Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
File: bfHIcky70DS6t6Da3wq0uZ_2b_8.mft (raw, json)
Hash identifier: hySVW5daEOr98kIO2mVA/+SRVDPi2Tkgah9opmtbW7E=
Subject key identifier: 93:59:9D:01:D0:2F:DB:46:1B:A8:41:F5:5F:62:4C:3F:46:E9:20:3D
Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Certificate serial: 019774520E5AA47E52BF8CAD571E67754928
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
Manifest number: 1594
Signing time: Sun 15 Jun 2025 16:00:24 +0000
Manifest this update: Sun 15 Jun 2025 16:00:24 +0000
Manifest next update: Mon 16 Jun 2025 16:00:24 +0000
Files and hashes: 1: 3gASlQlN9UdPtrWqrdLITdzt5Ew.roa (hash: ramhN8+V67WDz+dJge66wgSFRzcM7UnMyKgsybDZiQA=)
2: bfHIcky70DS6t6Da3wq0uZ_2b_8.crl (hash: KY1f+O0Ja1unFxO1UWueV5XzjLWznU7wvB4jJm+voIE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:74:52:0e:5a:a4:7e:52:bf:8c:ad:57:1e:67:75:49:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Validity
Not Before: Jun 15 16:00:24 2025 GMT
Not After : Jun 16 16:00:24 2025 GMT
Subject: CN=93599d01d02fdb461ba841f55f624c3f46e9203d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d0:8a:ca:3f:8c:98:34:e6:2e:fe:e2:a5:23:
0c:09:c5:ba:13:ef:c9:7e:65:50:67:ee:1f:0b:86:
05:b2:46:22:e6:df:40:6d:05:fd:bd:9c:9e:31:0b:
75:0e:5d:d9:46:1d:0a:cb:a5:24:06:83:4c:ef:a5:
3e:a8:2e:30:24:a0:fc:71:f0:77:d0:28:a7:66:e0:
3e:02:7b:e9:3f:09:04:90:96:a6:e8:7e:c4:eb:ab:
5d:2c:5f:41:bc:61:94:bd:16:56:0d:7d:6f:97:13:
6f:3e:94:c3:92:ae:c8:03:1d:53:c9:25:4c:dd:e1:
85:83:05:ba:21:d0:c0:37:45:4b:79:3e:e1:34:ef:
26:1c:db:2b:f5:90:1f:95:07:22:1c:88:80:db:fd:
c1:c4:60:cb:18:42:8e:78:b4:5c:3e:66:f3:c6:7e:
93:ff:a1:1b:fe:1b:4b:40:f7:20:60:f0:6b:b3:33:
66:ae:bc:01:b5:cd:f3:4f:c8:83:1c:b3:c7:ba:a3:
f2:f4:16:05:bc:ff:d4:22:8f:2e:16:c2:dc:24:29:
bd:3d:62:e6:90:83:f3:ce:59:05:b5:58:bc:b8:13:
44:60:4c:57:91:1a:69:a9:6b:c8:0d:aa:70:c6:f2:
59:1c:6f:40:1d:76:4d:b0:c0:65:5f:fd:0a:0b:9e:
6d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:59:9D:01:D0:2F:DB:46:1B:A8:41:F5:5F:62:4C:3F:46:E9:20:3D
X509v3 Authority Key Identifier:
keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:84:7d:a2:4a:f3:4d:ec:f3:6f:10:92:81:75:27:37:3e:2c:
a5:db:01:53:a7:3b:aa:8b:96:74:0d:51:ef:c3:44:60:66:49:
a7:e9:c8:57:8e:ec:bf:bc:09:06:d8:c6:e5:c6:d5:66:ef:57:
c8:5a:59:6c:8f:d9:c6:bc:9f:8f:db:c0:55:8f:e5:a0:3e:5a:
5f:50:a8:7e:83:1a:fe:55:ee:49:7b:d0:41:14:b1:ea:24:c6:
26:e7:ef:db:50:a3:53:4e:05:0f:f1:7a:6d:e4:69:f0:d5:d6:
f6:d2:f8:b7:7d:d4:15:b6:e9:8e:aa:bf:a7:09:20:82:46:54:
77:c4:e1:42:52:de:5a:07:44:87:57:71:d9:7c:a7:fe:77:2b:
87:de:f4:6e:a8:13:87:d0:06:49:f7:7f:9e:44:12:f4:5f:b5:
fa:ca:10:02:05:c7:f4:47:ba:f0:51:3f:a6:d4:ca:11:f8:96:
0e:03:4a:f0:95:e3:bf:93:21:43:4b:95:11:9d:a6:5c:e8:f2:
33:2d:80:64:61:28:79:5d:4a:fd:ce:35:01:7f:c5:b9:52:5d:
d3:93:8e:19:04:9f:a1:78:f8:52:b5:aa:2b:27:57:ea:cb:2d:
16:c4:b9:1c:71:d0:89:26:52:e9:1d:8a:03:15:a9:c5:86:16:
b9:b3:29:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 23:00:24 2025 by rpki-client