Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
File: BfCLdPURftOAcj2eQp7LSqU4Ulo.mft (raw, json)
Hash identifier: uuyYcanE7fDsvFW1G7eRRmoc6m3rs2yCpiMRhxUluls=
Subject key identifier: 3F:E4:2F:0B:9E:71:CA:23:B4:B3:8B:17:59:F0:8D:DE:5B:C8:D2:39
Authority key identifier: 05:F0:8B:74:F5:11:7E:D3:80:72:3D:9E:42:9E:CB:4A:A5:38:52:5A
Certificate issuer: /CN=05f08b74f5117ed380723d9e429ecb4aa538525a
Certificate serial: 019625957A6DF64FFA9BF670BB8EA71E2D76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
Manifest number: 14E9
Signing time: Fri 11 Apr 2025 16:01:15 +0000
Manifest this update: Fri 11 Apr 2025 16:01:15 +0000
Manifest next update: Sat 12 Apr 2025 16:01:15 +0000
Files and hashes: 1: BfCLdPURftOAcj2eQp7LSqU4Ulo.crl (hash: zr4XgJoqyc+bOywGBvwJmK97vt3dQyMGMe7mztPIxXM=)
2: cadUElPbaF409FA_2Wg_Q_GYDPU.roa (hash: NuxwFEiNd/qBOlqeuoFPvUGS7VeCKWQWl9Silhu16kg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 12 Apr 2025 11:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:25:95:7a:6d:f6:4f:fa:9b:f6:70:bb:8e:a7:1e:2d:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f08b74f5117ed380723d9e429ecb4aa538525a
Validity
Not Before: Apr 11 16:01:15 2025 GMT
Not After : Apr 12 16:01:15 2025 GMT
Subject: CN=3fe42f0b9e71ca23b4b38b1759f08dde5bc8d239
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8e:19:72:86:c8:bd:d9:90:e0:f9:d7:b2:c2:
07:e3:c0:41:7c:b6:88:5f:00:5c:18:d9:b5:8d:53:
80:7b:b2:bd:2e:bf:d8:f1:fb:f8:9e:e5:02:39:5c:
aa:20:66:16:48:dd:d6:94:90:7a:e8:be:df:04:09:
7a:8e:a6:b6:6e:7d:53:92:a5:af:67:23:96:d5:7f:
01:ee:54:b7:af:20:9c:2b:17:9f:3a:86:4b:a0:30:
7b:73:ab:c0:bd:f8:73:ee:50:af:8b:71:49:dd:4d:
ea:46:bf:5b:58:1a:ed:83:da:6f:c6:45:40:80:c5:
49:73:a5:42:76:72:a9:3a:4c:93:4b:16:13:88:9b:
0e:9e:8c:de:b8:43:37:74:e6:cc:40:47:96:ce:4c:
5c:cc:6c:1f:50:01:28:d8:f0:ca:c2:f8:19:17:33:
64:f4:98:1c:ff:91:f7:ec:ee:9d:00:28:dc:a8:e0:
e6:2c:f2:f9:96:a2:04:2c:60:d6:f2:a7:01:bf:e7:
59:07:63:7d:2e:fc:f7:13:7b:61:9c:6a:51:bf:c3:
c5:bc:fa:a9:27:44:40:b2:d6:05:34:a9:3b:7c:5f:
2f:c5:b3:51:a1:9a:c8:0e:72:7f:97:92:f6:6f:cc:
59:08:bc:76:ec:e6:6d:74:06:68:07:28:a8:f8:b2:
59:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:E4:2F:0B:9E:71:CA:23:B4:B3:8B:17:59:F0:8D:DE:5B:C8:D2:39
X509v3 Authority Key Identifier:
keyid:05:F0:8B:74:F5:11:7E:D3:80:72:3D:9E:42:9E:CB:4A:A5:38:52:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:85:d4:a2:76:ac:81:db:79:25:e8:f3:d6:ef:21:5a:1c:3e:
8d:23:1e:eb:5b:e7:68:74:7a:f3:f7:23:02:94:a9:41:70:e6:
61:8a:12:ad:be:43:50:0b:ef:cd:d3:88:a4:6f:3b:82:63:f3:
53:6a:28:0c:65:af:14:d1:a2:2c:a8:1f:0f:7f:e7:3b:a3:a9:
27:ad:8f:28:80:da:19:dc:12:1c:60:0d:dc:61:1a:5d:8c:c9:
ad:c3:39:73:86:b6:43:25:36:f3:a1:b3:47:85:00:9f:77:47:
22:db:10:13:22:10:d3:bc:78:d6:8e:f5:63:95:b2:c0:6e:42:
b0:c8:14:a0:b2:5c:27:e9:b5:de:9d:4a:68:74:1c:41:2f:b5:
9d:f2:21:c8:ca:c1:92:be:2a:58:8c:fb:07:dc:ac:23:e3:61:
02:02:15:14:43:b5:a2:95:b6:15:75:8f:11:40:4e:c9:8a:38:
b9:88:0e:a5:5c:d7:af:5e:2d:6b:88:79:d2:27:76:30:25:b9:
fe:b3:1f:fe:88:7d:5d:4a:e1:31:80:41:ef:d1:fb:2c:f1:95:
51:01:33:c8:78:f7:20:f6:60:9b:e4:58:a3:ce:f4:89:38:a4:
39:89:3e:32:6a:43:d7:7c:58:dd:dd:8e:82:67:1a:96:f7:e4:
eb:ae:b9:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:01:33 2025 by rpki-client