Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
File: BjfRzl3D-oAOHR3PvaqEH93UOQU.mft (raw, json)
Hash identifier: C2lzxnqS5NuE30SoosvYp6SbWqlJSLbrOBBeAl5tY6U=
Subject key identifier: D6:77:43:1C:20:5F:D2:A8:A7:BD:53:91:A4:BC:20:4F:89:1B:B9:67
Authority key identifier: 06:37:D1:CE:5D:C3:FA:80:0E:1D:1D:CF:BD:AA:84:1F:DD:D4:39:05
Certificate issuer: /CN=0637d1ce5dc3fa800e1d1dcfbdaa841fddd43905
Certificate serial: 01963F5454F1DB95E8A88CE57D2C2BF54595
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BjfRzl3D-oAOHR3PvaqEH93UOQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
Manifest number: 133C
Signing time: Wed 16 Apr 2025 16:00:13 +0000
Manifest this update: Wed 16 Apr 2025 16:00:13 +0000
Manifest next update: Thu 17 Apr 2025 16:00:13 +0000
Files and hashes: 1: BjfRzl3D-oAOHR3PvaqEH93UOQU.crl (hash: GIw6oGruyDdX+26ezvbxzsk9LeSGqgmcc4yr/VlxTL8=)
2: cqs27uyShJLHJ19HI0wbuu9K6Mw.roa (hash: Io5SItgYrsPuNxUpvFI/wIElXAajrpA8wR3rTKWJTBI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/BjfRzl3D-oAOHR3PvaqEH93UOQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:54:54:f1:db:95:e8:a8:8c:e5:7d:2c:2b:f5:45:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0637d1ce5dc3fa800e1d1dcfbdaa841fddd43905
Validity
Not Before: Apr 16 16:00:13 2025 GMT
Not After : Apr 17 16:00:13 2025 GMT
Subject: CN=d677431c205fd2a8a7bd5391a4bc204f891bb967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:21:cd:a8:a8:a2:1b:83:f7:0d:0d:e2:ad:fd:
3e:fe:53:b3:ae:17:01:33:6a:25:a6:dd:9e:56:b8:
e2:22:3d:06:d4:77:5e:8d:6a:69:3d:85:b3:ff:ea:
7c:f9:ac:1d:2f:9d:00:21:c9:67:13:a2:4a:4a:7f:
24:48:84:01:85:af:7b:d5:65:6e:bb:88:91:6e:ef:
06:56:81:e6:f3:2d:83:d6:84:73:ad:b3:66:10:58:
25:8a:98:11:58:ea:52:94:87:73:ef:80:f7:8f:fd:
be:8b:05:38:e8:94:53:51:52:d3:01:ff:5e:5f:0d:
c2:c9:3f:89:c8:a6:4a:24:01:c4:d1:22:a4:87:36:
2e:cd:61:83:05:51:60:18:d6:f4:db:ce:55:50:7f:
d5:8b:27:21:52:fc:c7:f8:ab:ba:72:59:9d:3b:5e:
d2:eb:0c:de:00:10:c4:2f:75:a9:fe:61:cd:ce:48:
cf:9f:47:9b:7b:44:15:69:73:a3:a0:ab:a3:88:c6:
3c:ea:d8:35:13:4d:aa:4e:3d:7f:e6:34:d5:83:a6:
ee:89:98:43:c2:10:48:12:48:df:5d:4d:d1:78:d8:
34:9b:2f:8e:63:61:31:90:ca:3b:4a:e7:0f:4b:8c:
48:b7:70:b5:a5:e7:24:53:87:45:c4:8f:75:01:6d:
40:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:77:43:1C:20:5F:D2:A8:A7:BD:53:91:A4:BC:20:4F:89:1B:B9:67
X509v3 Authority Key Identifier:
keyid:06:37:D1:CE:5D:C3:FA:80:0E:1D:1D:CF:BD:AA:84:1F:DD:D4:39:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BjfRzl3D-oAOHR3PvaqEH93UOQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:54:9f:d3:63:bc:41:8f:cd:66:bb:f8:eb:53:67:7c:94:35:
59:48:68:5a:bd:56:74:65:29:31:c8:5e:82:df:5b:08:09:21:
f2:c4:13:11:a2:13:61:1b:e5:9b:1a:73:46:27:f5:ab:c7:5e:
40:b1:b4:c0:19:f0:9d:02:b7:5d:99:bc:0b:cc:78:7f:ca:66:
0f:ee:53:51:54:23:7e:b4:41:b5:97:7c:b2:94:4e:63:fc:d7:
b1:73:27:fe:31:08:f7:ee:d1:6c:f4:c9:b5:a9:17:e1:16:dc:
35:ed:35:f1:03:01:e8:cf:dc:1e:71:5b:b6:d7:0b:63:66:77:
d3:64:86:23:b6:93:2f:04:ba:ba:4d:d8:bc:11:b1:54:a3:fc:
a7:6c:ba:f4:61:5d:be:fd:15:a9:62:fa:0a:21:29:27:3f:40:
8d:b5:c9:a3:e5:3e:e1:e6:46:a3:a9:86:77:c9:04:53:91:dc:
63:cc:56:e5:b2:d8:95:55:ce:d2:27:82:45:09:8b:73:42:d2:
1e:08:c9:d3:19:5c:ec:68:c8:9f:80:50:a4:b6:05:8d:2a:53:
12:5d:33:a6:4f:f5:c9:08:58:fa:ef:87:0a:ab:90:7c:01:3c:
df:c0:e8:b8:75:ff:a6:19:94:77:71:c2:aa:4c:75:ab:fd:ca:
2c:a9:fa:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:31:02 2025 by rpki-client