Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft
File: BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft (raw, json)
Hash identifier: uCdMSBmaE6mZvShCrfH9Hq/LIGhLulAUB1oVioaTiVg=
Subject key identifier: 4A:56:A5:4B:A3:C4:02:45:A0:7D:99:1D:BD:C6:67:CE:89:8C:0E:55
Authority key identifier: 05:2B:10:E5:47:E8:9F:F6:C7:B3:9B:6C:A9:7F:B1:6B:3F:DF:BE:4F
Certificate issuer: /CN=052b10e547e89ff6c7b39b6ca97fb16b3fdfbe4f
Certificate serial: 0196447B1988DE441DAC5F20FF4E7CA1B6B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft
Manifest number: 076F
Signing time: Thu 17 Apr 2025 16:00:40 +0000
Manifest this update: Thu 17 Apr 2025 16:00:40 +0000
Manifest next update: Fri 18 Apr 2025 16:00:40 +0000
Files and hashes: 1: BSsQ5Ufon_bHs5tsqX-xaz_fvk8.crl (hash: yYPqxOcjVwaIG1tdljMpmYpqqhsZ2Lgnat5EXLLpYzk=)
2: kZOSQmU6A2elFsqdm-zFawpP2VM.roa (hash: bGe5j2ABlU0093SdrMDiQuuHNz672BXZ6vQ6WijSw+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:7b:19:88:de:44:1d:ac:5f:20:ff:4e:7c:a1:b6:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052b10e547e89ff6c7b39b6ca97fb16b3fdfbe4f
Validity
Not Before: Apr 17 16:00:40 2025 GMT
Not After : Apr 18 16:00:40 2025 GMT
Subject: CN=4a56a54ba3c40245a07d991dbdc667ce898c0e55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:16:7c:d2:e2:d1:9d:b7:6c:d1:d6:88:21:37:
52:ac:57:e3:8a:f3:e0:a4:e0:5c:72:57:85:43:b4:
14:6b:45:11:f7:3f:6e:dc:8b:48:a6:41:06:b3:70:
70:02:3d:80:9b:8a:ef:9f:a8:03:6e:b7:5b:f9:5b:
e4:00:81:a1:a0:13:50:b4:07:d1:ae:7e:ce:02:3f:
f7:8e:23:05:61:d1:96:90:89:e6:55:4a:ab:6f:f5:
4b:c1:04:80:61:48:df:a2:bd:bb:f6:3d:23:38:71:
49:65:b7:7d:36:ce:89:4f:2e:5e:61:b8:98:36:25:
b4:30:70:3e:8c:63:1d:f4:8d:91:e3:4c:5b:5e:d6:
73:04:ea:f5:22:24:0c:c5:89:25:25:b4:e2:f5:73:
59:49:86:4a:eb:21:48:b8:2d:10:84:ff:7a:1f:1b:
2f:ff:cd:24:91:2b:ae:4f:34:44:83:a3:c9:fc:0c:
94:2a:ef:d3:27:c3:d7:87:9d:75:a8:51:2a:5f:95:
6e:a1:b5:df:64:95:d4:1e:0e:3f:83:5f:96:8b:c8:
72:66:34:84:26:f7:a5:9d:16:35:1e:4b:25:87:53:
40:02:f0:d2:89:9b:d4:94:a9:fd:de:29:e8:ff:b5:
02:58:5b:5b:03:1c:7e:66:00:27:17:76:d7:a3:33:
58:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:56:A5:4B:A3:C4:02:45:A0:7D:99:1D:BD:C6:67:CE:89:8C:0E:55
X509v3 Authority Key Identifier:
keyid:05:2B:10:E5:47:E8:9F:F6:C7:B3:9B:6C:A9:7F:B1:6B:3F:DF:BE:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:af:2d:6c:b8:74:34:28:bb:0a:29:53:69:05:2d:cb:af:0b:
ed:cf:6c:bf:d7:27:1f:3e:c7:a2:d7:54:85:ae:7c:76:82:92:
9a:ab:15:3d:19:32:d4:45:bd:36:a9:b4:31:6c:1d:e0:69:83:
f3:5f:2f:d7:40:dc:9e:c0:e4:95:fe:2d:4d:cf:9e:78:a8:77:
67:8f:ea:d1:4f:5b:0e:bf:cc:05:f2:97:f0:21:49:87:6b:bf:
47:25:fd:7b:48:67:8a:32:96:3a:ef:02:e2:a8:6f:67:9b:80:
be:0a:61:f1:26:b3:bb:e1:ec:3e:9e:34:27:30:62:d8:1c:65:
1b:98:77:8b:aa:18:2b:bd:c4:ef:51:ac:50:27:3d:97:44:57:
f1:b0:ae:8d:a4:d0:8b:6e:c2:23:47:0f:94:b9:95:fd:28:f1:
8b:ef:22:e1:29:35:1d:97:1b:b6:4b:42:b8:26:9c:7b:84:f8:
6a:a6:a0:44:6b:e5:a3:aa:15:09:20:52:e1:28:8c:b1:6a:0a:
65:3b:d2:e6:1c:d7:0c:7e:4e:03:dc:bb:30:8d:b9:ff:83:2a:
3f:49:51:46:ad:f2:5b:18:b4:66:a1:ef:8d:c9:ff:9d:0b:cf:
79:40:b4:0f:fc:52:de:83:db:81:32:17:4a:6f:15:06:04:d5:
99:f4:67:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:49:14 2025 by rpki-client