Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
File: BaO2FkB7l-JhFjNId8aqkoqq7rI.mft (raw, json)
Hash identifier: +8LHh2daMLa2oTvUqY2z0VBwlwNWgQvkuCRKnVvtGYY=
Subject key identifier: FA:05:8F:8F:77:80:4B:21:A9:A9:56:45:ED:5C:E2:DA:37:FD:01:CA
Authority key identifier: 05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
Certificate issuer: /CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Certificate serial: 01958F97F266BB9D2FDFFAE02AB8AF0DB57A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
Manifest number: 0886
Signing time: Thu 13 Mar 2025 13:00:54 +0000
Manifest this update: Thu 13 Mar 2025 13:00:54 +0000
Manifest next update: Fri 14 Mar 2025 13:00:54 +0000
Files and hashes: 1: BaO2FkB7l-JhFjNId8aqkoqq7rI.crl (hash: 3vp6HKSVKLG6lpMssolixP9SQKP0y4XxcnqwQdZ8Rng=)
2: bDkAt0CCYnB2xqRfpALpEK1gmgo.roa (hash: HzyjrIASJdGjjHtk6b54LHkaX+3Gt8eRcO+z/aYxOaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 13:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:97:f2:66:bb:9d:2f:df:fa:e0:2a:b8:af:0d:b5:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Validity
Not Before: Mar 13 13:00:54 2025 GMT
Not After : Mar 14 13:00:54 2025 GMT
Subject: CN=fa058f8f77804b21a9a95645ed5ce2da37fd01ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:89:2c:8c:b8:5a:85:92:30:7b:87:fd:58:f1:
49:c2:0b:43:90:25:1d:2d:6d:8a:b4:72:f2:60:11:
fa:fe:26:c7:93:b4:f7:8a:cb:3c:70:9f:7d:c0:7a:
10:4a:5a:0d:af:3a:87:e4:88:1b:00:fb:05:c1:d4:
68:92:0d:14:2a:8a:35:4e:a4:57:9c:d7:b9:90:83:
e4:b9:89:fe:d5:2a:24:b6:5c:e5:86:d6:14:29:12:
9a:09:b9:f7:07:44:38:0e:ad:c3:c7:40:06:33:0c:
6a:67:d2:99:b8:29:c8:ac:d4:6c:d0:4a:3f:18:fd:
af:71:c0:ef:c0:f9:d5:27:d3:a4:1c:e8:6e:24:85:
e8:f4:a5:72:74:1e:ad:7c:df:42:e0:74:ab:07:85:
0f:71:0d:ec:ef:9a:77:05:19:f7:91:df:88:bf:c5:
ee:e2:e0:63:4d:8b:22:cc:74:d6:14:b4:1c:3d:3b:
c4:d3:3e:4d:fb:55:34:9d:3d:4d:72:44:ba:01:90:
03:de:46:2b:b9:b1:fc:65:97:40:07:76:2d:3f:9b:
0f:9f:94:71:de:01:c1:93:4b:ad:ef:92:06:e7:b8:
eb:54:6f:96:ec:08:2c:03:27:55:10:f4:bc:52:71:
44:9a:2e:7b:fd:39:f9:b8:ca:fd:30:f6:95:df:f2:
74:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:05:8F:8F:77:80:4B:21:A9:A9:56:45:ED:5C:E2:DA:37:FD:01:CA
X509v3 Authority Key Identifier:
keyid:05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:8a:ef:b5:75:c8:fb:43:d6:9e:32:0a:47:86:f3:02:1a:f4:
4b:e0:a1:7b:8e:44:92:97:fa:22:d5:2e:a5:9c:10:e4:85:bd:
8d:ec:e8:b9:5e:a2:7c:df:4f:d6:bd:43:6c:e1:c1:64:f1:a4:
67:06:8b:1a:d7:56:ce:40:be:ec:d0:c6:c6:52:5f:a0:f1:4d:
07:a8:f3:4a:ce:ad:15:13:73:29:84:7b:95:04:09:59:eb:34:
a7:82:e1:73:41:73:ad:65:80:3d:6e:25:c1:83:f0:c5:b3:ab:
29:4d:8f:8a:45:47:b5:82:0d:46:59:77:74:b0:74:e3:5d:1e:
0d:01:64:a8:14:46:b9:8f:4e:f8:0c:12:12:92:fb:3a:9d:35:
f3:4e:93:64:00:97:83:a4:08:65:c2:74:da:2a:2e:9e:80:f2:
66:d8:75:24:dc:33:9b:89:7d:7f:21:b0:a0:01:3d:fe:3f:26:
84:8b:ae:bf:3a:2e:7f:f0:ef:cd:6a:b9:b2:85:ab:70:24:ff:
8c:90:70:21:01:3c:e0:4b:1b:71:e5:43:17:82:24:af:aa:21:
4c:58:40:5d:2c:ab:da:9d:5a:94:76:c4:85:e9:4d:0a:27:55:
29:fe:b2:48:f7:6c:3e:1e:ee:1d:b4:8c:5f:b1:04:f4:05:09:
91:5a:c2:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:48:10 2025 by rpki-client