Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
File: bdLO01LwH3613HYZ7XFMa2pceR4.mft (raw, json)
Hash identifier: 9zK7mGw+Ls2jlWkcLrjdXNa3VeeljOHYo2lpY1MneIE=
Subject key identifier: 49:FF:82:C3:29:95:88:5F:11:FF:5C:2D:E4:BB:88:F0:92:93:F5:7A
Authority key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
Certificate issuer: /CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Certificate serial: 01965ACBE6EE6628CE2405BC1701EC7BF5B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
Manifest number: FE
Signing time: Tue 22 Apr 2025 00:00:34 +0000
Manifest this update: Tue 22 Apr 2025 00:00:34 +0000
Manifest next update: Wed 23 Apr 2025 00:00:34 +0000
Files and hashes: 1: bdLO01LwH3613HYZ7XFMa2pceR4.crl (hash: S+YUpEekhOXwcF3X45l4Kwekdyuff1NqSGld0cJE4qk=)
2: ldaG2ZtwFXa0D8MT2zJfF9j3gsg.roa (hash: Iho31engw2p2ICkoCri0OTvpMAFdFfQ9ZJ+brUIBG2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5a:cb:e6:ee:66:28:ce:24:05:bc:17:01:ec:7b:f5:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Validity
Not Before: Apr 22 00:00:34 2025 GMT
Not After : Apr 23 00:00:34 2025 GMT
Subject: CN=49ff82c32995885f11ff5c2de4bb88f09293f57a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9d:0f:67:fa:49:10:55:f0:07:db:58:44:c7:
b9:fa:d2:3d:f8:67:82:65:53:2d:68:33:db:dd:d4:
db:ce:57:cf:63:ee:f4:d5:73:35:e3:3a:70:17:2c:
4d:e6:7e:85:a6:10:f4:22:7e:54:b9:39:67:ef:44:
a8:b8:4c:34:60:71:84:67:1e:f6:a1:5d:90:86:4a:
13:44:d3:18:80:01:f9:32:00:4b:fb:db:17:c9:ac:
fb:7d:31:78:e4:34:ea:96:cf:4f:a0:9c:b9:47:be:
55:65:0a:39:6e:c6:16:23:7d:09:85:e9:7c:df:af:
6f:a9:84:fa:4e:3d:1f:a5:db:e4:2d:05:f0:80:5d:
98:e7:d3:18:29:c9:55:78:9b:6f:0b:37:df:e4:bb:
68:2f:56:1f:b6:b4:d0:ee:96:5d:0e:a7:d8:d2:ba:
f6:e2:31:11:3a:07:9f:85:b7:31:2c:80:4a:f9:9e:
ba:9c:b9:e5:83:56:ac:7d:c8:01:be:e1:f9:45:df:
be:fe:1e:4e:97:4c:2d:c7:a3:01:ba:b2:2b:85:43:
d9:f6:13:f9:1d:ee:a1:47:93:8f:39:10:aa:33:e4:
f7:73:7f:ab:5b:3c:e2:11:08:58:4b:85:28:f9:df:
8c:18:95:e4:de:f2:fc:b7:0b:31:77:2c:cb:7b:aa:
7d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:FF:82:C3:29:95:88:5F:11:FF:5C:2D:E4:BB:88:F0:92:93:F5:7A
X509v3 Authority Key Identifier:
keyid:6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:f5:4f:97:6a:11:ae:4c:4d:21:19:15:7f:89:a6:c7:26:dd:
17:ed:2d:5d:90:50:6d:2c:22:9e:00:4a:68:18:1f:d4:4d:82:
7a:e1:30:6b:2e:47:b9:9b:0a:17:7b:92:b8:0a:64:93:94:e5:
ad:6f:f4:e8:7e:bf:2e:78:dc:b2:d9:94:00:23:94:05:80:73:
2f:f8:23:cc:95:91:68:11:32:bf:0c:25:f7:0a:6c:2f:cf:83:
3e:34:65:bc:1e:dc:ed:ad:d5:10:f8:d1:9e:d2:7a:c6:9d:1f:
06:74:e8:bf:20:b3:9a:d9:2c:4f:ba:19:eb:07:ba:9d:39:f8:
36:17:4a:5a:47:7c:92:25:a9:87:1f:67:9e:74:76:aa:72:83:
7b:e6:b7:f6:68:71:6a:3b:86:e0:50:8c:25:27:4f:52:e5:21:
1c:ae:45:2c:c2:e3:6d:16:69:14:33:30:99:07:dd:04:5b:c1:
a9:59:02:d3:cc:3b:10:85:6b:6a:3d:4e:b7:64:89:76:05:0a:
bc:ea:7c:0e:0c:3e:bf:8e:16:d0:52:04:6e:10:3f:bc:7c:19:
97:29:f7:ab:a1:67:48:d2:4b:39:c3:2f:b6:bb:f2:bd:30:e3:
8f:0c:c3:de:99:37:7d:4b:18:0a:e2:7d:f4:a6:dc:46:b9:bf:
ed:e0:e3:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 05:08:34 2025 by rpki-client