Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
File: bQih9MOF86e2KYTVPoFmWplUEPM.mft (raw, json)
Hash identifier: nbdmaYQXfW+ipDA4hLCLp5j0SxVd6VRBfz1+8Cyq9VI=
Subject key identifier: 35:84:40:9A:AF:41:30:E6:5B:31:32:AB:BB:D0:1C:11:D0:2D:1C:48
Authority key identifier: 6D:08:A1:F4:C3:85:F3:A7:B6:29:84:D5:3E:81:66:5A:99:54:10:F3
Certificate issuer: /CN=6d08a1f4c385f3a7b62984d53e81665a995410f3
Certificate serial: 019656B83FACFB0803436AC3161401E8E6C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
Manifest number: 08FE
Signing time: Mon 21 Apr 2025 05:00:37 +0000
Manifest this update: Mon 21 Apr 2025 05:00:37 +0000
Manifest next update: Tue 22 Apr 2025 05:00:37 +0000
Files and hashes: 1: J7EMvjCrDCSEaNvEXQjzbwryII4.roa (hash: Ak6AJOV8w0m5lQCAa41zEyYCpJIBSURSyT+w9pihP/8=)
2: bQih9MOF86e2KYTVPoFmWplUEPM.crl (hash: wDKCGQ89cni0pstPL/UFgS0vk+FckTZDhW/i7CqdPto=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:b8:3f:ac:fb:08:03:43:6a:c3:16:14:01:e8:e6:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d08a1f4c385f3a7b62984d53e81665a995410f3
Validity
Not Before: Apr 21 05:00:37 2025 GMT
Not After : Apr 22 05:00:37 2025 GMT
Subject: CN=3584409aaf4130e65b3132abbbd01c11d02d1c48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c6:6a:d7:50:86:b8:39:6d:20:10:c7:9d:b4:
cf:87:18:47:5e:f6:ed:b4:3f:b0:c8:e6:ce:62:8e:
8a:e8:4f:c1:6d:3b:14:b8:1d:f0:e4:6c:fb:ca:79:
36:67:e0:1b:47:f7:f3:ab:58:6c:f6:4f:e8:dd:f4:
6b:9f:3a:fb:b5:90:70:1a:5d:4a:ef:10:8e:43:c9:
62:1f:e1:ef:de:50:5f:34:26:c7:e5:19:76:46:69:
1a:90:68:c1:b3:13:47:ad:c9:4a:b1:f6:ac:96:1a:
1e:5f:8c:6f:ce:46:6f:9f:82:bf:1c:20:1e:67:d5:
0b:9f:d3:ba:87:a6:a9:29:10:78:41:1b:ec:a5:3b:
8a:6c:6a:7d:e4:5c:df:8d:de:48:67:34:a6:80:63:
3f:3b:3d:5c:b4:42:a8:a9:b7:f0:d0:42:b1:c6:03:
a6:0a:ee:59:a5:5b:25:fd:6e:3c:5d:1b:40:56:73:
38:4f:85:61:40:f5:58:a3:59:30:ca:2a:d8:3a:f7:
d9:6e:55:b1:fd:11:94:6a:82:03:79:b4:e0:36:69:
d5:e7:6e:9e:d1:11:e0:94:f2:bb:bb:17:a6:c9:05:
e3:8f:88:57:cc:f4:a0:93:9e:32:83:37:51:08:a6:
89:e0:8f:e9:e1:04:f8:a3:a3:4b:a6:ef:0d:56:df:
0d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:84:40:9A:AF:41:30:E6:5B:31:32:AB:BB:D0:1C:11:D0:2D:1C:48
X509v3 Authority Key Identifier:
keyid:6D:08:A1:F4:C3:85:F3:A7:B6:29:84:D5:3E:81:66:5A:99:54:10:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:01:a4:8c:b0:6e:30:c7:68:67:d8:3c:b9:73:00:3b:ae:5e:
fa:83:b2:ef:b3:67:15:bb:b4:40:74:16:b9:a3:6b:8d:ab:19:
3e:61:98:88:73:15:3d:71:29:9c:fb:93:24:c8:ef:9f:67:ab:
7d:79:ec:f4:ad:11:14:f9:3d:51:bb:e6:78:5f:6f:f4:44:4d:
26:13:7f:07:c7:76:de:7f:33:0d:ea:7e:a1:d2:71:0f:97:53:
1a:6f:0a:3a:74:65:46:5c:af:98:07:09:de:27:1f:23:6d:83:
90:cd:ca:e5:41:a9:8a:ec:65:70:c3:6a:d0:45:fa:8f:95:59:
7c:a3:8d:0b:e0:6e:18:7d:ec:5e:3c:11:e3:fe:9f:24:a5:3c:
c5:e8:e1:7b:10:63:8d:36:c7:a6:9e:62:7b:05:10:ea:bd:3a:
62:e1:7f:46:87:f0:dc:a0:94:ca:bd:fe:93:1d:b1:3c:1c:34:
43:35:74:c9:a8:a8:43:a9:a1:8a:13:d7:ba:af:4c:b3:c4:f6:
72:32:17:96:9b:7b:1b:c9:7c:74:be:c0:8d:87:82:47:1a:ec:
03:55:2e:2a:65:4a:5f:02:75:7b:90:68:4d:a2:b0:32:bf:87:
29:c2:e7:e2:c5:74:04:67:b0:4e:ee:14:a4:8f:c7:59:a5:4b:
5f:f4:cc:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:37:52 2025 by rpki-client