Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
File: BkwamGxZM6O5EIToo_8IBm05jhk.mft (raw, json)
Hash identifier: 1++X1LLW+bIMIC+pzX0PHkltlEF8kKlJHf83/ZgMi1I=
Subject key identifier: CA:C6:42:A0:41:9A:9B:F8:13:AB:3A:8E:AE:F7:3C:59:97:D2:2D:91
Authority key identifier: 06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19
Certificate issuer: /CN=064c1a986c5933a3b91084e8a3ff08066d398e19
Certificate serial: 0196741E3A92ED7C7D52CB3EA4F8E7D7E6D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
Manifest number: 091E
Signing time: Sat 26 Apr 2025 22:01:00 +0000
Manifest this update: Sat 26 Apr 2025 22:01:00 +0000
Manifest next update: Sun 27 Apr 2025 22:01:00 +0000
Files and hashes: 1: BkwamGxZM6O5EIToo_8IBm05jhk.crl (hash: FW2KOiu9rYVXoex9YblumhxltokCcrAb/n+/FvfIR5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 22:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:1e:3a:92:ed:7c:7d:52:cb:3e:a4:f8:e7:d7:e6:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=064c1a986c5933a3b91084e8a3ff08066d398e19
Validity
Not Before: Apr 26 22:01:00 2025 GMT
Not After : Apr 27 22:01:00 2025 GMT
Subject: CN=cac642a0419a9bf813ab3a8eaef73c5997d22d91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:8e:68:3d:ee:c4:03:14:36:c7:f7:f8:cb:27:
13:da:99:0a:39:fd:0b:9d:87:50:ba:77:03:d1:bb:
a2:d7:d5:9a:27:d4:28:15:1e:51:d6:bb:2d:56:fe:
7a:ef:e2:1f:ca:ad:9f:07:da:64:fc:13:f0:aa:88:
14:21:c5:60:56:b3:0b:69:47:31:85:ab:55:b2:56:
45:f2:28:c3:43:95:6d:ca:1d:a7:0d:a1:73:b3:f0:
2a:c3:b8:df:19:30:fc:c0:e0:e1:05:9a:99:03:9e:
d1:dd:14:40:b6:49:ae:12:73:6f:18:29:c8:45:fd:
be:5d:b5:d5:75:9f:a8:c6:e2:22:13:1d:47:bd:68:
f5:2d:f3:ac:c3:02:14:64:0e:34:4b:55:0e:87:1b:
91:45:d3:f8:b8:e3:49:ed:5c:47:ae:49:02:6c:fe:
c3:41:82:e0:14:d5:01:5f:ee:b7:8c:3d:1e:21:e8:
b4:7d:23:30:b1:26:6a:59:cb:5e:6f:4d:75:5b:2e:
f9:22:7d:60:93:49:b2:9d:af:8d:f9:19:5e:7e:9d:
a5:fe:08:2a:c3:8f:92:04:e7:df:4a:f2:66:7d:65:
6f:d3:34:de:d2:a3:d2:dc:e8:cc:e8:95:62:00:5a:
d2:80:fa:c6:85:f8:76:33:38:30:fc:2a:dd:62:7c:
ee:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:C6:42:A0:41:9A:9B:F8:13:AB:3A:8E:AE:F7:3C:59:97:D2:2D:91
X509v3 Authority Key Identifier:
keyid:06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:e8:ac:1b:2d:b6:d4:f1:15:e8:16:86:50:30:c4:9e:1e:08:
58:6f:fb:96:a6:47:44:f4:92:94:0e:54:a1:d1:d7:55:ad:47:
64:b7:9d:b4:09:9d:66:34:14:47:36:4f:3f:2d:9f:f9:86:ed:
84:e9:17:f6:07:51:41:ea:9c:46:a7:a4:1d:32:f1:fd:1c:91:
2f:a9:3f:44:bf:79:1c:26:21:dc:52:7f:2a:4b:fd:85:07:41:
a4:09:57:c8:c8:59:f6:30:30:d2:8b:ea:35:33:2b:51:ee:41:
ae:2a:86:29:ab:b2:62:e8:0d:ea:75:16:66:93:32:ed:16:65:
15:d0:fd:c7:8f:a3:66:3a:0e:78:c3:09:84:3e:7d:22:6e:36:
33:f2:7f:cb:90:b6:a1:6d:f2:b9:31:9e:e7:7a:bb:58:90:ef:
b7:c6:45:3f:12:aa:cf:0e:0e:95:ab:93:f7:c1:e4:e1:7b:74:
d5:de:57:b6:b6:33:54:cf:60:8e:7e:29:dd:19:ab:5c:4b:16:
81:91:c9:e2:7d:26:8c:1c:58:71:1e:42:26:df:e7:16:82:c9:
ef:c2:27:57:2d:db:69:0f:4b:4f:c1:84:b1:e3:a8:ca:07:11:
5b:ce:d1:17:5b:39:a0:04:ec:b6:f2:23:56:7a:46:0a:4c:6f:
51:4c:91:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 07:46:50 2025 by rpki-client