Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft
File: bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft (raw, json)
Hash identifier: nQw9dTPsNeYF8Yas9wJQSE96rxnejIVzRSxYJ8NOPC8=
Subject key identifier: 1D:B6:1A:28:94:2F:5C:2F:5C:B2:70:BF:F9:FB:70:A3:84:42:48:2C
Authority key identifier: 6C:51:61:4B:6B:FB:6C:61:87:83:67:69:11:BD:F3:BC:82:9F:97:D7
Certificate issuer: /CN=6c51614b6bfb6c618783676911bdf3bc829f97d7
Certificate serial: 019689CA66B9DFF801ABF0CCBAA543E7BD80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bFFhS2v7bGGHg2dpEb3zvIKfl9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft
Manifest number: 11AB
Signing time: Thu 01 May 2025 03:01:05 +0000
Manifest this update: Thu 01 May 2025 03:01:05 +0000
Manifest next update: Fri 02 May 2025 03:01:05 +0000
Files and hashes: 1: bFFhS2v7bGGHg2dpEb3zvIKfl9c.crl (hash: jLJ9CoEC97gqwsAYp5L9v+A1pH9yDBI7QxsIl5FOVlc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/bFFhS2v7bGGHg2dpEb3zvIKfl9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:89:ca:66:b9:df:f8:01:ab:f0:cc:ba:a5:43:e7:bd:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c51614b6bfb6c618783676911bdf3bc829f97d7
Validity
Not Before: May 1 03:01:05 2025 GMT
Not After : May 2 03:01:05 2025 GMT
Subject: CN=1db61a28942f5c2f5cb270bff9fb70a38442482c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:df:7e:76:e0:21:15:62:8f:a1:b4:61:6e:7a:
64:f7:2f:b9:80:65:7a:8c:80:cc:26:0a:8c:53:71:
c9:8d:6a:65:5c:16:bc:5f:f7:b0:33:bb:4d:45:51:
a1:70:94:2c:25:41:34:96:7a:4c:c8:d6:7e:f5:1e:
7f:41:32:01:37:a6:03:70:cf:11:f0:8f:13:71:ba:
ac:f7:af:36:72:c4:62:5c:7e:4d:76:a4:09:5e:d2:
ae:8a:61:77:5a:83:fb:c8:c9:21:47:53:82:08:9c:
ed:83:8d:f4:50:cb:74:02:51:99:2e:1c:d9:8e:3b:
7e:00:a8:f3:47:1f:e2:a3:a8:aa:09:01:ef:bd:02:
c8:0e:75:33:a9:fd:82:c3:d4:0d:a0:b0:6c:3d:dc:
a6:8c:e5:29:24:df:0e:c4:f9:6a:9e:32:82:14:f4:
64:8b:df:82:84:47:6a:57:a4:0b:0e:78:e3:3e:2e:
2b:1c:30:9e:a2:fa:03:07:8a:d5:44:6c:97:55:3b:
fc:3f:a5:44:b4:dd:37:77:cb:c2:6d:db:53:98:49:
79:98:d7:8e:d1:4c:4d:3d:b9:b3:8a:25:f8:16:ea:
6a:43:9b:ad:5f:ad:df:94:b9:ee:ea:8f:e7:f9:2b:
db:f6:9f:cc:5b:98:f0:71:98:a0:25:c8:2e:00:4f:
59:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:B6:1A:28:94:2F:5C:2F:5C:B2:70:BF:F9:FB:70:A3:84:42:48:2C
X509v3 Authority Key Identifier:
keyid:6C:51:61:4B:6B:FB:6C:61:87:83:67:69:11:BD:F3:BC:82:9F:97:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bFFhS2v7bGGHg2dpEb3zvIKfl9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:30:a4:cb:00:4a:d1:99:c2:75:ef:0e:d2:51:7b:ce:55:66:
4d:41:0c:e5:6b:35:7b:d5:af:c8:10:27:e5:10:ff:c6:2d:4e:
0e:a1:40:c1:8a:2c:a7:28:1e:d7:ba:97:05:a6:5c:9c:0b:54:
41:19:33:69:8f:42:51:85:93:53:94:e9:fa:38:f0:65:3b:fe:
cd:d0:3c:94:3d:b3:aa:8f:74:e1:8f:6e:ef:83:07:50:9b:ec:
36:66:50:dc:9b:1d:5a:ee:c1:87:f4:93:a3:98:46:66:8e:79:
2d:04:51:fe:67:7f:6c:94:f7:5f:67:22:80:af:93:cb:04:3d:
f5:5d:17:d2:66:84:85:30:38:84:74:48:7b:31:c9:8b:ea:4c:
6e:88:b0:10:31:e7:23:e6:a2:1b:63:bb:d1:9c:12:76:02:6d:
49:58:ae:9a:c2:53:97:50:61:4b:15:a7:d6:d5:6a:aa:1e:bf:
87:7f:61:29:fa:4b:68:6f:52:bb:cb:64:24:1a:cd:30:af:7d:
6c:62:10:8f:6f:31:85:3f:c7:3a:41:5c:2f:65:58:97:69:91:
eb:a8:d3:49:2e:20:86:3c:6c:14:ff:17:ce:b8:1d:89:0d:d8:
91:1b:64:3b:e9:3c:4a:da:49:41:24:72:43:ec:dd:cd:37:22:
25:55:03:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaJyma53/gBq/DMuqVD572AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjNTE2MTRiNmJmYjZjNjE4NzgzNjc2OTExYmRmM2JjODI5
Zjk3ZDcwHhcNMjUwNTAxMDMwMTA1WhcNMjUwNTAyMDMwMTA1WjAzMTEwLwYDVQQD
EygxZGI2MWEyODk0MmY1YzJmNWNiMjcwYmZmOWZiNzBhMzg0NDI0ODJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAst9+duAhFWKPobRhbnpk9y+5gGV6
jIDMJgqMU3HJjWplXBa8X/ewM7tNRVGhcJQsJUE0lnpMyNZ+9R5/QTIBN6YDcM8R
8I8Tcbqs9682csRiXH5NdqQJXtKuimF3WoP7yMkhR1OCCJztg430UMt0AlGZLhzZ
jjt+AKjzRx/io6iqCQHvvQLIDnUzqf2Cw9QNoLBsPdymjOUpJN8OxPlqnjKCFPRk
i9+ChEdqV6QLDnjjPi4rHDCeovoDB4rVRGyXVTv8P6VEtN03d8vCbdtTmEl5mNeO
0UxNPbmziiX4FupqQ5utX63flLnu6o/n+Svb9p/MW5jwcZigJcguAE9ZnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB22GiiUL1wvXLJwv/n7cKOEQkgsMB8GA1UdIwQY
MBaAFGxRYUtr+2xhh4NnaRG987yCn5fXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkZGaFMydjdiR0dIZzJkcEViM3p2SUtmbDljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi82MGNlN2UtMTkyMy00OTkzLTkwMGMt
N2Q1ZWIxODMxZWYxLzEvYkZGaFMydjdiR0dIZzJkcEViM3p2SUtmbDljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi82MGNlN2UtMTkyMy00OTkzLTkwMGMtN2Q1ZWIxODMxZWYx
LzEvYkZGaFMydjdiR0dIZzJkcEViM3p2SUtmbDljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmjCkywBK
0ZnCde8O0lF7zlVmTUEM5Ws1e9WvyBAn5RD/xi1ODqFAwYospyge17qXBaZcnAtU
QRkzaY9CUYWTU5Tp+jjwZTv+zdA8lD2zqo904Y9u74MHUJvsNmZQ3JsdWu7Bh/ST
o5hGZo55LQRR/md/bJT3X2cigK+TywQ99V0X0maEhTA4hHRIezHJi+pMboiwEDHn
I+aiG2O70ZwSdgJtSViumsJTl1BhSxWn1tVqqh6/h39hKfpLaG9Su8tkJBrNMK99
bGIQj28xhT/HOkFcL2VYl2mR66jTSS4ghjxsFP8XzrgdiQ3YkRtkO+k8StpJQSRy
Q+zdzTciJVUD6Q==
-----END CERTIFICATE-----
Generated at Thu May 1 05:38:42 2025 by rpki-client