Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
File: rKbwaDzHS63SOoFAw4XxyBziTfc.mft (raw, json)
Hash identifier: kz6O9yuudxnBf+P67I0KY56pOiXNrsR/FxyM4r/SSsA=
Subject key identifier: BE:9D:8F:57:FA:BE:DC:AE:C0:31:52:2B:5B:4B:4C:6E:0E:66:67:21
Authority key identifier: AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7
Certificate issuer: /CN=aca6f0683cc74badd23a8140c385f1c81ce24df7
Certificate serial: 019683FFBC073E91A1BE92BD45571F21D8E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
Manifest number: 0BBF
Signing time: Wed 30 Apr 2025 00:01:37 +0000
Manifest this update: Wed 30 Apr 2025 00:01:37 +0000
Manifest next update: Thu 01 May 2025 00:01:37 +0000
Files and hashes: 1: 0vFnPnyD0rk0NBq-vHcuUjmsih4.roa (hash: 8C+9WOepMdgxD+Xcj7Wjy9LCISmYrp2hucRDb6Vj6WM=)
2: rKbwaDzHS63SOoFAw4XxyBziTfc.crl (hash: K/Y32vKX48gSvqVp4+ecrJKFU73KuLXCK7KoHk7CT9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:ff:bc:07:3e:91:a1:be:92:bd:45:57:1f:21:d8:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca6f0683cc74badd23a8140c385f1c81ce24df7
Validity
Not Before: Apr 30 00:01:37 2025 GMT
Not After : May 1 00:01:37 2025 GMT
Subject: CN=be9d8f57fabedcaec031522b5b4b4c6e0e666721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6e:45:f2:61:b7:44:fe:07:a3:f5:ec:53:75:
6c:ab:59:81:5e:24:93:76:30:2d:90:6d:6e:92:e2:
5f:48:7c:0a:7d:24:53:53:ae:12:df:bd:bb:3e:c1:
9c:fc:45:ca:ba:12:87:1c:e5:c2:77:d5:9c:7d:33:
2f:a6:24:bb:e7:51:4d:03:b7:75:b6:6d:a0:24:01:
32:b5:3e:da:e5:85:ca:ab:38:27:d7:e2:5f:e2:72:
95:44:7a:a9:35:88:d7:b9:0c:dd:0b:b7:12:78:10:
d0:61:2a:5c:11:80:2a:83:11:7c:21:6b:f0:ed:55:
33:23:51:21:40:17:99:11:65:4d:f7:24:f7:2d:24:
3b:68:20:a7:d0:1e:cb:87:da:03:c5:6c:ad:a3:a9:
92:cc:97:52:b9:71:e3:15:9f:30:0e:29:10:11:e7:
de:f3:46:26:66:2c:a2:79:f7:fe:a4:7d:4d:2f:f9:
21:44:c3:9c:3d:4a:d9:83:1d:69:51:03:7e:a8:4a:
02:0b:c2:89:4e:e4:ee:04:c8:b7:19:ad:1d:81:4b:
84:bb:d3:c7:33:19:86:f4:80:c1:6d:62:e4:5a:15:
b1:e2:b8:b4:63:f4:a0:35:a4:b5:36:9c:19:b3:51:
2c:a0:d0:dc:60:d9:b8:8c:de:a1:f7:55:87:db:49:
29:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:9D:8F:57:FA:BE:DC:AE:C0:31:52:2B:5B:4B:4C:6E:0E:66:67:21
X509v3 Authority Key Identifier:
keyid:AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:6d:09:4a:b0:d5:4e:9b:96:b3:9d:52:0e:65:7d:27:59:d0:
cf:39:83:61:18:17:a4:45:47:bb:1d:b1:89:22:0f:83:d2:90:
69:a1:46:5b:03:da:62:40:f4:9e:e4:b8:e0:b5:be:56:29:11:
df:cb:2f:8a:cb:bb:da:6d:85:09:9c:51:a8:2e:b5:7a:16:4c:
dd:c9:80:ed:59:fd:17:91:24:b8:f0:31:ff:0d:87:67:c4:3c:
80:6d:e7:b3:b1:dc:78:4f:88:c8:b5:ff:95:e1:1a:14:98:9c:
c5:1a:0b:ae:dd:1b:3c:3a:0d:6b:05:e6:d9:ec:de:98:9d:d3:
16:b6:10:e9:99:7d:53:fb:56:73:28:3f:fb:32:10:7b:bc:75:
da:1c:14:c9:a6:22:72:aa:d4:97:80:c7:4f:73:18:c0:71:b2:
2f:59:a6:08:fa:32:59:07:df:6a:ac:07:0c:13:66:c6:d8:e6:
d7:7c:e6:69:91:8f:f6:e2:66:bf:72:fe:68:8c:5e:2e:07:ca:
73:84:4c:88:88:9e:4c:60:f2:d6:00:ea:0b:04:49:e6:79:bf:
e2:35:2d:7b:29:3f:60:50:94:1c:ce:bc:47:6e:ec:06:a8:77:
ec:c4:f2:35:e3:b5:97:05:a7:e7:dd:c6:53:c6:1e:8e:8c:18:
8e:21:c2:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 10:44:06 2025 by rpki-client