Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
File: BjfRzl3D-oAOHR3PvaqEH93UOQU.mft (raw, json)
Hash identifier: HSbNLqkoPRDTTgeuUtd5Drj2aUBXhk3vdFS3egBs7oY=
Subject key identifier: A7:F8:C2:4B:DB:CF:39:48:50:6C:18:71:A5:F3:A0:65:AC:94:2F:AC
Authority key identifier: 06:37:D1:CE:5D:C3:FA:80:0E:1D:1D:CF:BD:AA:84:1F:DD:D4:39:05
Certificate issuer: /CN=0637d1ce5dc3fa800e1d1dcfbdaa841fddd43905
Certificate serial: 01958BBBADCFD749D7CFB490815CEC28A1CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BjfRzl3D-oAOHR3PvaqEH93UOQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
Manifest number: 12DF
Signing time: Wed 12 Mar 2025 19:01:27 +0000
Manifest this update: Wed 12 Mar 2025 19:01:27 +0000
Manifest next update: Thu 13 Mar 2025 19:01:27 +0000
Files and hashes: 1: BjfRzl3D-oAOHR3PvaqEH93UOQU.crl (hash: Ao3kyB0ULP9Z0vNp3SCf9ckRb7zwXPTYdGgVPCRBcUk=)
2: cqs27uyShJLHJ19HI0wbuu9K6Mw.roa (hash: Io5SItgYrsPuNxUpvFI/wIElXAajrpA8wR3rTKWJTBI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/BjfRzl3D-oAOHR3PvaqEH93UOQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:bb:ad:cf:d7:49:d7:cf:b4:90:81:5c:ec:28:a1:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0637d1ce5dc3fa800e1d1dcfbdaa841fddd43905
Validity
Not Before: Mar 12 19:01:27 2025 GMT
Not After : Mar 13 19:01:27 2025 GMT
Subject: CN=a7f8c24bdbcf3948506c1871a5f3a065ac942fac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:1f:b4:51:4c:a7:1a:2c:f6:5f:bd:99:33:cd:
9a:0b:83:45:eb:bc:31:7b:2c:7b:09:34:7e:0c:74:
c9:cd:8d:66:dd:d1:f1:78:58:2b:d5:33:c1:dc:bf:
aa:66:a8:47:24:50:a7:9d:a4:d7:2a:a7:cd:e6:8b:
f9:1a:2e:d3:92:75:21:86:13:5b:c5:5c:23:da:b1:
d9:ea:5d:78:70:93:fe:06:e0:cc:c0:59:79:a4:35:
ec:17:30:98:05:68:b3:59:f9:f1:f2:ca:a7:8e:9e:
ad:21:c2:51:d6:c0:97:78:12:ff:83:2f:30:11:da:
8e:10:a8:0c:c3:f3:fd:fe:ff:cc:e4:69:2b:bd:f9:
90:70:e8:45:2a:e1:d1:85:bc:2e:1d:03:12:81:c1:
ae:bb:af:90:8b:65:f7:d9:5a:fc:fc:90:1f:90:98:
24:5c:65:a5:c6:9b:f3:ac:b2:99:aa:f9:2f:44:01:
fb:fa:24:e8:1a:14:52:ec:2d:55:03:cb:b3:1a:34:
60:1d:17:0e:58:0b:9a:7e:9c:9e:1f:25:8a:c9:f9:
7b:86:52:71:61:f1:c8:e8:49:39:94:bf:1c:39:6d:
a6:60:d8:f3:06:02:40:75:cd:b4:a2:eb:cf:c8:9e:
1a:cc:0d:ef:b1:63:20:26:3a:27:db:90:1e:33:ee:
8c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:F8:C2:4B:DB:CF:39:48:50:6C:18:71:A5:F3:A0:65:AC:94:2F:AC
X509v3 Authority Key Identifier:
keyid:06:37:D1:CE:5D:C3:FA:80:0E:1D:1D:CF:BD:AA:84:1F:DD:D4:39:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BjfRzl3D-oAOHR3PvaqEH93UOQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:3b:9a:2d:f5:2b:fb:6b:49:70:e7:77:c0:ad:f6:e2:9e:2b:
ea:64:43:af:1c:38:d8:88:c0:a6:b2:e3:17:b8:25:60:96:1b:
98:c9:5b:e1:b4:32:54:5b:f5:6b:78:f2:6c:dd:75:ef:31:c6:
d6:a0:3a:bf:f0:4c:d7:d5:45:da:53:be:c9:c2:6b:1b:b3:5b:
35:35:e8:b8:d8:1c:86:65:de:7b:22:19:8e:b3:fa:87:03:fa:
7a:17:86:2d:6c:3e:99:4a:e2:53:06:24:01:ee:ac:50:4c:16:
d9:a5:6a:21:b7:22:ee:1b:de:06:9c:48:65:54:79:ed:c3:34:
45:5a:df:c9:3a:49:80:30:51:85:c2:36:ca:a6:1b:41:05:6f:
b2:11:48:cd:9d:4f:d9:48:93:03:6d:0f:59:dd:91:48:58:79:
97:e2:e1:16:dc:40:f9:48:13:6c:26:7e:f1:f3:c9:11:c1:ec:
e9:dd:02:b0:eb:2b:75:ac:6d:79:55:4e:29:28:cf:af:10:98:
57:71:c7:32:d6:90:9a:f4:f7:b6:b5:09:e5:c3:0b:24:ee:2e:
73:e3:8d:55:c6:79:2b:ca:5e:2f:d2:9b:1b:ef:cb:25:e8:ff:
99:16:da:21:cd:94:7b:7d:77:c4:f6:e2:bf:91:6d:a4:08:4c:
81:ff:ce:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWLu63P10nXz7SQgVzsKKHPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2MzdkMWNlNWRjM2ZhODAwZTFkMWRjZmJkYWE4NDFmZGRk
NDM5MDUwHhcNMjUwMzEyMTkwMTI3WhcNMjUwMzEzMTkwMTI3WjAzMTEwLwYDVQQD
EyhhN2Y4YzI0YmRiY2YzOTQ4NTA2YzE4NzFhNWYzYTA2NWFjOTQyZmFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjB+0UUynGiz2X72ZM82aC4NF67wx
eyx7CTR+DHTJzY1m3dHxeFgr1TPB3L+qZqhHJFCnnaTXKqfN5ov5Gi7TknUhhhNb
xVwj2rHZ6l14cJP+BuDMwFl5pDXsFzCYBWizWfnx8sqnjp6tIcJR1sCXeBL/gy8w
EdqOEKgMw/P9/v/M5GkrvfmQcOhFKuHRhbwuHQMSgcGuu6+Qi2X32Vr8/JAfkJgk
XGWlxpvzrLKZqvkvRAH7+iToGhRS7C1VA8uzGjRgHRcOWAuafpyeHyWKyfl7hlJx
YfHI6Ek5lL8cOW2mYNjzBgJAdc20ouvPyJ4azA3vsWMgJjon25AeM+6MowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKf4wkvbzzlIUGwYcaXzoGWslC+sMB8GA1UdIwQY
MBaAFAY30c5dw/qADh0dz72qhB/d1DkFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmpmUnpsM0Qtb0FPSFIzUHZhcUVIOTNVT1FVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9lYWE2MDItMmEzZi00ZjMyLWFiY2Ut
M2Q4MGQ2ODZlNzQ3LzEvQmpmUnpsM0Qtb0FPSFIzUHZhcUVIOTNVT1FVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9lYWE2MDItMmEzZi00ZjMyLWFiY2UtM2Q4MGQ2ODZlNzQ3
LzEvQmpmUnpsM0Qtb0FPSFIzUHZhcUVIOTNVT1FVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqDuaLfUr
+2tJcOd3wK324p4r6mRDrxw42IjAprLjF7glYJYbmMlb4bQyVFv1a3jybN117zHG
1qA6v/BM19VF2lO+ycJrG7NbNTXouNgchmXeeyIZjrP6hwP6eheGLWw+mUriUwYk
Ae6sUEwW2aVqIbci7hveBpxIZVR57cM0RVrfyTpJgDBRhcI2yqYbQQVvshFIzZ1P
2UiTA20PWd2RSFh5l+LhFtxA+UgTbCZ+8fPJEcHs6d0CsOsrdaxteVVOKSjPrxCY
V3HHMtaQmvT3trUJ5cMLJO4uc+ONVcZ5K8peL9KbG+/LJej/mRbaIc2Ue313xPbi
v5FtpAhMgf/OMA==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:31:55 2025 by rpki-client