Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
File: BGelYhGyHprHzcj7Y58xCpLCEEw.mft (raw, json)
Hash identifier: bU3yhC6wUHphWdMm6GW/mADoiBCIl4jXjdXwF1iSciU=
Subject key identifier: EF:B2:88:CC:28:A7:BF:E3:5C:96:3C:86:02:AD:29:F6:5D:37:5E:3C
Authority key identifier: 04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C
Certificate issuer: /CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c
Certificate serial: 0196783199B06D65B584DC89CD0634AEE797
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
Manifest number: 0BF1
Signing time: Sun 27 Apr 2025 17:00:38 +0000
Manifest this update: Sun 27 Apr 2025 17:00:38 +0000
Manifest next update: Mon 28 Apr 2025 17:00:38 +0000
Files and hashes: 1: BGelYhGyHprHzcj7Y58xCpLCEEw.crl (hash: 0I8avJhINtHPeRKJlVCI67Ra2rxbswt9pj60GHuHOzM=)
2: vBbw-4MxcReP3ao6MqHjBCu3GcI.roa (hash: W28uSnDMlGVkrCQsXwIvXwkvC/TrS+441MfK9XqL5Zo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:31:99:b0:6d:65:b5:84:dc:89:cd:06:34:ae:e7:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c
Validity
Not Before: Apr 27 17:00:38 2025 GMT
Not After : Apr 28 17:00:38 2025 GMT
Subject: CN=efb288cc28a7bfe35c963c8602ad29f65d375e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c2:82:67:a6:f1:08:9d:7a:4d:f0:fe:d6:08:
91:4d:d6:27:c4:14:fb:1e:3a:c4:de:4e:84:04:02:
85:4d:ea:1d:aa:5e:20:90:2c:c7:52:62:71:54:b8:
ca:12:f3:76:0d:26:9f:55:c4:5a:e4:b0:26:49:53:
25:9b:5c:48:91:6a:bb:ed:ef:80:02:60:6d:2d:ac:
41:44:7a:e1:89:0d:32:69:06:c9:02:27:a9:60:ea:
78:32:e9:b3:de:63:eb:e6:c7:37:83:7d:1c:9a:86:
ad:05:b8:42:b8:c8:40:8c:eb:cd:60:b3:74:df:fe:
12:c9:0e:17:d2:91:67:f4:54:63:1e:a9:79:a2:c8:
a3:36:e2:22:95:91:4a:75:f2:47:7c:70:ca:86:44:
2e:fd:48:ed:74:6c:c6:31:28:0f:e9:7f:d1:d7:36:
ee:d9:07:53:52:f5:2b:13:dc:0f:2a:47:27:43:8f:
23:30:e2:4d:1e:a7:c9:ad:01:dd:fb:38:d2:5b:f3:
a9:17:c2:4d:e5:48:85:b5:f8:a5:a9:14:d4:54:df:
97:60:38:62:b7:65:6f:9e:ea:51:ff:46:2d:e4:cf:
29:42:a3:60:47:65:bb:f3:fb:73:d1:51:5d:16:99:
7f:0e:a0:1b:d2:ba:d9:d5:13:3b:ea:59:c5:4d:76:
9e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:B2:88:CC:28:A7:BF:E3:5C:96:3C:86:02:AD:29:F6:5D:37:5E:3C
X509v3 Authority Key Identifier:
keyid:04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:75:59:46:59:ee:7c:ae:8c:6e:0d:3c:55:5a:b9:c8:16:aa:
a0:63:8d:f4:82:c4:aa:07:31:44:28:b3:74:1b:50:5d:59:b7:
37:63:64:84:8d:90:bc:e0:34:e4:9c:7b:2c:3e:a7:7f:d7:02:
73:01:e4:cd:ea:28:14:08:3b:1e:70:c6:ef:1a:8f:13:e9:15:
09:cb:a9:5c:0e:27:5e:f7:bc:7a:42:52:29:65:29:2e:af:91:
b6:a2:3e:2c:d6:3c:88:04:63:76:e2:98:dd:3e:70:93:10:e4:
41:b4:90:e7:09:8c:f6:77:67:2f:e5:3e:1f:a6:01:60:93:6b:
a1:4b:3c:8a:d2:4c:19:7f:08:c9:f8:ec:f0:d6:e2:94:ab:8d:
9b:d9:84:35:c0:74:ae:06:6f:0d:6e:29:f1:31:18:a5:1c:37:
6f:8c:0e:46:df:f0:10:b6:38:ef:7c:9a:f5:e1:84:1f:69:ad:
b7:3f:67:54:81:cf:1d:de:0a:8f:90:f0:64:ea:e0:6b:1a:c2:
9c:64:b4:87:db:26:9a:8e:1a:71:e0:b7:3e:8f:b0:81:48:ed:
64:f9:6f:d1:0b:5e:6d:d8:5b:5c:ba:26:f1:8f:bf:47:e1:07:
3d:3f:03:e2:e8:d7:81:1c:0f:c4:86:97:03:65:af:f3:01:4f:
88:25:55:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ4MZmwbWW1hNyJzQY0rueXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0NjdhNTYyMTFiMjFlOWFjN2NkYzhmYjYzOWYzMTBhOTJj
MjEwNGMwHhcNMjUwNDI3MTcwMDM4WhcNMjUwNDI4MTcwMDM4WjAzMTEwLwYDVQQD
EyhlZmIyODhjYzI4YTdiZmUzNWM5NjNjODYwMmFkMjlmNjVkMzc1ZTNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMKCZ6bxCJ16TfD+1giRTdYnxBT7
HjrE3k6EBAKFTeodql4gkCzHUmJxVLjKEvN2DSafVcRa5LAmSVMlm1xIkWq77e+A
AmBtLaxBRHrhiQ0yaQbJAiepYOp4Mumz3mPr5sc3g30cmoatBbhCuMhAjOvNYLN0
3/4SyQ4X0pFn9FRjHql5osijNuIilZFKdfJHfHDKhkQu/UjtdGzGMSgP6X/R1zbu
2QdTUvUrE9wPKkcnQ48jMOJNHqfJrQHd+zjSW/OpF8JN5UiFtfilqRTUVN+XYDhi
t2VvnupR/0Yt5M8pQqNgR2W78/tz0VFdFpl/DqAb0rrZ1RM76lnFTXaeSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO+yiMwop7/jXJY8hgKtKfZdN148MB8GA1UdIwQY
MBaAFARnpWIRsh6ax83I+2OfMQqSwhBMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8wNDVjNGItYzBkNy00Nzc4LTlmNDQt
ODIzYWQyYzJmNWYxLzEvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC8wNDVjNGItYzBkNy00Nzc4LTlmNDQtODIzYWQyYzJmNWYx
LzEvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwHVZRlnu
fK6Mbg08VVq5yBaqoGON9ILEqgcxRCizdBtQXVm3N2NkhI2QvOA05Jx7LD6nf9cC
cwHkzeooFAg7HnDG7xqPE+kVCcupXA4nXve8ekJSKWUpLq+RtqI+LNY8iARjduKY
3T5wkxDkQbSQ5wmM9ndnL+U+H6YBYJNroUs8itJMGX8Iyfjs8NbilKuNm9mENcB0
rgZvDW4p8TEYpRw3b4wORt/wELY473ya9eGEH2mttz9nVIHPHd4Kj5DwZOrgaxrC
nGS0h9smmo4aceC3Po+wgUjtZPlv0QtebdhbXLom8Y+/R+EHPT8D4ujXgRwPxIaX
A2Wv8wFPiCVV6g==
-----END CERTIFICATE-----
Generated at Mon Apr 28 00:40:40 2025 by rpki-client