Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
File: BmVsWtlzg3LVTAN-OX81vpqpJNs.mft (raw, json)
Hash identifier: NvNv4eSfSU1YxZJcnjHJzc1po3cH4sA6a8idur80EQE=
Subject key identifier: 6F:F5:C3:24:F3:23:59:49:C1:AD:34:91:37:DB:B5:E7:10:62:7C:51
Authority key identifier: 06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
Certificate issuer: /CN=06656c5ad9738372d54c037e397f35be9aa924db
Certificate serial: 01964FA36EC1E84C6499C56D430E0D772BAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
Manifest number: C9
Signing time: Sat 19 Apr 2025 20:00:32 +0000
Manifest this update: Sat 19 Apr 2025 20:00:32 +0000
Manifest next update: Sun 20 Apr 2025 20:00:32 +0000
Files and hashes: 1: BOJlFcCNxlleMHUbR9TjmHCDeZc.roa (hash: ujITDNQNM0fpryFmlYjLZ0Q/wbil/+me/IAh88EFBg8=)
2: BmVsWtlzg3LVTAN-OX81vpqpJNs.crl (hash: apcCP/B6NXg0pWklnGThQkYjdcJrfGbzLF+saWSdLBY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 20:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:a3:6e:c1:e8:4c:64:99:c5:6d:43:0e:0d:77:2b:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06656c5ad9738372d54c037e397f35be9aa924db
Validity
Not Before: Apr 19 20:00:32 2025 GMT
Not After : Apr 20 20:00:32 2025 GMT
Subject: CN=6ff5c324f3235949c1ad349137dbb5e710627c51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d6:f1:68:71:fc:09:b0:13:e5:e1:81:91:f7:
49:93:38:f4:84:aa:9a:1b:e0:9d:4e:5a:a9:f6:35:
32:bd:e2:37:25:16:cd:d6:cf:1e:8d:98:94:06:4d:
44:01:a2:11:7c:1a:f8:13:d5:81:eb:70:09:ce:0e:
13:8c:b0:64:60:d1:9b:fc:6b:d9:51:4e:a5:e3:08:
48:b2:47:63:53:90:d8:65:73:54:5f:33:10:3a:07:
2b:9a:57:92:82:99:19:f5:44:46:89:43:84:4e:91:
71:31:bd:9f:eb:e7:23:b2:04:fc:04:8a:20:f1:d7:
11:0e:3c:81:49:0e:55:cf:9b:72:bf:50:23:21:87:
d7:e5:61:86:b5:c9:28:f0:37:ed:86:74:65:ed:9d:
75:48:77:28:c4:36:40:46:d0:f7:9a:e6:e9:44:cc:
1a:5c:d7:69:4e:fb:ef:ff:ff:b1:74:3a:c8:48:86:
25:8f:ac:ae:51:e0:ef:a8:db:2b:52:38:88:f9:1b:
2f:39:c9:5b:61:c0:36:60:50:87:ff:f4:99:f5:ed:
40:97:05:44:30:db:23:11:cf:da:62:35:01:2c:7b:
9c:45:62:12:c7:35:ba:83:4d:45:2f:eb:92:4f:94:
9c:4e:6b:82:34:b4:9f:6a:26:d1:01:f2:d5:c7:e0:
3a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:F5:C3:24:F3:23:59:49:C1:AD:34:91:37:DB:B5:E7:10:62:7C:51
X509v3 Authority Key Identifier:
keyid:06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:8f:da:d4:3b:13:fd:56:f7:64:dc:f4:73:d3:38:98:8d:85:
b1:7a:2d:db:be:f0:61:e7:57:2c:f8:6f:bf:9c:48:71:d7:72:
58:be:8f:4f:3f:16:ac:fe:a8:e2:52:f3:cf:4b:53:d2:df:1f:
cd:22:1f:61:85:d4:0f:cd:a6:2c:8f:d2:28:29:c0:48:ba:b6:
39:ce:5d:c8:26:fa:ca:4d:5c:4a:92:67:9f:8f:5b:b5:60:5f:
90:12:f3:ad:32:6e:48:50:0f:a2:f5:3f:92:5c:80:71:46:65:
66:74:dc:25:4c:4e:a5:6b:42:18:fd:80:54:f8:9f:90:47:67:
0c:0c:8a:ce:f6:af:ae:36:e7:5b:e4:05:03:45:42:24:be:ef:
39:ba:98:18:b3:79:f2:67:6c:50:69:d9:8c:81:8c:88:ad:db:
56:63:78:ca:ac:cc:fd:9a:bf:0b:9c:65:fd:a3:f6:69:a1:71:
fc:61:61:fc:79:f5:32:39:12:b0:a2:25:62:59:1a:15:3e:9e:
2b:98:c3:a7:64:df:94:9a:45:61:f4:7f:a9:a8:ce:21:70:46:
0b:41:e4:b9:4d:cb:c5:ad:ba:a0:ae:6f:54:e1:93:8c:a1:9e:
bc:23:6f:74:39:94:2f:c8:15:41:ad:13:5f:34:eb:dd:53:82:
02:c8:76:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:34:26 2025 by rpki-client