Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
File: bNmlABXpaTdlb8DKW21WXkWb02A.mft (raw, json)
Hash identifier: 2NOVMIKAVT3y4GYQuKTmaXgtG1kkt/IQpYJTnrnSuVE=
Subject key identifier: 5F:6D:CF:6D:5D:55:B4:C3:1B:F4:DE:2F:BF:88:88:FC:E0:2F:33:83
Authority key identifier: 6C:D9:A5:00:15:E9:69:37:65:6F:C0:CA:5B:6D:56:5E:45:9B:D3:60
Certificate issuer: /CN=6cd9a50015e96937656fc0ca5b6d565e459bd360
Certificate serial: 01965914CC1D072B3B9D9923E593DFB47DD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
Manifest number: 14FE
Signing time: Mon 21 Apr 2025 16:00:57 +0000
Manifest this update: Mon 21 Apr 2025 16:00:57 +0000
Manifest next update: Tue 22 Apr 2025 16:00:57 +0000
Files and hashes: 1: bNmlABXpaTdlb8DKW21WXkWb02A.crl (hash: MJe0u5hCbglcZV6ulImDIunU5XD9fmt67j7RNNheR1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 16:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:14:cc:1d:07:2b:3b:9d:99:23:e5:93:df:b4:7d:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd9a50015e96937656fc0ca5b6d565e459bd360
Validity
Not Before: Apr 21 16:00:57 2025 GMT
Not After : Apr 22 16:00:57 2025 GMT
Subject: CN=5f6dcf6d5d55b4c31bf4de2fbf8888fce02f3383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:37:50:5b:2d:31:ed:94:e9:01:8a:6f:f0:58:
4f:38:3e:13:89:e0:02:31:96:27:35:ee:97:50:b9:
a7:e7:82:14:50:09:5f:3b:e1:d0:b4:ef:98:b8:63:
90:43:e2:f9:5e:c3:c5:e0:43:10:98:06:a1:cc:a3:
4b:48:ba:9d:28:17:8b:fe:cd:c0:6d:5b:4d:11:a8:
6d:a1:f1:6c:23:9b:41:e9:7e:0d:97:3c:e8:50:7b:
04:c9:de:20:b3:b8:60:53:23:3c:05:da:0a:0e:5c:
76:13:1e:4d:6c:c4:03:7c:7b:53:64:f3:07:62:24:
2e:72:68:e7:3a:a9:5a:71:73:b4:d1:72:a6:d1:c1:
5a:9c:91:87:86:21:52:7d:6a:96:53:9e:d1:cc:3f:
1b:aa:50:6a:66:d4:a9:ff:8c:e9:84:1e:f2:56:59:
dd:5a:13:f1:9f:6b:e5:f6:bf:14:00:df:7e:74:f5:
8a:fc:2f:f4:46:61:b0:9c:68:d9:b1:95:f4:3d:4d:
6f:a6:07:fa:23:26:f2:b9:e9:6d:d0:0e:d8:3a:c2:
c3:c5:62:a7:75:16:8f:c7:1d:b5:f6:1c:df:fc:c6:
b2:e1:da:e2:00:14:75:c3:bb:ec:c3:bb:0d:2c:b5:
06:a5:a1:d7:f4:07:77:4f:a9:3b:c2:d6:69:13:7d:
05:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:6D:CF:6D:5D:55:B4:C3:1B:F4:DE:2F:BF:88:88:FC:E0:2F:33:83
X509v3 Authority Key Identifier:
keyid:6C:D9:A5:00:15:E9:69:37:65:6F:C0:CA:5B:6D:56:5E:45:9B:D3:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:6a:f9:b9:11:1f:ac:78:6a:69:8c:b8:ec:f8:9a:d1:0a:08:
ab:ad:cf:a5:0e:2c:50:ba:c7:ff:fe:10:51:fb:77:d6:dd:bb:
4d:5e:c5:2a:a3:9f:cc:ca:13:ee:b8:0e:3b:dc:dd:3a:3d:8c:
7d:2e:76:4f:3a:0f:e6:18:84:b1:a0:d5:b1:7c:6f:4d:34:3b:
fe:53:b9:ed:e8:41:18:b6:d4:90:06:3e:60:c9:42:d1:d3:aa:
85:5c:cf:b1:ef:9a:a9:d2:00:67:65:46:95:65:d3:07:f6:00:
15:34:67:5c:50:8f:08:e4:ad:f0:65:eb:cb:8a:7a:28:a8:d7:
98:da:d3:3e:5d:f5:4a:c4:cc:5a:3c:83:80:90:f1:8d:55:98:
b4:fa:f2:6e:dd:90:50:d3:72:8e:dd:2e:ee:54:bc:1b:90:9d:
71:fb:01:62:a5:cd:a3:b1:f6:1c:e6:40:46:8f:e3:49:42:8a:
2f:fd:af:73:2e:d0:9d:c6:e5:bc:d2:19:90:6b:de:65:d1:8c:
9d:bd:22:37:54:52:1c:9b:33:12:10:e5:7e:e8:6d:76:9f:11:
45:3f:ad:4a:dc:83:0c:8d:24:4b:59:d2:75:1d:c8:76:81:04:
12:d2:d1:3d:6a:71:df:0d:48:78:9f:81:02:ed:a5:15:90:32:
ae:e6:b5:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 22:23:25 2025 by rpki-client