Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
File: BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft (raw, json)
Hash identifier: 0S667oL3wAERH9gBmoNiNdPvGcSkvglvufPLMIJNkXQ=
Subject key identifier: 67:D5:23:9E:B1:5A:36:16:5C:9C:3F:F4:6A:61:4D:09:BE:46:28:B2
Authority key identifier: 07:35:DA:A8:CF:E2:5D:D1:2A:2C:26:E0:FF:CC:E9:76:36:74:8E:BD
Certificate issuer: /CN=0735daa8cfe25dd12a2c26e0ffcce97636748ebd
Certificate serial: 01968B133E1E05168D6EA0CF4180F60171DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
Manifest number: 1518
Signing time: Thu 01 May 2025 09:00:16 +0000
Manifest this update: Thu 01 May 2025 09:00:16 +0000
Manifest next update: Fri 02 May 2025 09:00:16 +0000
Files and hashes: 1: BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl (hash: 5zCzSeTen0sYAukNZhqHaFsF3So06BsoVZQ1ZeX2LnY=)
2: x6seRwBOq_CRZGJqhRd1EBp_kiI.roa (hash: rR2gIHJRwQudNQFzsP+C+tD9iC/4YNN6FWVD4AJ320s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8b:13:3e:1e:05:16:8d:6e:a0:cf:41:80:f6:01:71:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0735daa8cfe25dd12a2c26e0ffcce97636748ebd
Validity
Not Before: May 1 09:00:16 2025 GMT
Not After : May 2 09:00:16 2025 GMT
Subject: CN=67d5239eb15a36165c9c3ff46a614d09be4628b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:2f:3e:b5:35:41:0f:d1:6d:71:06:6d:54:b8:
af:3c:ed:bd:f6:08:e8:0f:12:00:7c:e7:04:71:d4:
ff:94:c2:f0:bb:9b:7e:3c:14:cd:f5:d8:92:97:82:
7b:64:a1:34:4e:e4:23:e2:42:7d:df:3e:b5:85:31:
71:87:55:75:64:42:db:b5:53:5c:0b:75:f4:50:74:
bb:9a:d5:18:b0:2c:7c:7b:23:2d:7f:b8:b5:00:40:
41:4e:1e:f4:a3:75:a1:f0:df:62:fb:6d:b2:cb:16:
e8:ae:fa:2e:fa:9c:84:1f:ac:40:5f:a8:3b:eb:ef:
ac:07:a4:4c:8d:3b:40:f0:5e:8a:f1:46:dd:76:8f:
92:b7:c1:ec:8f:9e:ea:04:c3:b0:9c:55:57:f1:14:
ca:e4:eb:1a:60:1a:01:ee:b2:ba:93:37:ab:8d:9f:
ee:f8:b2:ac:28:8e:45:e3:82:3a:54:c0:94:1e:76:
16:8d:1b:cc:23:3e:fe:a1:2c:1a:dc:f5:ed:29:3c:
c3:b4:28:80:9a:d2:a9:ae:2e:fc:c3:21:14:cd:9f:
95:d1:be:41:0f:28:b8:93:db:38:19:b8:c3:58:93:
95:e0:95:d0:35:1c:fc:68:96:9d:7d:32:98:14:84:
ad:a4:fd:a4:29:b7:62:e8:47:23:48:83:a2:6a:22:
d0:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:D5:23:9E:B1:5A:36:16:5C:9C:3F:F4:6A:61:4D:09:BE:46:28:B2
X509v3 Authority Key Identifier:
keyid:07:35:DA:A8:CF:E2:5D:D1:2A:2C:26:E0:FF:CC:E9:76:36:74:8E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:32:99:30:7c:e3:85:ca:98:ae:bb:fa:4a:64:22:9e:36:33:
05:f7:71:e2:a1:b4:9b:16:b4:d1:d3:97:dd:d6:f7:2b:e7:65:
23:57:53:3b:bf:3c:a5:19:d7:56:27:88:37:68:62:54:d0:16:
fb:f7:67:c0:71:d4:22:10:c3:2a:0e:af:9d:78:ba:cb:12:9f:
1a:f4:ed:50:83:19:29:49:5a:5f:ac:ab:3e:c4:10:c9:58:83:
b3:05:42:17:4d:f6:11:ca:03:c2:7f:b7:2e:a4:f6:55:76:f3:
47:d8:e3:35:d2:aa:1e:1d:cd:a0:2d:f9:a8:b1:5e:ad:6c:5c:
ae:d8:19:77:66:2c:66:a6:0b:73:6a:c8:ee:16:74:fa:ab:0e:
13:ad:ae:a7:7c:8a:0f:14:1d:64:54:dc:a2:2d:01:49:86:f3:
02:33:13:f5:73:f2:b0:e0:db:cb:84:d3:ef:5e:f5:fa:7f:a9:
79:40:1f:36:bc:82:ec:37:8b:5f:e2:3d:72:36:1a:18:2c:c0:
cd:a6:12:7d:7a:dc:d0:4d:eb:8b:98:5f:20:ae:38:d6:d0:9f:
a5:51:27:c8:86:cc:29:05:d2:72:7d:cd:40:3f:de:c8:9c:8a:
7c:7c:e2:23:83:7c:be:9f:7a:25:e8:f6:a2:de:3f:cc:f8:88:
c8:e7:34:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaLEz4eBRaNbqDPQYD2AXHdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3MzVkYWE4Y2ZlMjVkZDEyYTJjMjZlMGZmY2NlOTc2MzY3
NDhlYmQwHhcNMjUwNTAxMDkwMDE2WhcNMjUwNTAyMDkwMDE2WjAzMTEwLwYDVQQD
Eyg2N2Q1MjM5ZWIxNWEzNjE2NWM5YzNmZjQ2YTYxNGQwOWJlNDYyOGIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6i8+tTVBD9FtcQZtVLivPO299gjo
DxIAfOcEcdT/lMLwu5t+PBTN9diSl4J7ZKE0TuQj4kJ93z61hTFxh1V1ZELbtVNc
C3X0UHS7mtUYsCx8eyMtf7i1AEBBTh70o3Wh8N9i+22yyxborvou+pyEH6xAX6g7
6++sB6RMjTtA8F6K8Ubddo+St8Hsj57qBMOwnFVX8RTK5OsaYBoB7rK6kzerjZ/u
+LKsKI5F44I6VMCUHnYWjRvMIz7+oSwa3PXtKTzDtCiAmtKpri78wyEUzZ+V0b5B
Dyi4k9s4GbjDWJOV4JXQNRz8aJadfTKYFIStpP2kKbdi6EcjSIOiaiLQ7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGfVI56xWjYWXJw/9GphTQm+RiiyMB8GA1UdIwQY
MBaAFAc12qjP4l3RKiwm4P/M6XY2dI69MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnpYYXFNX2lYZEVxTENiZ184enBkalowanIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8yYTRiZjUtNDBjZi00NDdhLTk3ZTAt
Njc5Y2YwMjEwZDQ5LzEvQnpYYXFNX2lYZEVxTENiZ184enBkalowanIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS8yYTRiZjUtNDBjZi00NDdhLTk3ZTAtNjc5Y2YwMjEwZDQ5
LzEvQnpYYXFNX2lYZEVxTENiZ184enBkalowanIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsDKZMHzj
hcqYrrv6SmQinjYzBfdx4qG0mxa00dOX3db3K+dlI1dTO788pRnXVieIN2hiVNAW
+/dnwHHUIhDDKg6vnXi6yxKfGvTtUIMZKUlaX6yrPsQQyViDswVCF032EcoDwn+3
LqT2VXbzR9jjNdKqHh3NoC35qLFerWxcrtgZd2YsZqYLc2rI7hZ0+qsOE62up3yK
DxQdZFTcoi0BSYbzAjMT9XPysODby4TT7171+n+peUAfNryC7DeLX+I9cjYaGCzA
zaYSfXrc0E3ri5hfIK441tCfpVEnyIbMKQXScn3NQD/eyJyKfHziI4N8vp96Jej2
ot4/zPiIyOc0rg==
-----END CERTIFICATE-----
Generated at Thu May 1 17:10:54 2025 by rpki-client