Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
File: bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft (raw, json)
Hash identifier: V0kQNNsNEXOUqn0ZmnUdLiNt55j1bpYztOkVQKIzfAk=
Subject key identifier: 94:73:1E:AC:77:9E:D6:A3:0E:77:79:90:CA:C9:F1:3D:60:C2:82:A2
Authority key identifier: 6E:44:28:F7:F1:7B:19:C1:50:68:CA:B9:39:D3:77:94:0E:8D:4C:70
Certificate issuer: /CN=6e4428f7f17b19c15068cab939d377940e8d4c70
Certificate serial: 019644B1A6B65C6A06CEB0BE9D47FDD13A36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
Manifest number: 02A6
Signing time: Thu 17 Apr 2025 17:00:15 +0000
Manifest this update: Thu 17 Apr 2025 17:00:15 +0000
Manifest next update: Fri 18 Apr 2025 17:00:15 +0000
Files and hashes: 1: bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl (hash: h1r5O6cCmSWKqLRdg9kvOEXFLKzVkcKbRvnIh/7IXAE=)
2: r5LfqFNzBSvkVNYj6vVDPex2eII.roa (hash: zD3Y+yhvhdTCP2LNWWBpR2SBF00RvRC4BFmgCTYqEsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:b1:a6:b6:5c:6a:06:ce:b0:be:9d:47:fd:d1:3a:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e4428f7f17b19c15068cab939d377940e8d4c70
Validity
Not Before: Apr 17 17:00:15 2025 GMT
Not After : Apr 18 17:00:15 2025 GMT
Subject: CN=94731eac779ed6a30e777990cac9f13d60c282a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4a:8c:f7:22:a0:f5:bd:83:1d:aa:b1:3e:3f:
a4:b6:14:44:b3:34:d3:1b:66:8e:92:c5:ca:35:bf:
83:0d:d4:48:72:d0:7f:26:d5:49:3b:f6:e2:87:2e:
0f:ca:9b:f5:c9:c2:e7:53:4d:ea:8e:46:6b:e0:93:
40:cd:e7:59:e5:95:d9:7f:35:d5:46:a0:7f:4b:99:
a6:3f:1f:99:73:74:4d:a7:a4:d1:7c:2c:04:f5:a2:
c3:f8:df:2f:76:91:ec:ce:64:50:d7:d0:38:b4:be:
6d:6c:7d:9e:2a:2e:eb:3a:cb:11:6d:3a:60:f4:50:
02:07:4e:0d:d9:27:40:44:04:8c:85:76:c1:e1:89:
2c:7f:d1:5a:e1:d9:dc:4a:aa:6a:17:a2:04:49:b6:
e2:ca:84:24:59:d5:0c:71:ea:64:b6:72:60:c8:03:
24:ac:96:29:56:ed:85:9d:e0:02:7a:39:9c:fd:74:
21:0c:a3:86:68:74:15:d1:06:ff:0d:ec:92:9d:ab:
74:aa:2b:f6:73:04:87:c1:72:9a:1c:80:27:7d:81:
2d:b9:21:1c:e5:36:52:8e:52:d4:4a:dc:11:92:d3:
08:75:b5:81:13:ae:57:1c:72:99:57:b3:fc:f9:35:
79:fe:c9:6f:fa:d0:d0:ff:30:a0:4c:cf:c3:91:4b:
1d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:73:1E:AC:77:9E:D6:A3:0E:77:79:90:CA:C9:F1:3D:60:C2:82:A2
X509v3 Authority Key Identifier:
keyid:6E:44:28:F7:F1:7B:19:C1:50:68:CA:B9:39:D3:77:94:0E:8D:4C:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:f6:69:55:f0:8a:3a:9b:4d:fc:94:75:cd:20:dc:f1:00:db:
ee:d5:9f:67:04:64:c7:eb:8c:d4:ad:16:2f:2e:42:17:a5:c7:
ea:88:42:20:84:29:8a:82:74:68:79:2c:2c:61:b5:be:2c:d2:
ea:74:39:f2:1d:65:94:ec:b3:cb:a3:50:d9:76:9d:bb:0d:99:
bd:5b:8c:df:93:d6:bb:c3:73:82:e7:45:cd:4e:d8:96:22:7e:
13:d5:9f:cd:80:47:3c:90:ca:af:df:a2:d8:f4:07:82:1f:15:
81:24:7d:18:18:ad:f5:d8:73:0e:fa:ff:69:7f:18:65:86:e1:
37:e5:36:26:5d:07:90:54:b7:47:ef:c3:a0:dd:aa:e2:7a:bf:
d7:84:d8:d3:43:a7:ba:62:ea:a2:4d:2f:78:65:56:fd:36:3b:
ab:fa:1b:e3:e3:3c:c5:b1:99:af:55:b5:c4:8d:45:33:c1:71:
24:4c:f4:86:be:ca:0d:c2:a9:a4:c7:e9:48:e6:8e:c1:da:81:
45:46:b6:3f:51:e1:63:60:7d:de:98:59:7c:8e:0d:62:6e:5e:
30:29:ad:9e:52:e2:9d:b5:0c:7e:e4:83:4f:4d:71:49:ba:bc:
16:0a:06:ef:90:9c:fe:bf:e4:6d:fd:5b:43:46:b0:e7:91:44:
89:27:fb:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZEsaa2XGoGzrC+nUf90To2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlNDQyOGY3ZjE3YjE5YzE1MDY4Y2FiOTM5ZDM3Nzk0MGU4
ZDRjNzAwHhcNMjUwNDE3MTcwMDE1WhcNMjUwNDE4MTcwMDE1WjAzMTEwLwYDVQQD
Eyg5NDczMWVhYzc3OWVkNmEzMGU3Nzc5OTBjYWM5ZjEzZDYwYzI4MmEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApEqM9yKg9b2DHaqxPj+kthREszTT
G2aOksXKNb+DDdRIctB/JtVJO/bihy4Pypv1ycLnU03qjkZr4JNAzedZ5ZXZfzXV
RqB/S5mmPx+Zc3RNp6TRfCwE9aLD+N8vdpHszmRQ19A4tL5tbH2eKi7rOssRbTpg
9FACB04N2SdARASMhXbB4Yksf9Fa4dncSqpqF6IESbbiyoQkWdUMcepktnJgyAMk
rJYpVu2FneACejmc/XQhDKOGaHQV0Qb/DeySnat0qiv2cwSHwXKaHIAnfYEtuSEc
5TZSjlLUStwRktMIdbWBE65XHHKZV7P8+TV5/slv+tDQ/zCgTM/DkUsd4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJRzHqx3ntajDnd5kMrJ8T1gwoKiMB8GA1UdIwQY
MBaAFG5EKPfxexnBUGjKuTnTd5QOjUxwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmtRbzlfRjdHY0ZRYU1xNU9kTjNsQTZOVEhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS82Y2Y1ZjQtM2Q2MC00MWQ3LWFlMWEt
Y2JjMzMxYmZjZGIyLzEvYmtRbzlfRjdHY0ZRYU1xNU9kTjNsQTZOVEhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS82Y2Y1ZjQtM2Q2MC00MWQ3LWFlMWEtY2JjMzMxYmZjZGIy
LzEvYmtRbzlfRjdHY0ZRYU1xNU9kTjNsQTZOVEhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAafZpVfCK
OptN/JR1zSDc8QDb7tWfZwRkx+uM1K0WLy5CF6XH6ohCIIQpioJ0aHksLGG1vizS
6nQ58h1llOyzy6NQ2Xaduw2ZvVuM35PWu8NzgudFzU7YliJ+E9WfzYBHPJDKr9+i
2PQHgh8VgSR9GBit9dhzDvr/aX8YZYbhN+U2Jl0HkFS3R+/DoN2q4nq/14TY00On
umLqok0veGVW/TY7q/ob4+M8xbGZr1W1xI1FM8FxJEz0hr7KDcKppMfpSOaOwdqB
RUa2P1HhY2B93phZfI4NYm5eMCmtnlLinbUMfuSDT01xSbq8FgoG75Cc/r/kbf1b
Q0aw55FEiSf7gw==
-----END CERTIFICATE-----
Generated at Thu Apr 17 22:25:25 2025 by rpki-client