Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft
File: BqTBjS4g22T_nbUpKzefU4t2oVE.mft (raw, json)
Hash identifier: EVkSm0lOoVg5yd6hAnwyMI4jw+nAmUsHdSRCVwLJ6KY=
Subject key identifier: 1E:43:E7:26:A4:CE:76:64:91:D3:1A:78:9A:11:A4:13:96:6B:C0:AC
Authority key identifier: 06:A4:C1:8D:2E:20:DB:64:FF:9D:B5:29:2B:37:9F:53:8B:76:A1:51
Certificate issuer: /CN=06a4c18d2e20db64ff9db5292b379f538b76a151
Certificate serial: 01968511114A41A6016683B707DC61C44B39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft
Manifest number: 0C14
Signing time: Wed 30 Apr 2025 05:00:10 +0000
Manifest this update: Wed 30 Apr 2025 05:00:10 +0000
Manifest next update: Thu 01 May 2025 05:00:10 +0000
Files and hashes: 1: BqTBjS4g22T_nbUpKzefU4t2oVE.crl (hash: 5QuYr//gxXvBWciw596z1dtXvRlyFVAd0rSD3VumCdk=)
2: wr12a9AIrcr_aNyfTvBnBd_4UPk.roa (hash: q/68eMJ+gUB4PpFkh+pkPW+TmRs5+PPrtN+mSwC3zqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft
rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:11:11:4a:41:a6:01:66:83:b7:07:dc:61:c4:4b:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06a4c18d2e20db64ff9db5292b379f538b76a151
Validity
Not Before: Apr 30 05:00:10 2025 GMT
Not After : May 1 05:00:10 2025 GMT
Subject: CN=1e43e726a4ce766491d31a789a11a413966bc0ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:38:3c:47:34:27:a8:dc:02:99:ff:77:b7:89:
5d:35:5b:2c:04:89:7a:6e:9e:96:93:5b:ed:af:9e:
d9:19:bd:8a:38:42:62:c6:a9:7c:23:e7:54:52:b5:
89:94:76:9d:7c:07:15:1e:b9:59:4f:79:ff:fb:b0:
1b:53:a2:08:96:6d:e4:2a:08:8a:3c:36:20:11:d3:
db:a0:85:be:e7:4c:03:a0:64:bf:a7:57:56:5f:d0:
12:86:2c:7e:72:0b:7b:33:13:03:b3:38:6a:f9:0e:
f9:d7:01:56:fe:48:ee:c4:b8:7a:72:e5:4a:e4:13:
5b:33:7c:66:a2:a3:f0:a7:ac:81:c2:40:df:20:aa:
76:4d:1f:04:64:d7:9e:ba:bc:94:6f:74:34:74:3a:
ee:3d:6e:54:95:85:94:42:e4:a7:14:2f:48:ca:43:
d7:8b:fd:65:4e:e1:dc:16:32:af:12:7e:2b:3e:24:
44:d8:73:77:d1:ac:b2:45:0b:f8:82:e2:6a:1b:dd:
b8:5a:a2:14:63:59:91:8b:25:95:23:7d:7c:ea:0e:
6a:7b:2a:c9:07:fd:a2:90:a0:9e:ad:ce:0c:94:26:
43:f4:21:6f:79:7b:cc:2d:3f:2d:7f:48:b8:bc:c2:
4a:21:8a:21:09:b7:d2:5a:80:60:e5:ac:74:48:97:
7f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:43:E7:26:A4:CE:76:64:91:D3:1A:78:9A:11:A4:13:96:6B:C0:AC
X509v3 Authority Key Identifier:
keyid:06:A4:C1:8D:2E:20:DB:64:FF:9D:B5:29:2B:37:9F:53:8B:76:A1:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:32:d2:7d:6a:34:85:3a:01:7b:14:bd:29:ad:24:19:0b:e0:
53:4a:63:23:59:67:9f:e2:81:17:17:10:d6:de:31:fd:6b:28:
58:30:82:b4:8f:7d:94:2b:a5:41:5b:2e:d8:06:34:fa:b2:7a:
0c:85:68:99:5d:e9:a4:0e:82:9d:21:a6:cd:6c:c2:dd:89:74:
40:05:56:45:52:20:d6:b1:69:2d:b8:e5:18:36:ce:a7:b6:77:
a9:ba:45:ed:ea:fd:6c:5b:c8:74:38:59:76:f5:41:e3:57:35:
c6:ac:cb:6d:c7:18:36:9d:9d:ac:77:c7:4a:45:27:95:39:58:
25:bb:79:38:2e:62:e7:f4:fe:22:db:6c:b1:3b:db:a2:c9:2c:
a3:31:ea:c0:2c:f5:ca:72:5d:74:8c:24:2b:83:d7:f2:bf:31:
d8:83:5d:fc:38:07:ae:f7:1e:42:66:0e:99:a6:21:2b:5a:a5:
37:89:ba:37:0d:b4:10:58:9d:ca:5d:93:71:2f:77:10:57:52:
d9:c8:7a:d4:69:ea:f1:92:97:d8:fb:d0:d0:a6:14:4f:01:9f:
87:60:29:13:e4:00:ff:4c:1c:e8:85:c7:09:44:47:f1:fc:5d:
23:2f:2e:f2:f4:e9:b8:1f:f2:9a:46:81:6e:9a:d5:b7:7f:64:
ad:54:2c:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 07:05:55 2025 by rpki-client