Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
File: BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft (raw, json)
Hash identifier: Ixh8pG+V3gfo9AYEQlL8uSp/IZbTbemmBq61/Rsg+0s=
Subject key identifier: A4:94:56:17:29:7B:C5:A4:81:47:63:72:F4:18:77:32:3F:CE:77:4D
Authority key identifier: 04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
Certificate issuer: /CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Certificate serial: 01967530455DEEBBCA03A6CB370D2E9B1BFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
Manifest number: 09F3
Signing time: Sun 27 Apr 2025 03:00:19 +0000
Manifest this update: Sun 27 Apr 2025 03:00:19 +0000
Manifest next update: Mon 28 Apr 2025 03:00:19 +0000
Files and hashes: 1: BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl (hash: IOyb6LGxIzS0X0010PiQ+YUZ2Y4LFcVWwveV66+UjiE=)
2: dShe1ipT6-Y_-edVr4eNtxtPKAo.roa (hash: 34QucPlafnV+iMZk3j4FDiUJFtGuS1f17YL6xBvVoIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 03:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:30:45:5d:ee:bb:ca:03:a6:cb:37:0d:2e:9b:1b:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Validity
Not Before: Apr 27 03:00:19 2025 GMT
Not After : Apr 28 03:00:19 2025 GMT
Subject: CN=a4945617297bc5a481476372f41877323fce774d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:af:1b:a6:29:2d:1f:ab:6d:37:31:a5:03:cf:
a8:0e:02:f0:53:68:c7:6a:d3:e7:4c:2e:58:3b:68:
e2:9e:a5:6e:f2:6f:3a:89:1b:ad:1f:38:1c:03:5f:
17:d8:ed:c0:6d:f0:c3:90:c9:78:a9:c5:27:57:3d:
53:9d:09:36:67:34:f1:b8:ce:e6:b9:38:d3:3c:3b:
62:4e:a7:3a:be:ed:17:95:65:bc:ca:41:18:5b:7f:
14:c6:9d:5c:9c:7a:bd:62:46:42:a5:ff:68:00:9e:
97:60:4f:8f:5c:f1:bf:57:7f:4a:a7:16:e7:aa:0b:
23:af:8e:f8:52:50:95:82:18:7f:a6:0a:ab:56:7e:
6e:c6:3c:93:b7:5e:4e:cc:48:7d:d2:54:ed:30:8b:
ce:a8:ac:4e:df:12:bb:40:a9:c5:1e:4b:62:7f:6f:
29:34:5c:6a:19:45:02:d0:bd:6d:58:0b:14:8f:14:
3a:f6:12:da:b0:0b:31:65:ea:6e:38:23:fb:0b:d9:
5d:12:dd:e6:81:51:09:53:55:d7:bf:5d:9c:7b:c3:
61:2a:48:ef:5c:71:69:a5:c0:3e:78:9c:a1:55:8d:
bc:02:4c:26:d8:a5:2c:e4:63:a9:d3:f2:b3:34:b2:
fb:a4:fc:b7:dd:36:b5:7d:5e:8c:12:5e:11:a1:69:
02:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:94:56:17:29:7B:C5:A4:81:47:63:72:F4:18:77:32:3F:CE:77:4D
X509v3 Authority Key Identifier:
keyid:04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:37:4b:5d:ec:47:5e:47:9e:ed:1c:85:8a:f8:fc:b2:3b:87:
a0:34:90:0a:24:e0:85:b5:1c:3a:a4:ca:b9:16:e4:fb:20:32:
00:f7:aa:8d:aa:11:37:bf:b6:be:1d:82:80:16:2b:8b:f2:bd:
dc:67:9b:1d:76:ee:c4:b0:99:a3:5c:91:2a:10:d0:38:dd:64:
44:0a:06:87:ba:92:6c:e3:61:c0:75:74:98:cc:ad:70:46:1c:
66:34:08:62:4d:0e:81:6c:85:41:82:0a:97:72:79:dc:2e:70:
d6:b9:f9:55:93:a6:ba:3c:9a:c2:9a:3b:42:f2:44:9b:59:da:
78:23:55:e1:c2:b6:cd:5e:15:37:a6:ac:05:0d:b7:80:1e:d4:
58:9e:65:ff:02:2b:5e:a7:b2:b9:86:1d:5f:03:e6:f0:84:29:
85:c0:47:25:64:03:a0:f1:75:3b:a7:a4:9c:4d:52:d6:82:1a:
b3:27:4e:d1:56:76:5f:37:99:70:e5:0e:63:32:4e:d2:8b:c4:
6f:7c:4a:04:f0:e0:6c:9d:0d:50:ea:d7:f2:7e:7b:36:ef:97:
56:4e:aa:65:c2:8f:63:e1:04:92:cc:c3:3a:c3:1f:43:3f:84:
d8:c9:c2:bf:22:0b:d3:1b:6a:28:2a:c9:49:66:04:a4:70:96:
3d:fa:2e:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 13:11:26 2025 by rpki-client