Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
File: bG9jkROWOM74MYEUEyzPJuFn06Q.mft (raw, json)
Hash identifier: yYU+MQgPtWeN4D+aYp3j9K2g1spSOItrqIBCS1bULjM=
Subject key identifier: 89:56:61:D0:A1:7F:DA:96:0D:B8:27:FB:7D:B3:72:19:8F:0E:66:84
Authority key identifier: 6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
Certificate issuer: /CN=6c6f6391139638cef8318114132ccf26e167d3a4
Certificate serial: 019655386CC78F976CD99AF544FDD8AC5A19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
Manifest number: 11D7
Signing time: Sun 20 Apr 2025 22:01:23 +0000
Manifest this update: Sun 20 Apr 2025 22:01:23 +0000
Manifest next update: Mon 21 Apr 2025 22:01:23 +0000
Files and hashes: 1: _HGowDUCSG2pcAysO4ogxA6yosc.roa (hash: UPTC6ZbpFxK2iqUZ6z67RcYvcbR0/gldSq3kNUHLLJI=)
2: bG9jkROWOM74MYEUEyzPJuFn06Q.crl (hash: uyApjupolGIwrMRxWqO0v1xZuAcIXlets2BPlvKj/Fs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:38:6c:c7:8f:97:6c:d9:9a:f5:44:fd:d8:ac:5a:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c6f6391139638cef8318114132ccf26e167d3a4
Validity
Not Before: Apr 20 22:01:23 2025 GMT
Not After : Apr 21 22:01:23 2025 GMT
Subject: CN=895661d0a17fda960db827fb7db372198f0e6684
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:51:84:71:3f:af:97:b3:57:56:0c:5e:ec:db:
6c:28:9e:b4:aa:fa:6f:1a:e7:d9:24:1d:fb:f9:db:
d1:7b:e7:6b:19:91:6b:79:3b:6f:8d:e2:f4:cc:51:
64:a5:99:fa:31:52:11:7f:3d:0c:0e:d4:93:d7:0b:
9b:7d:0b:17:2b:6d:b8:5a:98:f7:f8:79:28:c0:7a:
e5:4d:72:a6:e1:d4:0e:01:3e:62:e3:05:55:41:20:
24:cc:84:0c:c0:a8:a8:e7:e1:9f:23:b2:16:5e:fd:
bf:04:d5:1e:50:90:e3:3f:d5:69:d5:a1:17:1d:4a:
ce:f5:88:00:9d:ca:49:a4:b8:5a:67:26:cb:52:83:
34:58:68:14:ff:7d:19:41:67:e3:83:d9:ff:36:e9:
97:2e:47:bd:15:07:d8:1c:cb:a5:b6:52:97:6c:1d:
7a:86:04:74:82:d0:27:28:86:be:2a:7e:dc:03:cf:
e4:25:4a:ad:ba:e6:bb:f1:3b:2f:ae:fe:23:5f:7e:
75:51:b6:d6:41:c2:38:45:60:c0:bc:26:f3:42:8a:
96:98:e6:a6:16:73:2e:44:be:38:41:9a:e4:a2:70:
27:cf:a2:0d:60:48:17:48:27:39:35:aa:b1:74:94:
42:98:16:82:92:d1:43:2f:a7:d3:64:fe:bd:ca:45:
6b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:56:61:D0:A1:7F:DA:96:0D:B8:27:FB:7D:B3:72:19:8F:0E:66:84
X509v3 Authority Key Identifier:
keyid:6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:65:39:01:a4:e2:a8:30:49:e1:bd:2e:99:ed:3a:27:22:7f:
cd:05:2b:c3:db:48:ea:9f:7a:d2:9f:e3:3c:8c:65:ba:a9:a6:
36:68:93:7c:7a:0b:c4:00:de:4b:aa:38:45:97:bd:af:28:7f:
8f:70:1f:93:06:ea:93:81:b9:d9:2b:c5:9c:98:a7:71:e5:7f:
91:12:77:4d:40:5d:7d:7b:69:6b:38:20:d7:9b:e7:53:91:bf:
f4:63:4c:cc:9d:a2:22:9d:fd:dd:de:68:0d:7a:dc:83:5d:f5:
7d:9c:20:54:df:e8:ba:de:67:58:2a:c4:f3:a9:16:9c:92:a7:
cc:7e:c4:83:ef:c5:22:e7:27:fa:5e:65:1e:70:e8:0d:03:a4:
b5:3e:f6:85:a5:8e:9f:dc:9c:3e:ac:3f:77:ef:99:64:32:ac:
28:f5:e5:1e:9e:90:81:5f:6a:97:a5:28:fc:db:e4:75:05:72:
89:bf:4f:8f:68:2a:98:cc:0c:5a:7e:80:09:2b:d3:6e:61:99:
66:47:e7:9b:f4:a8:37:6f:8b:46:ed:31:f3:19:0c:5d:4a:0d:
80:36:c7:4e:84:00:e7:7e:f6:a9:db:c4:1f:55:bc:bc:c7:15:
02:69:0d:03:46:31:eb:ea:49:08:02:c9:c7:92:ae:0c:2c:10:
85:75:71:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 07:27:03 2025 by rpki-client