Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
File: bs1crU0zBsT3LEKvwG5c0fuv46M.mft (raw, json)
Hash identifier: 0BSR7/dHxN/LxtqkfzYSDwceCtDnHEU4sBWMinqn+J0=
Subject key identifier: AA:75:D7:0A:20:2C:08:7D:55:DB:77:00:7B:08:22:3A:6A:4B:3D:2E
Authority key identifier: 6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3
Certificate issuer: /CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
Certificate serial: 019635E3AD18BE6B4F36A4D3E59B44BEE8EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
Manifest number: 14F2
Signing time: Mon 14 Apr 2025 20:00:35 +0000
Manifest this update: Mon 14 Apr 2025 20:00:35 +0000
Manifest next update: Tue 15 Apr 2025 20:00:35 +0000
Files and hashes: 1: IVWLNAUIsWDuNfRfR17vH-v5XfI.roa (hash: OmbLmtXQG4MyTcSNnTCa+QZsFqNmOgdwU2G3Jors4PA=)
2: bs1crU0zBsT3LEKvwG5c0fuv46M.crl (hash: 4cD+g9wfDPDv0zujtqbtNCWi2a6J4KpZwMXgEtWnNQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 19:34:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:35:e3:ad:18:be:6b:4f:36:a4:d3:e5:9b:44:be:e8:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
Validity
Not Before: Apr 14 20:00:35 2025 GMT
Not After : Apr 15 20:00:35 2025 GMT
Subject: CN=aa75d70a202c087d55db77007b08223a6a4b3d2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4a:b4:52:9b:85:4b:e7:5d:49:85:a1:b2:db:
87:91:61:ae:b9:06:6b:1e:95:47:4b:09:4f:bc:0b:
76:08:25:74:89:b3:8f:27:13:b8:91:88:b1:7c:94:
b4:4a:e7:3e:c0:f2:31:9d:ba:73:fc:db:cb:67:86:
cd:2b:4c:e6:83:1f:9b:df:39:5e:1b:b1:5e:05:06:
0b:95:10:72:aa:01:66:ca:71:ac:0f:d2:5d:4c:77:
3b:81:32:a6:78:01:e0:8e:ec:ce:c4:e6:b8:ac:b6:
79:91:f4:80:eb:e4:57:6e:59:33:85:76:4f:3a:64:
a3:0b:a5:28:86:fb:2a:d5:6b:2f:1e:d8:83:8d:d1:
62:0b:37:46:91:66:42:b7:ca:df:ff:e3:ad:e8:89:
da:3c:41:0b:cd:cd:10:af:0b:aa:f7:0a:24:62:bc:
aa:b3:2b:69:56:88:6e:04:dd:af:92:ed:9c:1a:ab:
7b:cb:75:12:cb:48:96:99:a8:2e:18:2f:15:9d:d1:
bf:86:ee:bd:35:87:50:0a:d2:6c:dc:28:d9:64:96:
a1:40:82:69:04:3b:9c:f2:28:3d:1a:39:97:80:46:
16:bd:73:b3:e5:4b:c4:a9:27:e3:40:a4:3d:75:8f:
3b:a6:6d:5d:ef:fd:3e:8b:2a:08:ab:52:b5:07:2a:
80:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:75:D7:0A:20:2C:08:7D:55:DB:77:00:7B:08:22:3A:6A:4B:3D:2E
X509v3 Authority Key Identifier:
keyid:6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:c6:86:18:f3:f1:54:16:c2:15:9f:0a:84:8f:b7:6f:65:ec:
fc:8c:c5:c7:df:6e:61:57:72:d3:60:e0:4d:fa:04:2f:75:4b:
06:6d:42:60:f4:a1:3b:04:f8:e0:8a:9f:03:4e:4d:52:70:d2:
ef:0f:ad:84:5a:7e:2f:f0:a5:c7:16:40:69:16:1c:0d:ce:ee:
4c:88:09:ce:fa:84:50:8b:2f:ef:f9:16:b8:8b:da:6c:30:ad:
ae:1d:77:79:39:ac:72:76:d7:5a:79:09:ca:96:c2:27:d4:a8:
b4:dd:93:31:a3:f0:7c:af:28:19:3a:88:d5:d1:2d:0c:80:0a:
07:88:d5:fa:07:aa:9b:18:2e:17:fb:56:2f:1c:74:cb:27:8d:
da:dd:3f:6f:5f:8e:22:7e:4d:81:24:cf:73:e3:0a:70:3b:d9:
2d:b5:b9:1d:b3:71:1d:ec:72:93:2b:f5:e9:18:68:a8:9f:39:
b0:36:bc:cd:19:70:8e:d5:33:02:8a:96:c1:66:2a:21:19:a4:
5a:06:77:dc:8e:d0:13:f8:17:2c:92:03:53:b9:fe:8e:ef:10:
0f:1c:da:0f:fd:c6:9b:c2:e7:2b:9c:0c:2d:90:ac:5c:96:70:
80:3c:72:74:32:27:13:b9:d6:d6:44:15:fd:15:b1:62:e3:ed:
d8:70:00:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 01:28:14 2025 by rpki-client