Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
File: bfhqH1cK4xUpAiqk9h79nsK5fQU.mft (raw, json)
Hash identifier: DFBxill9wb1g15rgjhWAS5lTrJIHEbdDlqzKgW1WSUs=
Subject key identifier: 3E:23:57:7B:37:AC:33:A4:28:1F:D1:3E:16:82:4C:97:0D:59:C7:6A
Authority key identifier: 6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
Certificate issuer: /CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Certificate serial: 01968924C64E22E29F6D1C6DDE6DC3CAD5E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
Manifest number: 1394
Signing time: Thu 01 May 2025 00:00:10 +0000
Manifest this update: Thu 01 May 2025 00:00:10 +0000
Manifest next update: Fri 02 May 2025 00:00:10 +0000
Files and hashes: 1: BpLbGApyHXLB4qqgJyw3nGH9lH0.roa (hash: 4AoUx/2M994KEwtEdAKInOt11G1446xmTonI1qJPrOg=)
2: bfhqH1cK4xUpAiqk9h79nsK5fQU.crl (hash: Ar+RtHNtDjtG/vnlTBDD3XKAbUsksU6rF5xJiebinPo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:89:24:c6:4e:22:e2:9f:6d:1c:6d:de:6d:c3:ca:d5:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Validity
Not Before: May 1 00:00:10 2025 GMT
Not After : May 2 00:00:10 2025 GMT
Subject: CN=3e23577b37ac33a4281fd13e16824c970d59c76a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:54:e9:5f:78:c0:e4:f2:27:7f:fb:dd:9d:20:
c7:81:03:96:be:f5:09:08:3a:88:c7:59:7f:a0:87:
ad:dd:f7:f1:1f:cf:f5:31:62:70:4f:73:e2:06:e8:
2d:d1:df:9b:e3:a9:db:01:7b:7c:99:64:15:fd:c4:
66:77:38:35:04:f1:97:89:9f:ea:57:84:d1:b7:bc:
10:91:ea:db:7c:37:f2:3d:03:aa:7f:b0:09:d8:21:
e6:fc:d2:c7:d2:fa:ab:8f:0e:c4:5a:83:7b:1b:d9:
4f:ad:2d:33:6b:1e:23:fe:8c:46:46:77:6e:8c:4a:
73:5a:50:6a:28:41:1a:72:8e:a0:95:df:e7:0c:80:
47:e0:b6:32:c5:d9:52:90:4e:2f:38:f3:d1:cb:e8:
b5:61:75:5c:35:98:47:49:d4:f8:3f:19:6e:38:00:
06:05:fb:ae:62:e3:98:cc:68:84:62:2c:b5:29:d7:
91:62:b0:a0:97:b1:b5:df:6f:ee:af:8b:32:c6:22:
55:91:e2:5e:f7:f9:84:20:92:38:56:b7:43:62:81:
df:e6:48:af:3d:2d:59:8e:4a:9c:60:3e:9a:54:3b:
8a:ce:93:20:34:a0:f8:93:5d:cc:80:a6:3b:16:4e:
fe:71:98:d7:92:c0:e9:c1:96:87:86:32:7a:2e:4e:
5e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:23:57:7B:37:AC:33:A4:28:1F:D1:3E:16:82:4C:97:0D:59:C7:6A
X509v3 Authority Key Identifier:
keyid:6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:1d:91:c8:21:93:97:25:4c:6c:69:a4:f5:5f:87:f6:38:d4:
6d:e1:c7:3c:2b:d6:56:ec:95:e7:0e:91:af:38:6e:dc:89:a5:
67:b1:0b:d0:63:7b:ac:ff:83:b1:c9:fc:b8:48:d3:fa:f0:1a:
ae:0c:f7:75:fc:51:12:e0:f1:4a:2a:bc:34:31:45:b1:9d:5f:
f8:31:cd:fc:f4:bb:85:ff:c0:48:c4:bb:93:3c:cf:a4:db:b0:
b7:66:e6:1c:ad:40:9c:c2:06:b1:f7:65:22:f5:75:58:0b:5e:
29:21:1a:16:9c:c9:8f:8d:ee:75:ee:2f:d6:36:86:b4:ba:b5:
3f:ad:cb:c1:9e:03:cf:e9:6a:d9:97:d7:c1:a5:ac:79:a1:4e:
b1:a8:d7:9f:e5:dc:22:46:1d:c9:75:a5:9d:9b:fd:8d:b4:dc:
91:ea:14:b4:89:37:a5:24:fc:bb:28:e3:01:e4:d0:6e:77:3f:
33:dc:99:51:da:95:15:91:ab:77:02:b7:06:f3:77:71:43:70:
38:05:02:1e:8c:37:56:25:63:2a:09:02:e1:7d:03:51:f6:e4:
96:d3:6c:d5:dc:a2:a7:cb:3b:d5:f1:f0:da:fd:58:01:00:87:
b9:39:66:a6:ba:1b:cc:10:a9:af:25:aa:9c:a1:48:1c:3e:86:
4b:b0:3e:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 10:54:57 2025 by rpki-client