Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
File: bJSdK9ZO4X711H-WPj1depgrEq8.mft (raw, json)
Hash identifier: 6Dp33GoBcRg9wmyOp6cEYklhICPZG1uNZUS4cRhSf9g=
Subject key identifier: 09:A2:E6:99:23:36:79:C8:42:10:C8:48:F0:3F:E2:72:59:25:1A:4C
Authority key identifier: 6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
Certificate issuer: /CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Certificate serial: 01964DEC7236F83F306D2070A7DE0660E692
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
Manifest number: 0966
Signing time: Sat 19 Apr 2025 12:01:03 +0000
Manifest this update: Sat 19 Apr 2025 12:01:03 +0000
Manifest next update: Sun 20 Apr 2025 12:01:03 +0000
Files and hashes: 1: OyVcB1brzSxuoeEjBo4fT0W9OFc.roa (hash: sut6tQHQTuBMJAc0/1shERZEk1RWFKSSDeDy5cd5Klo=)
2: bJSdK9ZO4X711H-WPj1depgrEq8.crl (hash: 4i7w/MxGiEbRzssri7F33WCNdZzD58Yx/07pNQNE9oU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 12:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:ec:72:36:f8:3f:30:6d:20:70:a7:de:06:60:e6:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Validity
Not Before: Apr 19 12:01:03 2025 GMT
Not After : Apr 20 12:01:03 2025 GMT
Subject: CN=09a2e699233679c84210c848f03fe27259251a4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:02:15:38:c7:d6:70:64:71:2a:9a:41:13:17:
0f:8b:63:47:7e:4b:bf:25:9d:dc:9e:79:0f:10:da:
db:28:a0:74:c2:38:54:c1:62:c2:d6:87:51:75:4c:
09:d0:a1:a9:c6:c3:f1:5e:01:04:d4:09:b4:43:e1:
ca:eb:6d:fe:2c:1a:bb:7c:8d:24:cf:89:a7:42:bd:
06:54:8c:20:70:3b:ba:71:7b:91:32:4a:46:a2:22:
d4:ca:e0:80:55:d9:db:c1:c9:88:d8:34:db:f5:d9:
7c:4d:ae:04:03:e3:c2:71:0d:29:b0:d7:31:b2:b4:
de:92:14:00:34:bb:08:e5:dd:48:f0:38:ef:e3:6d:
b2:38:eb:98:bd:64:41:1c:34:09:7f:f6:e7:20:c3:
d7:fb:5e:ad:2b:9c:94:10:e7:ad:38:0e:57:5e:0a:
e2:2c:f8:3e:cf:cf:07:98:c2:2f:39:eb:62:ff:06:
15:57:32:8d:11:92:e9:25:57:92:b1:7a:13:da:1c:
17:ae:7c:67:c2:35:1c:27:9b:80:19:9c:05:61:aa:
c5:ef:18:00:00:80:21:c5:17:44:17:60:98:e3:26:
a3:6c:b3:50:33:84:1d:91:a8:2d:c2:4f:7f:da:a5:
4d:c9:0b:0c:40:ca:5e:49:73:ee:7c:02:5e:7c:c5:
4a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A2:E6:99:23:36:79:C8:42:10:C8:48:F0:3F:E2:72:59:25:1A:4C
X509v3 Authority Key Identifier:
keyid:6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:49:11:95:71:72:c5:cd:08:99:04:9d:4f:81:ad:88:52:c3:
ae:89:5c:bd:9d:2b:8c:d0:f5:c2:6c:15:52:81:fd:f0:5f:0d:
98:22:79:d2:92:b6:38:a7:b4:54:03:33:2b:c7:8b:e8:3d:12:
34:dc:3a:fe:6f:7a:b7:50:55:ab:81:93:12:7b:88:68:6f:10:
8a:8d:42:bb:e4:ed:00:35:44:21:7e:0e:16:cd:ae:39:a3:00:
95:7b:42:56:8d:36:4f:c1:10:c7:f3:65:59:80:8f:ff:2d:b0:
6a:c8:04:44:3c:b7:39:05:4f:bf:03:9c:7e:32:52:ad:36:95:
0c:39:d2:95:38:d4:04:0d:34:c9:bd:f3:b2:82:f7:51:d8:8e:
e9:1d:5a:f2:e0:7a:6e:5e:30:75:c2:fd:0a:66:b8:4b:d7:1e:
c5:2c:f4:ef:03:67:ae:02:7e:9b:2e:a2:a4:f1:2b:3c:aa:f8:
be:1d:20:91:00:ca:7c:29:dc:bc:54:00:9b:82:7b:08:dc:04:
9f:11:13:fb:00:3d:70:e6:27:0b:85:99:01:3f:b5:b1:7f:c0:
dc:f5:21:19:f8:a4:7c:ea:bc:c1:89:63:e4:17:33:ed:4e:fe:
36:20:c1:c1:c2:18:f3:5a:b4:df:2c:f8:e9:d0:be:98:3e:e6:
50:f6:d1:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZN7HI2+D8wbSBwp94GYOaSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjOTQ5ZDJiZDY0ZWUxN2VmNWQ0N2Y5NjNlM2Q1ZDdhOTgy
YjEyYWYwHhcNMjUwNDE5MTIwMTAzWhcNMjUwNDIwMTIwMTAzWjAzMTEwLwYDVQQD
EygwOWEyZTY5OTIzMzY3OWM4NDIxMGM4NDhmMDNmZTI3MjU5MjUxYTRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxQIVOMfWcGRxKppBExcPi2NHfku/
JZ3cnnkPENrbKKB0wjhUwWLC1odRdUwJ0KGpxsPxXgEE1Am0Q+HK623+LBq7fI0k
z4mnQr0GVIwgcDu6cXuRMkpGoiLUyuCAVdnbwcmI2DTb9dl8Ta4EA+PCcQ0psNcx
srTekhQANLsI5d1I8Djv422yOOuYvWRBHDQJf/bnIMPX+16tK5yUEOetOA5XXgri
LPg+z88HmMIvOeti/wYVVzKNEZLpJVeSsXoT2hwXrnxnwjUcJ5uAGZwFYarF7xgA
AIAhxRdEF2CY4yajbLNQM4Qdkagtwk9/2qVNyQsMQMpeSXPufAJefMVK+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAmi5pkjNnnIQhDISPA/4nJZJRpMMB8GA1UdIwQY
MBaAFGyUnSvWTuF+9dR/lj49XXqYKxKvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9mODY1MWItYzEyYi00MmQ0LWFmZGEt
MjMyZjQ3MDM0OTFmLzEvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9mODY1MWItYzEyYi00MmQ0LWFmZGEtMjMyZjQ3MDM0OTFm
LzEvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANUkRlXFy
xc0ImQSdT4GtiFLDrolcvZ0rjND1wmwVUoH98F8NmCJ50pK2OKe0VAMzK8eL6D0S
NNw6/m96t1BVq4GTEnuIaG8Qio1Cu+TtADVEIX4OFs2uOaMAlXtCVo02T8EQx/Nl
WYCP/y2wasgERDy3OQVPvwOcfjJSrTaVDDnSlTjUBA00yb3zsoL3UdiO6R1a8uB6
bl4wdcL9Cma4S9cexSz07wNnrgJ+my6ipPErPKr4vh0gkQDKfCncvFQAm4J7CNwE
nxET+wA9cOYnC4WZAT+1sX/A3PUhGfikfOq8wYlj5Bcz7U7+NiDBwcIY81q03yz4
6dC+mD7mUPbRtg==
-----END CERTIFICATE-----
Generated at Sat Apr 19 17:30:09 2025 by rpki-client