Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.mft
File: BzzBj8cG31qZM7C-INzLBGdb9HQ.mft (raw, json)
Hash identifier: XgMhjyG28qKEAIL5lH3gQQFUbX2V1Pfngga05i6DVws=
Subject key identifier: 64:F6:2F:3F:F5:01:C1:57:6F:E1:49:D9:CC:72:77:0A:AB:D0:89:28
Authority key identifier: 07:3C:C1:8F:C7:06:DF:5A:99:33:B0:BE:20:DC:CB:04:67:5B:F4:74
Certificate issuer: /CN=073cc18fc706df5a9933b0be20dccb04675bf474
Certificate serial: 019675D5688FE37DD8E44BE830C33122BF07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzzBj8cG31qZM7C-INzLBGdb9HQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.mft
Manifest number: 11E9
Signing time: Sun 27 Apr 2025 06:00:42 +0000
Manifest this update: Sun 27 Apr 2025 06:00:42 +0000
Manifest next update: Mon 28 Apr 2025 06:00:42 +0000
Files and hashes: 1: BzzBj8cG31qZM7C-INzLBGdb9HQ.crl (hash: nVP0MTZJ/87obID0h8TeX93t8rXXjmk/NO1szfhGTrw=)
2: goFsxxYVVDsH1YxnuVEoHVEyuUQ.roa (hash: H+4TEC+hHsfjX7/LNloV4KRFUkMNXemYneHOCftwWZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/BzzBj8cG31qZM7C-INzLBGdb9HQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:d5:68:8f:e3:7d:d8:e4:4b:e8:30:c3:31:22:bf:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073cc18fc706df5a9933b0be20dccb04675bf474
Validity
Not Before: Apr 27 06:00:42 2025 GMT
Not After : Apr 28 06:00:42 2025 GMT
Subject: CN=64f62f3ff501c1576fe149d9cc72770aabd08928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b8:a4:26:f1:35:55:ac:b3:05:8f:d2:a9:f7:
6f:44:f9:27:a0:f2:c2:52:86:63:6d:15:e6:5b:78:
2d:43:13:13:df:ee:1c:26:b6:9e:70:76:cc:39:ba:
c5:a0:10:97:8b:a9:6c:55:f4:29:84:2e:6d:5e:11:
df:2b:51:d9:34:0c:3f:6f:12:9a:f4:f9:9d:a3:09:
1e:5f:4d:0e:fa:d5:36:1d:ad:91:d3:68:9b:5b:ea:
ea:e5:b5:cc:2f:2b:45:47:d3:1c:46:05:b3:89:f0:
9c:6f:d5:b4:c3:37:1a:2a:d1:e3:da:cd:77:a5:ce:
93:97:87:b2:c8:69:69:fe:05:7c:21:ac:73:2c:e8:
b4:f5:a0:a5:e3:26:82:95:a4:34:ee:c3:3c:72:c6:
b4:74:62:cc:37:17:f3:b0:88:ae:7b:6b:54:8f:08:
39:51:56:38:fa:51:86:45:e5:e8:c3:bc:55:4e:24:
37:be:54:d3:63:9c:54:7a:8c:8b:de:1d:50:31:24:
d1:31:01:d6:0e:8b:10:8a:26:ef:bd:a0:4c:3a:e1:
48:20:7e:d7:3f:a2:54:ad:b9:19:34:ab:f7:aa:e0:
83:5f:81:13:bd:3b:4f:ee:9e:02:44:6d:88:cf:30:
f6:cd:7d:16:85:af:f4:fb:32:73:d8:00:3f:a1:45:
3a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:F6:2F:3F:F5:01:C1:57:6F:E1:49:D9:CC:72:77:0A:AB:D0:89:28
X509v3 Authority Key Identifier:
keyid:07:3C:C1:8F:C7:06:DF:5A:99:33:B0:BE:20:DC:CB:04:67:5B:F4:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzzBj8cG31qZM7C-INzLBGdb9HQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:d8:5d:ba:38:8c:0a:7b:13:44:ff:77:1e:bc:a9:30:cd:58:
4b:98:7d:2d:07:6b:a4:a7:4a:b1:fe:4e:80:18:bb:04:19:f1:
46:e3:e0:96:04:b8:57:50:54:45:44:13:10:16:6d:3d:d4:fc:
c0:06:72:51:ba:ca:95:12:aa:83:45:c6:5e:be:a2:db:bd:cb:
8f:b3:40:20:96:82:a6:86:e7:2a:17:6e:e2:ce:b8:19:18:e3:
43:3a:5b:14:7f:51:1d:f8:d4:aa:23:3a:7c:97:0f:de:15:fe:
15:bd:8c:10:05:67:87:29:c7:d1:e0:ec:a0:db:46:08:59:b3:
3c:16:90:ec:dd:d9:ac:90:f1:90:de:c8:1e:4e:b3:2b:0f:4c:
d3:35:ef:dd:99:2d:62:e7:63:3c:68:3d:2e:52:26:2a:4e:8e:
f4:f4:12:47:d6:be:77:17:e0:6f:a9:b8:89:c8:a3:39:6b:09:
2d:ec:a6:2d:d5:d6:10:9c:49:3a:ff:e5:35:65:77:2b:44:30:
a4:61:b5:63:bc:d9:46:7b:fd:15:d5:34:58:be:db:37:02:5e:
32:ab:46:0d:f4:91:13:25:58:62:d6:6f:03:56:8a:b5:a5:c9:
82:68:bc:43:96:91:4a:2a:30:44:98:e5:5d:8a:c1:47:74:b1:
4d:e4:1d:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:15:48 2025 by rpki-client