Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
File: bsJOKsnNUzmWUVkM85Gta78bPiY.mft (raw, json)
Hash identifier: KMcjSvNvYSiiY7LG0oS8t8tfLUgwNPSeWcniwiLZqfQ=
Subject key identifier: 4E:CA:FB:9E:E4:E9:25:6F:F1:9C:0F:D3:77:3D:4F:46:2B:6C:0F:46
Authority key identifier: 6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26
Certificate issuer: /CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26
Certificate serial: 01974B8DC892BC402D05CC74764BB19966DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
Manifest number: 06E6
Signing time: Sat 07 Jun 2025 18:01:12 +0000
Manifest this update: Sat 07 Jun 2025 18:01:12 +0000
Manifest next update: Sun 08 Jun 2025 18:01:12 +0000
Files and hashes: 1: JztZZ5jdsYiJwH6r3ruJ841yjPA.roa (hash: fWtXOGVQeuynraDkbnyZnR91bHF3bELX/gnfpid099o=)
2: bsJOKsnNUzmWUVkM85Gta78bPiY.crl (hash: eq7MzDKvv90n4wRSxa6feoTWOMpl/ZYkEGxEG6RSlqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:c8:92:bc:40:2d:05:cc:74:76:4b:b1:99:66:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26
Validity
Not Before: Jun 7 18:01:12 2025 GMT
Not After : Jun 8 18:01:12 2025 GMT
Subject: CN=4ecafb9ee4e9256ff19c0fd3773d4f462b6c0f46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:84:66:3a:0d:06:6e:a1:61:a0:60:10:7b:2c:
4d:fb:c2:60:e7:a4:41:89:cf:08:cd:5d:61:7a:f1:
de:e8:87:93:19:40:ea:5a:29:ff:19:f5:c2:4e:53:
b8:67:5c:4d:ed:d9:c0:ce:54:c3:c6:d9:8a:7e:44:
5b:eb:26:e0:84:4e:fd:aa:de:6b:86:ad:70:0f:f4:
55:34:38:7f:c4:78:02:18:44:95:4a:b8:48:de:d3:
2c:c3:21:02:30:08:4f:46:bb:65:b1:23:06:86:e5:
48:31:d8:3c:c0:21:b4:98:82:2e:7d:a0:34:fc:7f:
bb:a0:ca:6a:59:4c:68:06:7e:7c:72:8f:64:15:56:
dd:ba:73:9a:d6:ed:f7:2d:7e:bf:cf:ba:f3:d8:55:
44:5e:8c:3a:33:cd:52:28:4b:d4:a4:24:97:a9:c6:
2d:d6:60:41:9b:74:5f:ad:49:18:07:02:89:c7:17:
73:5f:aa:02:70:07:a0:17:b4:40:0d:6e:51:e0:37:
83:0c:e7:3e:90:22:2b:ed:6b:e9:79:f1:95:2c:fd:
73:e3:36:0e:18:62:b4:05:ed:51:c1:6b:9d:3a:53:
ce:6a:3b:bf:78:79:89:2f:20:e9:ae:5d:bb:21:88:
d1:b5:27:c3:f8:f3:c1:5f:b6:f9:fe:16:a0:89:93:
af:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:CA:FB:9E:E4:E9:25:6F:F1:9C:0F:D3:77:3D:4F:46:2B:6C:0F:46
X509v3 Authority Key Identifier:
keyid:6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:d7:d4:24:6f:ea:29:d1:eb:8e:02:b8:f7:5d:55:0d:25:69:
c6:ed:2a:4e:d8:1d:62:41:7c:5b:c8:8f:d9:b3:b1:46:33:ff:
ed:e2:3b:7c:d5:43:14:8f:40:a0:f6:ed:4e:11:df:b2:5a:a9:
84:e7:af:20:3a:1b:2e:7c:a8:ff:83:c7:1e:bb:24:df:72:7f:
50:a3:d5:83:ff:b1:49:fa:75:fc:60:9f:2b:79:71:57:f9:bc:
79:a1:09:d3:d5:7e:88:d6:a2:1a:1b:2f:19:ed:a2:d3:b3:75:
44:bb:ed:5b:37:8f:36:8d:8b:c6:28:2a:1a:2b:73:93:9b:bc:
9c:4d:33:6d:28:23:a6:a6:ce:8e:84:09:57:a7:fc:4d:23:c8:
bc:c5:29:e1:31:cf:b1:bd:c9:13:a0:91:47:3e:4b:fa:4a:0e:
f5:91:7d:f6:37:22:da:2d:a3:9a:01:ba:74:f6:a3:80:bf:0a:
a8:6b:95:20:b4:46:2e:8d:b7:e2:9e:94:2c:63:de:fe:6e:f6:
c6:ec:ec:08:2d:a0:d2:7b:8d:16:cb:38:ec:3e:e2:c2:34:0c:
b5:c8:6f:9b:16:02:98:99:ff:7c:a1:2f:96:70:ca:07:05:81:
10:a3:1c:6a:a7:f8:c5:b5:1a:77:9a:d3:80:2d:a3:ed:52:7d:
fc:97:54:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:06:18 2025 by rpki-client