Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft
File: Bv170s3aV23AzQiOvm7mAZceEjQ.mft (raw, json)
Hash identifier: 2jCW+kG/ZhS5yKIOMMzjhZpD4KF4xvFfEbop2agJJfM=
Subject key identifier: 5E:C3:14:A5:9D:E7:A6:29:91:39:C0:0F:9C:B7:4C:4A:0A:A6:EB:73
Authority key identifier: 06:FD:7B:D2:CD:DA:57:6D:C0:CD:08:8E:BE:6E:E6:01:97:1E:12:34
Certificate issuer: /CN=06fd7bd2cdda576dc0cd088ebe6ee601971e1234
Certificate serial: 01974967BB16120F8BB5230465CF45B87F50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft
Manifest number: 0D53
Signing time: Sat 07 Jun 2025 08:00:24 +0000
Manifest this update: Sat 07 Jun 2025 08:00:24 +0000
Manifest next update: Sun 08 Jun 2025 08:00:24 +0000
Files and hashes: 1: Bv170s3aV23AzQiOvm7mAZceEjQ.crl (hash: qiW0YDYm+onNB3u+9fAo864jE4UCVqmxYKGlNXlwXV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:bb:16:12:0f:8b:b5:23:04:65:cf:45:b8:7f:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06fd7bd2cdda576dc0cd088ebe6ee601971e1234
Validity
Not Before: Jun 7 08:00:24 2025 GMT
Not After : Jun 8 08:00:24 2025 GMT
Subject: CN=5ec314a59de7a6299139c00f9cb74c4a0aa6eb73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:04:54:d9:d6:46:85:bc:85:eb:3a:53:c0:cf:
39:5e:72:ca:1f:9d:4e:11:6b:b1:f2:5a:fa:63:b6:
70:3c:ea:69:f1:f5:d9:b5:dd:39:6a:7c:bb:d7:0b:
fd:de:20:88:aa:94:ab:d5:ab:c3:98:39:a5:46:12:
0c:dd:28:9e:60:b1:c3:a8:68:7b:3d:3e:9d:30:ea:
b6:8e:ad:c0:47:b2:26:bf:f0:e7:65:9c:5e:99:ac:
35:2d:c0:94:ce:6b:e2:c6:a0:61:17:01:4f:b6:cc:
5f:d0:d5:20:b0:43:53:ba:86:17:fb:4d:bd:40:3a:
25:87:b6:f6:8f:72:76:a1:78:9b:87:9a:58:14:2e:
ef:06:3b:bf:e7:63:4c:5e:bd:32:8e:dc:47:ec:d6:
0c:91:53:69:5a:5b:9e:52:e7:b4:d5:41:31:35:88:
99:f8:3c:37:1d:30:ee:cc:e9:90:d9:ab:76:2c:4e:
48:d9:75:52:aa:d9:2e:c3:e1:25:3b:ba:73:99:e6:
89:14:1f:08:8d:dd:a0:a2:14:22:a7:01:6e:11:29:
12:9c:da:b7:57:95:dd:23:b3:95:a1:d3:f8:03:39:
36:11:15:43:f8:52:8d:a8:90:e2:7d:a4:b1:f7:24:
25:a8:11:ae:94:c6:ba:71:7f:86:40:7b:24:26:67:
45:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C3:14:A5:9D:E7:A6:29:91:39:C0:0F:9C:B7:4C:4A:0A:A6:EB:73
X509v3 Authority Key Identifier:
keyid:06:FD:7B:D2:CD:DA:57:6D:C0:CD:08:8E:BE:6E:E6:01:97:1E:12:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:d1:48:85:0d:9a:f2:dd:34:2a:ee:ae:8e:25:45:07:8e:ae:
cf:6e:cb:c1:ee:dd:97:ea:e7:d9:27:bf:2b:1e:2a:07:d5:57:
1c:01:7d:06:02:10:d2:fa:ce:fa:5d:46:f2:1f:5e:60:1f:3d:
df:7e:66:c6:a4:ce:78:25:b0:c8:54:75:8b:b1:04:77:10:19:
89:7b:c6:1b:08:f0:4b:fd:02:69:0f:17:08:d0:ad:d7:35:f9:
dd:d9:0e:43:df:45:80:6e:a3:2f:65:34:2c:01:ee:ea:ee:61:
36:ca:58:1f:e6:bc:7b:a2:f2:f6:56:9a:3b:df:57:45:0d:85:
80:e8:d8:7d:31:d8:ff:9a:ee:19:f5:2e:07:b0:07:f4:02:6f:
9f:74:19:43:86:b0:67:73:65:08:e3:50:0e:ae:9b:c3:aa:1d:
1e:e1:f7:ca:ab:b7:35:74:e0:c4:9e:e8:df:77:19:0d:01:38:
ad:7a:be:a9:29:cf:a5:dd:11:7d:26:04:ea:fb:73:d9:03:9a:
6a:e6:6f:b8:9f:6e:05:eb:b1:73:37:5c:91:dc:b2:2d:89:d2:
2b:cf:0c:c7:67:ca:c3:f9:86:80:6a:7c:82:69:b6:c9:2d:c3:
54:22:5c:3f:b5:f4:4a:68:ba:cc:7c:e9:8e:95:4a:bb:17:2a:
84:06:2d:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:34:30 2025 by rpki-client