Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.mft
File: bGbVyy-crT9IQ_cUpNxi1yE96-g.mft (raw, json)
Hash identifier: nooV0kxJJXCa4hHzToXEVw3PWlZaZvyEVEtnPdlbQ5M=
Subject key identifier: 1F:57:1E:68:BB:C6:1F:A6:E1:96:4C:C0:6E:DF:F2:BE:CB:4C:B6:0C
Authority key identifier: 6C:66:D5:CB:2F:9C:AD:3F:48:43:F7:14:A4:DC:62:D7:21:3D:EB:E8
Certificate issuer: /CN=6c66d5cb2f9cad3f4843f714a4dc62d7213debe8
Certificate serial: 01974E8E692176A8D62158838F3E0756F829
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bGbVyy-crT9IQ_cUpNxi1yE96-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.mft
Manifest number: 1580
Signing time: Sun 08 Jun 2025 08:00:45 +0000
Manifest this update: Sun 08 Jun 2025 08:00:45 +0000
Manifest next update: Mon 09 Jun 2025 08:00:45 +0000
Files and hashes: 1: JAwkYlt_gNZ54Td8tq5GWdme2ug.roa (hash: zUyQFLpVWmBaNa+EvYNx5U2/U4IK1mMjW0Y/zg4R97w=)
2: bGbVyy-crT9IQ_cUpNxi1yE96-g.crl (hash: ZwcUxRuj4VXhjA9XoXH8fNjdvcLwQ6MS99C9kp4eW8E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.mft
rsync://rpki.ripe.net/repository/DEFAULT/bGbVyy-crT9IQ_cUpNxi1yE96-g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:8e:69:21:76:a8:d6:21:58:83:8f:3e:07:56:f8:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c66d5cb2f9cad3f4843f714a4dc62d7213debe8
Validity
Not Before: Jun 8 08:00:45 2025 GMT
Not After : Jun 9 08:00:45 2025 GMT
Subject: CN=1f571e68bbc61fa6e1964cc06edff2becb4cb60c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e8:c3:14:5b:be:46:0b:2c:b5:c4:fe:21:d7:
59:27:12:0c:ee:c0:c2:00:ce:5f:73:c6:7f:88:7f:
5c:74:33:23:6d:9f:c9:c0:ff:ee:0f:75:ec:0d:34:
bd:ef:97:4a:a1:49:6a:0b:dd:8e:2b:3d:20:e6:c4:
40:4f:33:a7:1c:3b:05:a3:ed:92:43:c2:8c:a8:a6:
79:22:f1:d0:28:38:5e:79:7b:20:5a:7d:7f:63:a1:
23:9b:96:90:98:04:c6:c5:7c:39:96:a9:0c:38:ac:
5b:dd:50:c2:5b:6c:23:e1:91:8c:18:26:1e:0a:43:
78:d9:4c:00:24:ef:3d:91:c0:57:b2:50:50:47:ab:
4f:89:6b:a5:9d:3a:20:ed:69:fc:65:53:92:f1:e0:
27:85:d4:43:55:c0:2c:55:2a:f8:d1:21:f4:0c:32:
09:63:3b:76:42:93:21:dd:c6:ce:91:a2:8a:05:85:
41:2a:2f:70:c0:92:02:72:2b:9e:8b:83:03:be:e0:
fa:e7:91:fd:2e:a8:55:26:87:f3:85:c0:6c:80:9a:
55:af:3d:c3:66:e4:0b:b2:6a:b1:63:62:6e:fb:a1:
81:5b:be:b0:7f:03:ae:25:ca:da:79:29:f3:8f:71:
d0:96:c7:9f:25:7c:40:fb:08:bf:d9:e1:38:9e:b5:
9d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:57:1E:68:BB:C6:1F:A6:E1:96:4C:C0:6E:DF:F2:BE:CB:4C:B6:0C
X509v3 Authority Key Identifier:
keyid:6C:66:D5:CB:2F:9C:AD:3F:48:43:F7:14:A4:DC:62:D7:21:3D:EB:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bGbVyy-crT9IQ_cUpNxi1yE96-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:f3:77:96:69:e4:d4:79:36:5a:4d:8f:fa:96:0a:31:3a:8b:
08:4f:de:8e:45:41:0b:b0:92:ca:85:5b:fc:ce:e6:c7:56:7d:
2e:99:3e:9b:a4:94:6c:8b:df:0e:b1:a1:f5:e1:59:42:29:b3:
b5:17:17:fd:eb:cd:40:5d:23:9b:b9:12:2b:5e:db:ae:56:c5:
bb:ee:9b:21:85:d2:4f:30:d9:5f:13:9f:2a:db:2d:0a:f4:c2:
39:e4:36:6b:ba:86:1e:33:2d:3d:83:12:79:08:61:9b:a6:54:
f0:c2:48:a7:16:4d:eb:aa:fa:57:f0:90:78:0c:7f:90:c9:8c:
0b:7d:11:d2:17:ae:1b:b3:bc:f2:b0:42:5b:bb:4e:4a:da:0f:
98:e8:75:9a:01:db:0f:12:0a:f0:23:d9:df:1a:68:7e:9c:3e:
25:28:6a:db:eb:08:d7:11:a7:9c:9a:99:88:17:03:61:b0:b5:
4a:5b:e9:62:24:4a:16:bc:e1:14:0d:31:d7:16:b5:fa:25:06:
ac:82:5a:f8:39:b7:4a:0b:46:a2:a5:d1:c4:c6:ea:91:5f:be:
78:49:02:7e:43:1d:aa:8b:aa:2e:56:23:dd:82:ec:ff:60:19:
12:9a:7c:9d:34:92:08:fc:fe:3e:c6:78:16:80:b1:f2:25:11:
1e:04:f5:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:53:59 2025 by rpki-client