Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
File: bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft (raw, json)
Hash identifier: sw9ymBmjVg6sOo0FLve1JBFK2JbI65KoqNFVOLOMrIs=
Subject key identifier: 0F:0B:D8:6E:57:97:D7:0F:D5:7D:41:B7:E9:70:7C:BA:FA:6A:95:C7
Authority key identifier: 6C:19:5B:9B:D4:70:01:EA:B5:0F:DB:A1:DE:0D:2D:3F:45:27:F6:75
Certificate issuer: /CN=6c195b9bd47001eab50fdba1de0d2d3f4527f675
Certificate serial: 019680C6A899EA26E6351C931012A2DB9F72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
Manifest number: A7
Signing time: Tue 29 Apr 2025 09:00:24 +0000
Manifest this update: Tue 29 Apr 2025 09:00:24 +0000
Manifest next update: Wed 30 Apr 2025 09:00:24 +0000
Files and hashes: 1: MB79B-8QZwUqYrXc2Ibwogq_qLQ.roa (hash: bNBfBbjDpqRStExCWEma6tP6lj9BYj7p2ZAmcoBXfmY=)
2: bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl (hash: bZ4sOu4B59XnmoSj4uc7pZ6daZIPBiEd61YW3pnOK44=)
3: jf4WdQ24BygRnLqj51WchS5928k.roa (hash: /f6JdSqZIG39wyf+D4unjoQWcyolGzjFS4yjumA6E0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:c6:a8:99:ea:26:e6:35:1c:93:10:12:a2:db:9f:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c195b9bd47001eab50fdba1de0d2d3f4527f675
Validity
Not Before: Apr 29 09:00:24 2025 GMT
Not After : Apr 30 09:00:24 2025 GMT
Subject: CN=0f0bd86e5797d70fd57d41b7e9707cbafa6a95c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:af:b1:58:6b:d9:8a:72:71:b7:d9:b2:d0:1d:
c0:b8:b0:31:3e:08:9f:1e:60:41:a0:a9:35:5c:ea:
4b:eb:5f:0a:ec:85:b6:0d:74:ba:39:ee:e7:5a:5e:
fd:91:6e:48:bf:2f:17:b9:97:78:ba:3a:a7:86:df:
d9:fd:e3:15:f2:db:54:82:a8:39:31:11:fc:8e:ae:
8f:2c:03:cc:ce:04:d7:20:ff:b3:3c:98:3c:9d:3e:
20:b9:c3:3a:28:a7:d4:38:5d:3e:85:49:76:06:d4:
81:13:89:dd:6e:4f:e9:7d:48:23:6e:a3:9f:e0:b0:
0f:8e:cb:70:69:3a:2e:5f:9c:bc:f1:63:51:d1:96:
fe:51:6a:a1:90:82:d3:bd:0d:b3:92:4d:d4:b7:89:
56:89:ad:fb:88:a9:55:e6:41:22:aa:23:3d:01:44:
b8:d2:14:c0:62:bd:74:71:bb:0a:61:b1:54:64:d8:
e4:df:59:7c:b1:44:dd:cd:da:7f:ad:40:be:12:db:
11:09:4d:9f:8e:5d:f9:18:00:e7:04:ba:39:55:22:
5d:66:67:8d:14:a8:8d:16:9a:f5:f6:0e:e8:26:b3:
99:63:b8:c8:ff:a2:45:b6:51:13:8b:8f:ab:24:90:
22:f0:1c:ba:12:ab:b4:96:47:b4:f5:e7:34:3e:bf:
cf:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:0B:D8:6E:57:97:D7:0F:D5:7D:41:B7:E9:70:7C:BA:FA:6A:95:C7
X509v3 Authority Key Identifier:
keyid:6C:19:5B:9B:D4:70:01:EA:B5:0F:DB:A1:DE:0D:2D:3F:45:27:F6:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:71:90:30:0d:c4:5a:44:ac:02:f3:bd:49:37:72:83:c1:67:
fb:b7:80:8c:87:1b:ad:4d:1b:87:1a:e4:1f:9b:d0:de:f7:23:
7b:bd:42:1a:c1:e3:2f:3f:24:7c:c3:82:91:4d:66:41:20:bc:
39:98:72:d3:1c:b8:17:65:76:af:6c:9c:c0:3b:5f:b7:d9:66:
c6:cc:bb:ff:b0:49:3a:9b:70:e3:75:a7:c6:ac:df:98:6e:40:
b1:0f:20:55:ad:e3:8f:be:89:28:35:b0:85:7e:76:ca:1b:05:
f2:25:0c:26:45:3f:67:33:cd:cc:f0:c6:d5:fc:52:8b:53:8e:
ba:15:01:7d:7a:18:ff:f7:f0:31:06:5d:4c:61:12:9c:9d:2f:
64:11:4e:1a:69:d3:2f:8f:ed:9e:6d:79:37:d0:40:b3:52:f7:
5c:39:85:c0:85:f0:f6:1d:b7:81:45:ca:2e:9c:4c:0d:f9:a6:
21:25:af:b1:96:95:24:c5:05:49:b2:8a:da:03:74:be:e9:d0:
e5:91:be:62:d9:91:36:7c:84:28:1d:6f:c1:37:b4:4f:c3:9b:
13:52:3a:3b:7f:a6:4e:75:b6:2b:e5:cd:4c:cb:92:82:42:82:
de:2f:7a:79:cb:ec:7d:81:37:83:27:79:76:21:ae:a4:91:56:
68:11:c2:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 13:03:04 2025 by rpki-client