Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
File: bSID7B5abCZsyjm5rxq-LLILGVo.mft (raw, json)
Hash identifier: r03oZC/epR0uEQClLm02rE5XcAHqVuOIlr42+FEqS5o=
Subject key identifier: B4:72:8E:2B:B8:E1:F3:11:BD:30:8C:CA:9F:7D:72:F1:38:4B:45:2C
Authority key identifier: 6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
Certificate issuer: /CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Certificate serial: 019673E6E3DA8902EEAE2EB1BF7728E822DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
Manifest number: 150D
Signing time: Sat 26 Apr 2025 21:00:33 +0000
Manifest this update: Sat 26 Apr 2025 21:00:33 +0000
Manifest next update: Sun 27 Apr 2025 21:00:33 +0000
Files and hashes: 1: bSID7B5abCZsyjm5rxq-LLILGVo.crl (hash: MAOJeIPBd/Mrgql/pv/q0xTHd67k2L8RzjG0SZFltpI=)
2: h9zvvPI2dBY4jNWQKpPxUoE047A.roa (hash: PkWglafHXDxF9KIzM61BgLg1omYPGots3ZThAKgjHP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:e6:e3:da:89:02:ee:ae:2e:b1:bf:77:28:e8:22:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Validity
Not Before: Apr 26 21:00:33 2025 GMT
Not After : Apr 27 21:00:33 2025 GMT
Subject: CN=b4728e2bb8e1f311bd308cca9f7d72f1384b452c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:9a:c4:02:c1:c6:72:22:20:1a:e0:bf:7f:a4:
c3:42:11:8e:6e:c5:68:23:9e:80:df:67:c0:30:a3:
a0:63:1c:b1:d7:97:5e:be:bb:0b:c8:0a:b7:3d:ce:
35:d2:1e:b4:05:f0:4c:cf:f5:89:98:50:20:34:fe:
8f:84:9d:0d:4c:d9:f3:56:f9:90:7c:6e:c3:1f:76:
93:45:fb:a0:df:50:32:d6:8e:82:de:56:a3:b0:43:
c8:bf:4a:99:15:0a:6f:86:2c:77:70:96:1e:81:f6:
c5:17:37:f4:17:ed:a2:f2:86:78:0e:b6:2f:53:60:
89:c3:66:0e:57:68:d9:a1:16:00:0c:eb:7d:3f:5f:
1f:9c:42:1d:48:68:ad:4f:a4:ec:ee:df:31:82:17:
6e:df:65:37:49:c5:81:4e:db:7c:c6:42:80:5b:30:
b3:06:83:26:f4:4b:7f:a0:cd:ec:ee:3a:10:76:5f:
df:cf:ff:71:69:55:20:00:c3:ad:7a:01:c8:a5:f8:
7b:14:c7:3d:83:51:4d:d1:b6:c0:41:98:44:14:6e:
41:29:71:27:a8:0e:ff:f1:b0:c8:02:4b:a9:c0:1e:
ec:ab:a2:b8:48:9d:2d:d3:cb:89:14:05:15:51:27:
0d:26:69:5f:44:b3:f0:73:d6:25:4d:ca:1a:dd:ca:
ba:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:72:8E:2B:B8:E1:F3:11:BD:30:8C:CA:9F:7D:72:F1:38:4B:45:2C
X509v3 Authority Key Identifier:
keyid:6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:b0:76:40:17:71:16:63:ef:6e:2f:50:93:a0:9b:70:0f:90:
ea:32:e5:d1:11:5a:06:60:36:72:29:fa:ac:1b:b8:3d:91:80:
97:a5:c3:9a:66:e3:7e:33:d2:0e:1c:ce:b2:71:6f:e0:a7:a9:
1c:ce:15:48:5a:26:59:1e:85:0a:08:1f:ee:83:71:ab:be:e0:
fb:ad:9b:68:ea:63:37:fd:80:81:49:c0:04:1c:75:dc:6e:ea:
e0:ff:8a:d9:c1:3b:b6:7f:1b:50:77:87:45:56:f5:1d:4b:fc:
ed:6b:54:27:82:4d:31:03:3a:0f:1a:9a:cb:e7:76:ca:82:43:
c5:1c:c7:3c:0b:a1:5b:b6:5a:2c:1a:d0:34:ef:82:4c:2b:e7:
44:6f:31:31:f2:be:86:99:a8:e5:1c:5a:9c:78:41:0d:ec:f7:
bd:5b:85:84:27:b9:04:5b:ed:8c:06:81:dc:9e:25:4b:98:b0:
f3:d4:87:1e:8c:9b:02:b7:98:f4:0d:53:33:77:79:1e:db:b8:
75:a0:47:32:65:57:ef:08:35:32:f9:a1:00:79:2a:45:86:76:
4e:13:60:41:2a:94:56:44:03:8b:0c:af:45:22:01:82:e1:8c:
83:6b:3c:f1:7a:dd:8e:9c:6c:4d:cc:eb:6b:04:59:3a:ea:58:
fb:5c:27:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:41:36 2025 by rpki-client