Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.mft
File: BzzBj8cG31qZM7C-INzLBGdb9HQ.mft (raw, json)
Hash identifier: KifxzO60vx9JmzGdRdjlaZ4qbFOaUf/bxFXZBGwl6MA=
Subject key identifier: AB:55:02:0C:17:B0:8F:E2:25:D2:D6:8C:85:17:1B:E8:BF:13:2B:A1
Authority key identifier: 07:3C:C1:8F:C7:06:DF:5A:99:33:B0:BE:20:DC:CB:04:67:5B:F4:74
Certificate issuer: /CN=073cc18fc706df5a9933b0be20dccb04675bf474
Certificate serial: 019770E3BE02C6415CBEDB7A6CC8D5728A05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzzBj8cG31qZM7C-INzLBGdb9HQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.mft
Manifest number: 126B
Signing time: Sun 15 Jun 2025 00:01:02 +0000
Manifest this update: Sun 15 Jun 2025 00:01:02 +0000
Manifest next update: Mon 16 Jun 2025 00:01:02 +0000
Files and hashes: 1: BzzBj8cG31qZM7C-INzLBGdb9HQ.crl (hash: 6Sko3aceAj92dGtWRjXc2K1xdVa55V9wWcDS8eoTW/c=)
2: goFsxxYVVDsH1YxnuVEoHVEyuUQ.roa (hash: H+4TEC+hHsfjX7/LNloV4KRFUkMNXemYneHOCftwWZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/BzzBj8cG31qZM7C-INzLBGdb9HQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:e3:be:02:c6:41:5c:be:db:7a:6c:c8:d5:72:8a:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073cc18fc706df5a9933b0be20dccb04675bf474
Validity
Not Before: Jun 15 00:01:02 2025 GMT
Not After : Jun 16 00:01:02 2025 GMT
Subject: CN=ab55020c17b08fe225d2d68c85171be8bf132ba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:75:f3:54:53:88:fb:a8:a5:8c:8c:d2:56:46:
16:0d:56:e8:17:79:62:07:47:18:f2:ef:bf:a8:ca:
8c:6f:f3:04:ea:ad:e3:62:bb:10:95:79:57:64:65:
3d:70:99:bc:44:09:30:32:2d:a3:43:77:dd:b2:2c:
45:28:a0:88:f0:a2:56:97:fb:f9:47:48:65:8c:0f:
db:01:8c:34:e3:40:63:1a:cb:78:71:d4:eb:97:c1:
d9:d1:4b:e8:fe:74:79:00:d9:ba:b8:a7:d4:c9:f4:
20:cf:6f:df:5c:9c:45:2a:5d:9a:97:48:8f:d4:0e:
a6:80:e3:1a:26:da:b5:ac:61:0e:63:e3:74:b6:87:
a3:35:88:3a:7c:54:d0:71:fe:4a:6c:b5:03:16:ee:
8a:9a:2e:66:8b:e8:99:af:76:06:ce:ba:ad:b3:b0:
d6:3a:e5:b2:96:6d:d1:12:15:5d:25:c0:3c:09:90:
81:43:48:a8:3e:a1:99:c3:30:55:b3:5b:e4:69:17:
7b:a6:6b:df:a5:4a:f5:a0:4b:2e:14:29:00:c1:ff:
df:ec:b7:09:2c:11:69:a7:69:12:f6:71:0a:9c:9f:
17:32:82:92:6f:57:5a:7c:3a:60:c3:1a:44:4b:e3:
20:8d:70:45:f8:35:6d:22:ce:7e:0e:32:09:78:6b:
05:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:55:02:0C:17:B0:8F:E2:25:D2:D6:8C:85:17:1B:E8:BF:13:2B:A1
X509v3 Authority Key Identifier:
keyid:07:3C:C1:8F:C7:06:DF:5A:99:33:B0:BE:20:DC:CB:04:67:5B:F4:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzzBj8cG31qZM7C-INzLBGdb9HQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:e9:37:1a:ef:29:90:74:fc:48:47:30:0c:fc:cb:8c:a7:f7:
8f:e8:e0:8e:d7:e1:74:29:b1:db:c2:e0:5d:a9:93:54:ef:d7:
be:4f:70:b9:d1:f3:93:09:1e:8e:5a:e2:fe:6e:eb:2b:3b:13:
7b:37:a0:78:c4:d6:a6:2f:05:5d:d2:56:9d:fb:18:ac:c4:07:
d9:0c:61:e4:e2:1a:29:2c:f4:0f:36:fa:86:f6:cc:6f:4d:f9:
44:72:84:46:82:35:07:29:92:2e:d3:86:e7:6a:00:8d:0c:c3:
eb:c1:67:26:a8:18:01:66:6a:65:fa:7c:c1:6a:97:86:f7:b7:
42:70:87:86:65:92:88:de:bf:cb:a8:a5:f9:20:a7:54:c7:5d:
ca:43:16:ff:05:12:99:24:f6:8a:ae:b6:d0:61:33:99:e7:e6:
8e:17:8c:b8:08:da:ef:f5:e1:99:c6:e7:67:38:5a:17:c0:1c:
a3:c0:92:d2:dc:2e:81:ec:a2:48:30:ca:43:3e:ba:d9:3a:56:
d2:9c:99:57:ba:64:89:87:e2:ac:54:fb:a7:c1:dc:23:07:28:
3e:6a:52:97:d9:72:f2:32:10:21:21:6d:f0:a1:5f:bc:06:60:
5d:93:a3:3d:9c:27:73:78:60:88:d0:74:c6:78:bd:0f:17:f8:
39:f4:08:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:38:23 2025 by rpki-client