Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.mft
File: bGbVyy-crT9IQ_cUpNxi1yE96-g.mft (raw, json)
Hash identifier: eDjXnqkpYNUWv6X/+T/F7eZy6D3e4Ti387DKImqoqJw=
Subject key identifier: DA:05:8B:23:7E:C0:CC:5B:60:09:7C:11:D8:E9:19:36:22:33:5D:64
Authority key identifier: 6C:66:D5:CB:2F:9C:AD:3F:48:43:F7:14:A4:DC:62:D7:21:3D:EB:E8
Certificate issuer: /CN=6c66d5cb2f9cad3f4843f714a4dc62d7213debe8
Certificate serial: 0196440CDE93998BC8A501A72708C151A7DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bGbVyy-crT9IQ_cUpNxi1yE96-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.mft
Manifest number: 14F6
Signing time: Thu 17 Apr 2025 14:00:16 +0000
Manifest this update: Thu 17 Apr 2025 14:00:16 +0000
Manifest next update: Fri 18 Apr 2025 14:00:16 +0000
Files and hashes: 1: JAwkYlt_gNZ54Td8tq5GWdme2ug.roa (hash: zUyQFLpVWmBaNa+EvYNx5U2/U4IK1mMjW0Y/zg4R97w=)
2: bGbVyy-crT9IQ_cUpNxi1yE96-g.crl (hash: z1os0G78+fx1UupeVGfE2jOX2VqH/nkeoBP5op92deU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.mft
rsync://rpki.ripe.net/repository/DEFAULT/bGbVyy-crT9IQ_cUpNxi1yE96-g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 14:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:0c:de:93:99:8b:c8:a5:01:a7:27:08:c1:51:a7:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c66d5cb2f9cad3f4843f714a4dc62d7213debe8
Validity
Not Before: Apr 17 14:00:16 2025 GMT
Not After : Apr 18 14:00:16 2025 GMT
Subject: CN=da058b237ec0cc5b60097c11d8e9193622335d64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:07:15:8b:aa:3f:3b:c5:a1:c9:35:da:b4:90:
35:74:0c:ec:5e:ec:ee:0b:11:02:b6:52:f4:b0:cb:
ac:1c:1e:5b:b9:ee:dd:ae:c1:a5:72:40:75:24:bd:
fe:7e:6c:a9:79:80:14:bd:c1:54:48:e4:60:57:38:
cc:99:72:12:8b:f8:2a:f8:d8:87:90:fb:71:b3:84:
75:f5:b0:85:c8:30:c7:42:59:67:a8:ba:68:4f:43:
8e:2f:a0:35:62:38:25:82:8b:8c:42:66:f8:06:75:
54:87:bd:1f:7e:4f:74:af:24:71:aa:a9:c3:0f:c7:
03:d2:d5:c5:39:96:67:97:cd:26:2e:22:fc:20:6a:
40:7f:60:59:96:6c:1f:cc:04:d5:e1:26:dc:ba:40:
fa:7b:10:1e:c7:f9:ee:b6:5c:a7:df:34:f4:f4:4d:
12:d6:b1:fb:21:89:24:e1:47:4f:e1:c0:91:a2:0d:
68:f9:64:64:c7:d1:a6:d5:a5:ba:28:e0:0a:fc:53:
80:a6:af:05:19:67:45:8a:a3:cc:ac:ff:54:6b:71:
9a:00:eb:35:ef:fc:c8:d1:a0:08:92:cc:53:1f:d3:
ca:29:5c:5f:72:fc:6a:f6:21:f4:38:c4:15:5b:fe:
f7:d4:e7:36:5a:9b:27:2a:4f:2b:fa:63:e3:c1:c5:
b8:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:05:8B:23:7E:C0:CC:5B:60:09:7C:11:D8:E9:19:36:22:33:5D:64
X509v3 Authority Key Identifier:
keyid:6C:66:D5:CB:2F:9C:AD:3F:48:43:F7:14:A4:DC:62:D7:21:3D:EB:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bGbVyy-crT9IQ_cUpNxi1yE96-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:01:e2:0a:72:54:88:cb:d1:f9:b5:94:a7:d9:c0:27:2f:a8:
09:3e:5b:22:44:be:aa:0d:b6:92:eb:ac:34:b8:28:93:2a:8c:
39:2b:eb:a3:03:78:3a:45:65:35:e2:82:b9:93:12:14:b8:60:
cf:8f:b0:f2:63:35:14:41:aa:f6:73:f0:92:87:59:44:bb:92:
f5:50:b5:ee:96:a4:26:f5:db:09:43:19:52:0b:43:4c:5e:8c:
e8:51:93:41:ed:ba:78:1d:32:af:05:79:a1:72:0a:ab:ee:53:
28:9e:c1:05:57:fd:db:19:76:84:b8:fc:cf:e9:f9:69:e4:7f:
ce:25:3f:99:dc:6a:a8:e6:31:7f:c5:29:73:a3:46:0a:8a:c0:
8f:a4:d7:74:0a:32:44:54:b1:d0:a9:87:90:95:e6:88:f1:c5:
37:b6:d7:70:53:c8:54:77:f8:e9:ac:d8:ba:88:93:00:f1:6a:
1c:ab:a9:91:e7:cc:17:ea:97:90:98:2c:0b:5f:31:f0:14:87:
b8:30:4f:41:e8:6f:b4:67:8e:b5:88:da:c1:a3:ec:bc:26:7b:
c3:81:64:0c:f4:29:9f:8c:1b:dc:92:8a:c1:07:b4:a8:40:d9:
0d:1e:57:9e:64:2f:50:fe:ba:88:be:28:e6:5c:dc:07:d4:0f:
75:48:62:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:03:22 2025 by rpki-client