Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
File: bfHIcky70DS6t6Da3wq0uZ_2b_8.mft (raw, json)
Hash identifier: qklPi5W/w3890totVXioO67rQ4zcZOT42gbaR0/TidQ=
Subject key identifier: FB:3F:26:BB:88:17:BA:E6:4E:6E:F8:1C:8A:30:BB:42:5E:1F:18:93
Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Certificate serial: 01967B324CEB812890F12D4F2C668CC25BEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
Manifest number: 1513
Signing time: Mon 28 Apr 2025 07:00:16 +0000
Manifest this update: Mon 28 Apr 2025 07:00:16 +0000
Manifest next update: Tue 29 Apr 2025 07:00:16 +0000
Files and hashes: 1: 3gASlQlN9UdPtrWqrdLITdzt5Ew.roa (hash: ramhN8+V67WDz+dJge66wgSFRzcM7UnMyKgsybDZiQA=)
2: bfHIcky70DS6t6Da3wq0uZ_2b_8.crl (hash: twiGxQyWXrFXMs+Q6enIdeXvDeMifVYBNWEYmD3HnQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 07:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:32:4c:eb:81:28:90:f1:2d:4f:2c:66:8c:c2:5b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Validity
Not Before: Apr 28 07:00:16 2025 GMT
Not After : Apr 29 07:00:16 2025 GMT
Subject: CN=fb3f26bb8817bae64e6ef81c8a30bb425e1f1893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:44:5d:8f:bb:b0:30:61:29:23:99:31:1c:86:
7c:53:1b:89:7a:ac:77:07:bc:d5:28:b5:eb:41:75:
45:3f:1d:bf:a7:0b:76:6e:9b:e5:98:97:63:7b:48:
58:7a:22:1d:11:9a:81:76:5e:95:ba:94:84:e3:bc:
e3:a2:71:c4:90:f4:85:bd:bd:1f:25:e2:cd:f8:91:
32:10:51:2e:87:26:02:f1:2a:c0:76:7a:05:a7:de:
16:1f:0e:2a:3a:ed:55:1d:a7:af:1f:2f:f0:a4:d1:
fe:ac:72:82:1d:12:68:0c:cf:f0:a7:8f:a3:b2:be:
5f:ce:32:df:35:05:ea:7a:7d:e5:fd:89:2d:51:30:
94:52:29:b0:4f:ff:1e:ef:ce:46:3c:95:66:06:00:
e1:72:e0:4f:64:4c:28:70:02:91:4f:b4:fd:1f:b0:
87:59:4c:a5:15:f7:49:4b:e6:a0:c4:0e:63:3f:78:
8a:70:38:58:dc:47:31:61:ea:9d:de:27:2c:c3:9b:
d5:7e:be:07:44:7b:c4:37:16:be:e2:f2:11:46:be:
77:de:cd:c1:2b:36:2f:44:e6:e3:bb:49:69:33:35:
1f:c3:21:ee:23:dd:62:00:7f:23:b4:0a:84:38:bc:
7e:31:9c:2d:87:33:47:2a:5f:d8:7f:ff:26:a2:ca:
2b:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:3F:26:BB:88:17:BA:E6:4E:6E:F8:1C:8A:30:BB:42:5E:1F:18:93
X509v3 Authority Key Identifier:
keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:fc:44:ee:85:6d:dd:3e:0e:e9:99:d8:e5:94:3f:24:9d:d3:
fa:1c:1b:f0:8b:ba:37:e4:65:08:d7:c9:cf:c5:c2:f7:95:8a:
62:e5:d6:f1:52:e7:ce:70:bb:15:93:5b:7c:9c:e1:92:7c:08:
2c:24:a8:18:95:de:30:d2:4d:a1:c9:a3:eb:9b:8a:2d:b8:ac:
e9:02:3e:09:80:04:0c:27:be:51:83:1b:55:d2:3b:24:5e:60:
32:ea:6d:8b:b0:73:d4:37:b0:b0:c7:69:d9:93:ae:9c:68:83:
1e:c0:dd:a6:c4:dd:c0:4f:2e:43:80:8b:22:35:e9:86:8a:37:
f5:f9:c3:e9:2a:9e:65:50:28:f2:0f:63:df:f7:53:61:0b:a5:
76:a6:22:71:f7:26:89:e4:4e:1a:bc:c0:b0:e7:44:b4:ac:c1:
f1:d5:65:79:c5:ad:0e:cd:90:f9:77:8f:a0:eb:e8:1c:4f:bc:
95:21:46:24:dc:ae:bc:c3:b7:37:5e:f5:ca:1e:85:93:2a:20:
16:22:86:1a:80:f8:58:6b:0f:01:60:71:6b:4d:26:68:55:a8:
97:c4:3b:11:03:a9:1f:cb:71:1f:47:54:b7:17:43:b0:66:a4:
8a:a3:d0:ed:56:02:7d:6a:29:e8:6c:e4:b7:90:dd:54:04:7c:
66:b1:f8:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ7MkzrgSiQ8S1PLGaMwlvsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZjFjODcyNGNiYmQwMzRiYWI3YTBkYWRmMGFiNGI5OWZm
NjZmZmYwHhcNMjUwNDI4MDcwMDE2WhcNMjUwNDI5MDcwMDE2WjAzMTEwLwYDVQQD
EyhmYjNmMjZiYjg4MTdiYWU2NGU2ZWY4MWM4YTMwYmI0MjVlMWYxODkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuERdj7uwMGEpI5kxHIZ8UxuJeqx3
B7zVKLXrQXVFPx2/pwt2bpvlmJdje0hYeiIdEZqBdl6VupSE47zjonHEkPSFvb0f
JeLN+JEyEFEuhyYC8SrAdnoFp94WHw4qOu1VHaevHy/wpNH+rHKCHRJoDM/wp4+j
sr5fzjLfNQXqen3l/YktUTCUUimwT/8e785GPJVmBgDhcuBPZEwocAKRT7T9H7CH
WUylFfdJS+agxA5jP3iKcDhY3EcxYeqd3icsw5vVfr4HRHvENxa+4vIRRr533s3B
KzYvRObju0lpMzUfwyHuI91iAH8jtAqEOLx+MZwthzNHKl/Yf/8mosortQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPs/JruIF7rmTm74HIowu0JeHxiTMB8GA1UdIwQY
MBaAFG3xyHJMu9A0ureg2t8KtLmf9m//MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9lMDc4MWYtNmU2NC00NmFhLThhZjAt
ZjkyNGQ2ZjZhNTk1LzEvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9lMDc4MWYtNmU2NC00NmFhLThhZjAtZjkyNGQ2ZjZhNTk1
LzEvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGvxE7oVt
3T4O6ZnY5ZQ/JJ3T+hwb8Iu6N+RlCNfJz8XC95WKYuXW8VLnznC7FZNbfJzhknwI
LCSoGJXeMNJNocmj65uKLbis6QI+CYAEDCe+UYMbVdI7JF5gMupti7Bz1DewsMdp
2ZOunGiDHsDdpsTdwE8uQ4CLIjXphoo39fnD6SqeZVAo8g9j3/dTYQuldqYicfcm
ieROGrzAsOdEtKzB8dVlecWtDs2Q+XePoOvoHE+8lSFGJNyuvMO3N171yh6Fkyog
FiKGGoD4WGsPAWBxa00maFWol8Q7EQOpH8txH0dUtxdDsGakiqPQ7VYCfWop6Gzk
t5DdVAR8ZrH4Vw==
-----END CERTIFICATE-----
Generated at Mon Apr 28 12:34:02 2025 by rpki-client