Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
File: bzipg89Dc6pJdJhasi1RTA9IHS4.mft (raw, json)
Hash identifier: j2UX6rnIgZofQLCOiZjYR9fFYnv9KzKUNdkwfvWzTnM=
Subject key identifier: 18:8D:A6:E8:B5:AA:3E:44:C0:72:7F:22:D4:E8:98:0D:15:71:86:15
Authority key identifier: 6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
Certificate issuer: /CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Certificate serial: 01968B4A1BC6C05192C20221869E687F230C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
Manifest number: 0167
Signing time: Thu 01 May 2025 10:00:11 +0000
Manifest this update: Thu 01 May 2025 10:00:11 +0000
Manifest next update: Fri 02 May 2025 10:00:11 +0000
Files and hashes: 1: HZb4ypfyyLknrNflDGCKDQospm0.roa (hash: DJb41fbhgLGXN4Umv3DyaNZTQa8ZY7nKkJ22hR0xLS4=)
2: bzipg89Dc6pJdJhasi1RTA9IHS4.crl (hash: NE0q9K2HU4kEhOPbuTlbWKPqVQMbqNuEf2gQ1nsBLCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8b:4a:1b:c6:c0:51:92:c2:02:21:86:9e:68:7f:23:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Validity
Not Before: May 1 10:00:11 2025 GMT
Not After : May 2 10:00:11 2025 GMT
Subject: CN=188da6e8b5aa3e44c0727f22d4e8980d15718615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8f:42:83:ca:9f:94:79:a5:62:d1:29:57:12:
1f:51:4c:92:f3:33:3c:79:b5:32:27:3b:6e:8a:43:
6f:34:85:cf:c0:36:0d:9d:72:02:d7:17:b8:c3:1a:
d2:20:f5:30:81:17:0c:c5:d3:bc:9a:20:f6:86:8b:
9a:ab:a5:b6:dc:0c:fc:b4:22:66:35:7d:91:b8:e0:
9b:f2:c9:04:e1:62:b9:1c:ed:97:2c:3d:d4:0e:31:
98:a1:a7:6d:77:d8:ae:a1:ed:71:80:e7:6b:eb:58:
d4:24:4c:14:bd:67:de:64:a3:bc:72:03:60:e9:25:
64:12:17:69:12:15:8e:14:b7:8e:de:f6:20:4c:df:
09:84:22:e6:b1:c6:cb:43:88:d8:83:92:b9:2b:b9:
41:c9:e1:38:11:ee:24:df:a3:c8:35:4f:99:08:2c:
ac:39:7b:da:08:4b:f4:51:93:e9:9d:01:fd:79:5f:
ce:83:6a:fc:aa:3c:04:24:60:c4:fc:1b:cb:0b:bd:
4c:33:f8:33:22:20:25:a9:52:32:fb:a5:0f:a8:c4:
ab:57:11:25:41:17:55:c1:ae:d9:ad:9b:eb:85:86:
b1:22:fa:b8:0c:e1:21:5d:03:06:63:37:67:60:87:
2d:17:38:27:3c:c5:7d:6a:53:d7:48:8e:46:80:f9:
09:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:8D:A6:E8:B5:AA:3E:44:C0:72:7F:22:D4:E8:98:0D:15:71:86:15
X509v3 Authority Key Identifier:
keyid:6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:fb:11:96:3c:bb:f9:6d:ec:61:75:71:14:65:91:e3:ce:40:
60:b6:3c:6c:4c:7e:b2:0a:2a:73:36:22:15:dd:e1:5b:55:43:
1a:10:04:ab:95:d4:88:4e:3d:84:d5:4b:25:9c:ed:07:9d:6d:
50:37:4d:17:11:bd:2f:1f:1c:95:87:b3:e3:0b:a8:e1:0a:6b:
93:fa:a3:ca:43:ba:50:2a:09:83:8b:4a:c4:d5:75:ee:7a:30:
5c:32:33:e3:18:b8:73:26:a2:67:88:09:5a:53:82:e4:df:2e:
3f:f3:6a:e2:84:1b:ad:d5:7a:9b:4f:ee:91:d8:ef:4b:f0:0d:
36:6e:ab:2d:9e:49:30:f5:78:1d:3d:64:dc:82:ef:d1:8f:7f:
1c:2d:31:51:21:0b:7f:55:56:47:a4:07:c9:a8:52:88:4a:04:
40:b2:c8:d2:95:6e:dc:2a:70:d5:44:03:90:44:c2:cc:6f:53:
b4:a0:76:18:25:d2:6a:e7:b5:6c:34:53:0a:da:8d:ee:5f:d6:
9c:83:68:8e:b8:7d:ad:15:fd:22:f4:bc:2c:b8:e7:63:00:81:
73:ce:f2:1a:1f:a9:b1:17:59:96:ae:ee:e2:ba:67:5d:8a:79:
d9:61:96:82:bf:f8:5c:71:44:31:ca:4b:7e:b8:b4:84:69:18:
df:0f:ed:87
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaLShvGwFGSwgIhhp5ofyMMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMzhhOTgzY2Y0MzczYWE0OTc0OTg1YWIyMmQ1MTRjMGY0
ODFkMmUwHhcNMjUwNTAxMTAwMDExWhcNMjUwNTAyMTAwMDExWjAzMTEwLwYDVQQD
EygxODhkYTZlOGI1YWEzZTQ0YzA3MjdmMjJkNGU4OTgwZDE1NzE4NjE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2I9Cg8qflHmlYtEpVxIfUUyS8zM8
ebUyJztuikNvNIXPwDYNnXIC1xe4wxrSIPUwgRcMxdO8miD2houaq6W23Az8tCJm
NX2RuOCb8skE4WK5HO2XLD3UDjGYoadtd9iuoe1xgOdr61jUJEwUvWfeZKO8cgNg
6SVkEhdpEhWOFLeO3vYgTN8JhCLmscbLQ4jYg5K5K7lByeE4Ee4k36PINU+ZCCys
OXvaCEv0UZPpnQH9eV/Og2r8qjwEJGDE/BvLC71MM/gzIiAlqVIy+6UPqMSrVxEl
QRdVwa7ZrZvrhYaxIvq4DOEhXQMGYzdnYIctFzgnPMV9alPXSI5GgPkJxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBiNpui1qj5EwHJ/ItTomA0VcYYVMB8GA1UdIwQY
MBaAFG84qYPPQ3OqSXSYWrItUUwPSB0uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnppcGc4OURjNnBKZEpoYXNpMVJUQTlJSFM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS83NDMzN2ItZjk4ZS00ZTMxLTkwMDQt
YWY1YTU2NzczMmVmLzEvYnppcGc4OURjNnBKZEpoYXNpMVJUQTlJSFM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS83NDMzN2ItZjk4ZS00ZTMxLTkwMDQtYWY1YTU2NzczMmVm
LzEvYnppcGc4OURjNnBKZEpoYXNpMVJUQTlJSFM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKPsRljy7
+W3sYXVxFGWR485AYLY8bEx+sgoqczYiFd3hW1VDGhAEq5XUiE49hNVLJZztB51t
UDdNFxG9Lx8clYez4wuo4Qprk/qjykO6UCoJg4tKxNV17nowXDIz4xi4cyaiZ4gJ
WlOC5N8uP/Nq4oQbrdV6m0/ukdjvS/ANNm6rLZ5JMPV4HT1k3ILv0Y9/HC0xUSEL
f1VWR6QHyahSiEoEQLLI0pVu3Cpw1UQDkETCzG9TtKB2GCXSaue1bDRTCtqN7l/W
nINojrh9rRX9IvS8LLjnYwCBc87yGh+psRdZlq7u4rpnXYp52WGWgr/4XHFEMcpL
fri0hGkY3w/thw==
-----END CERTIFICATE-----
Generated at Thu May 1 12:54:03 2025 by rpki-client