewUYKsR3BUcBFeg2L9MLDjKXSKs/FwriUuXmRM=)
2: ELJxyLmNkAO4LH2akysrOoq_xxw.roa (hash: B5RpIzdoHJeEU/i0KYBMhNoTeQCE20VYj0EU96xzN7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Bs5bKEZrknQlJgMTktlL8aVY6EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 18:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:84:33:43:6a:70:25:83:8a:45:94:51:d9:31:04:4b:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06ce5b28466b92742526031392d94bf1a558e844
Validity
Not Before: Jun 18 18:00:41 2025 GMT
Not After : Jun 19 18:00:41 2025 GMT
Subject: CN=ff88f0ae16bfc9ab3c108bb3a1c84e0b09eb0e16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:54:0e:4b:3c:8e:6a:cf:ef:67:26:ef:a9:ed:
29:3d:17:9b:7f:be:87:f4:eb:48:d8:3e:e8:02:71:
23:26:ee:4c:46:ce:98:f0:06:b8:3e:c2:7a:e9:0d:
6f:e5:da:84:21:87:c9:42:33:84:da:ae:54:8d:67:
25:5a:ac:0a:1d:19:1f:8a:fe:4b:ba:e7:b6:51:74:
b6:39:50:8f:2e:27:a0:95:68:bd:2f:ee:cf:a9:4c:
20:d4:d2:2a:b7:73:f2:be:b4:57:2e:03:66:0d:9c:
e1:62:57:b3:3d:1f:d2:81:bb:2d:64:0d:2b:85:93:
fe:aa:22:59:4d:e6:cc:6d:30:65:ea:95:28:41:6a:
b7:18:24:4c:7d:bc:dc:16:d0:3a:e9:1a:7c:48:5b:
3f:a8:b6:af:ce:84:81:52:2a:06:ff:e2:a6:42:1b:
06:1b:56:80:0f:f4:a7:86:a6:95:97:d5:03:08:92:
86:d0:74:f5:ef:73:90:4c:0f:70:68:6f:51:68:2e:
10:9c:73:5f:23:37:0a:cd:6a:34:bb:4e:e2:af:96:
39:cf:fd:98:2a:7b:e5:92:d1:0d:88:bb:e3:fd:ef:
a5:41:bb:f6:d0:62:1e:46:9e:fc:e7:e4:b5:17:3d:
4d:3a:1b:d7:94:07:70:f7:1c:ec:83:87:1a:da:73:
2e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:88:F0:AE:16:BF:C9:AB:3C:10:8B:B3:A1:C8:4E:0B:09:EB:0E:16
X509v3 Authority Key Identifier:
keyid:06:CE:5B:28:46:6B:92:74:25:26:03:13:92:D9:4B:F1:A5:58:E8:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bs5bKEZrknQlJgMTktlL8aVY6EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:8c:be:f3:d7:cd:fb:03:71:ab:2f:42:85:8f:14:39:93:5d:
50:0e:8e:51:ab:0e:28:fd:f4:59:bb:a8:88:10:25:da:b9:ec:
c1:eb:75:8c:15:69:9d:16:c5:be:fa:ba:94:c0:4d:95:bb:4e:
71:b7:6d:5d:b8:6f:d9:8b:87:44:44:3e:54:b3:d8:e5:61:01:
f6:7a:28:25:70:a9:55:93:33:7d:82:aa:5f:2c:ad:af:28:45:
3b:03:6b:25:d8:1a:fa:bf:bf:ba:11:61:15:58:b9:1a:2d:7f:
f6:59:53:e5:21:b2:e0:00:1f:78:3b:1f:1c:0d:72:8b:5a:84:
1f:6e:b7:83:d2:de:7f:25:89:e2:1b:6a:03:f4:d4:ff:86:f3:
d1:40:06:a4:1c:03:6c:33:35:3f:f4:71:71:1b:d3:81:79:6f:
bc:ce:a7:51:40:22:1c:69:6c:d4:a0:93:87:da:a9:7a:62:3d:
e1:39:3b:f5:6f:92:ce:46:76:b6:e9:34:4c:d4:8b:01:c7:83:
d0:bc:2c:d3:54:33:b6:d4:ee:22:bc:eb:3c:1e:51:ec:d2:03:
3e:f7:62:4f:c7:45:2d:cf:33:a8:55:82:e7:87:b6:a8:09:5d:
8f:b2:76:34:5b:58:8b:69:ec:29:13:db:e9:ab:69:ca:db:de:
38:4e:96:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 05:09:32 2025 by rpki-client