Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
File: bOLuhMz1bNwA_CyqWSknna4UiIo.mft (raw, json)
Hash identifier: Z8lQD2cMJI6/4askojlVAv8lN1/iYEDC40iOBtWErg0=
Subject key identifier: D4:3A:E5:B5:EA:4E:27:F7:18:64:E4:E8:6A:2B:F8:CD:D4:3B:89:36
Authority key identifier: 6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
Certificate issuer: /CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Certificate serial: 01967A567ECA67CEBF168637D938A91E4E28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
Manifest number: 1054
Signing time: Mon 28 Apr 2025 03:00:10 +0000
Manifest this update: Mon 28 Apr 2025 03:00:10 +0000
Manifest next update: Tue 29 Apr 2025 03:00:10 +0000
Files and hashes: 1: bOLuhMz1bNwA_CyqWSknna4UiIo.crl (hash: 4psyDoT4ZVqqD04gS8F1YVKXVf7eK37jqiPEUITsp+I=)
2: cm9pm1Y4fh7VmcKkQuyOuu9QXgE.roa (hash: T9xnzREMcoc526+ebS5GUXWxlrjNz60+DOHB2xM8pA4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:56:7e:ca:67:ce:bf:16:86:37:d9:38:a9:1e:4e:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Validity
Not Before: Apr 28 03:00:10 2025 GMT
Not After : Apr 29 03:00:10 2025 GMT
Subject: CN=d43ae5b5ea4e27f71864e4e86a2bf8cdd43b8936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:76:07:cf:c0:0a:95:39:df:15:e7:1e:16:93:
54:68:8c:51:ca:01:3c:e1:9c:aa:91:7e:10:b4:de:
01:8c:e4:3a:40:8a:f8:18:9e:13:de:20:e5:18:fa:
59:b2:83:4b:d9:6c:95:9a:6a:34:c0:3a:8f:86:47:
4b:b0:c5:5f:77:8b:92:47:60:e9:07:93:2d:6a:8b:
4e:89:79:71:96:eb:c2:25:91:5b:5c:52:ac:e0:e9:
b7:44:df:6b:f7:86:0f:cc:ec:32:a5:ae:1e:63:7c:
7d:7a:61:8b:07:23:bc:8c:88:b9:07:b4:91:ed:c9:
1f:85:cd:ac:fe:dd:87:be:f4:2a:5c:d6:ac:5b:a6:
21:4d:c2:ce:90:9d:7c:26:78:2b:c9:d2:9d:bc:24:
6c:9d:0d:26:3c:43:65:d4:34:4a:00:c7:dd:6c:8e:
a7:9e:c8:49:b7:ab:9e:22:4d:b4:34:6b:3e:db:58:
97:8c:46:dd:95:8c:1a:e5:7a:f0:e8:1d:c1:0f:53:
ec:bd:40:b5:14:60:27:80:52:4f:f3:14:e5:7c:19:
57:6c:bd:8f:c7:ad:f9:08:fa:5c:85:ca:64:db:c5:
a8:35:f0:a3:6c:22:7b:9e:e7:b8:8f:9d:f7:4e:42:
47:84:18:9c:f2:09:2a:8a:30:dc:08:2f:85:00:89:
07:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:3A:E5:B5:EA:4E:27:F7:18:64:E4:E8:6A:2B:F8:CD:D4:3B:89:36
X509v3 Authority Key Identifier:
keyid:6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:75:f3:de:06:c0:82:e9:a2:dc:8e:5c:11:26:78:40:58:5f:
3b:de:ab:28:42:b7:94:25:ad:b0:1a:e2:65:98:a1:6f:b3:90:
bf:5c:09:d2:82:5f:aa:c9:ee:19:4f:dd:d3:c5:6f:5d:22:a2:
3e:7f:11:5a:1e:fc:51:c4:e9:7f:cb:31:2c:66:51:78:e7:09:
e6:3c:ff:f6:0f:a9:af:0d:02:49:58:15:fd:b4:4f:8f:9f:22:
10:ad:d7:1e:82:f6:8d:ea:30:4b:5a:c3:5e:b1:70:8e:0f:55:
14:82:cf:b7:ce:1d:a0:80:e5:09:64:10:56:b7:06:ef:ff:91:
53:d2:50:20:76:b8:38:7c:34:27:57:f3:4f:ae:bf:be:f4:9c:
bf:4c:0d:66:ea:b1:a1:73:eb:6d:c2:df:ce:ed:99:68:45:33:
a6:42:5f:63:3a:c5:e1:ce:87:7e:b5:6d:b4:09:f3:63:ee:c6:
36:a1:6e:3b:68:f0:26:a6:81:e0:ac:a6:00:50:b7:fc:00:46:
70:22:f6:67:db:5e:3c:23:c6:45:9e:55:b3:ef:03:fc:b4:2b:
f5:0b:ee:27:82:8c:57:70:a3:8b:48:e9:51:09:d9:67:63:d8:
5c:b6:23:11:7e:82:64:82:c0:d1:67:72:e9:ce:98:b2:7d:c1:
c6:6f:27:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 10:40:12 2025 by rpki-client