Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
File: bws2ahNvj8xd9SPI1G95B5HBs7s.mft (raw, json)
Hash identifier: nZ8mqzC4ul9BraL6ylqqfk9xpqwKJKuxuujbeL53leQ=
Subject key identifier: 4E:3E:7A:6B:BD:31:2E:8F:46:F4:FC:E8:DE:4C:92:15:4D:B4:4F:51
Authority key identifier: 6F:0B:36:6A:13:6F:8F:CC:5D:F5:23:C8:D4:6F:79:07:91:C1:B3:BB
Certificate issuer: /CN=6f0b366a136f8fcc5df523c8d46f790791c1b3bb
Certificate serial: 0196157DB7ED02BD179A9532406536E143AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
Manifest number: 0D50
Signing time: Tue 08 Apr 2025 13:01:22 +0000
Manifest this update: Tue 08 Apr 2025 13:01:22 +0000
Manifest next update: Wed 09 Apr 2025 13:01:22 +0000
Files and hashes: 1: CUY45Y1KmLWjDR8KaCm8pfbWmHk.roa (hash: Wr/mH88dBzO09g3KW6jW/bHo4ew9LfQROwCNYWZRYNQ=)
2: bws2ahNvj8xd9SPI1G95B5HBs7s.crl (hash: Ty0UkdBmwCWTqnoqsne5PpXesjEn24Nn/Qvw09D6ul8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 13:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:15:7d:b7:ed:02:bd:17:9a:95:32:40:65:36:e1:43:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f0b366a136f8fcc5df523c8d46f790791c1b3bb
Validity
Not Before: Apr 8 13:01:22 2025 GMT
Not After : Apr 9 13:01:22 2025 GMT
Subject: CN=4e3e7a6bbd312e8f46f4fce8de4c92154db44f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:80:e9:7b:03:a9:61:c0:3e:da:ec:f4:56:d2:
1d:a5:d1:da:6c:3b:9f:5d:d5:ae:46:e5:8d:12:58:
37:52:42:fe:67:9d:d1:5a:28:35:cd:eb:ce:31:8d:
da:78:d0:c3:3f:45:a9:47:e5:86:66:8f:9d:59:84:
05:22:f4:5d:22:ff:88:ea:0b:2a:be:19:96:a5:a4:
b8:b2:5c:f3:a8:d5:ed:c6:bb:ba:1c:45:3d:6d:67:
89:6a:e0:de:80:79:37:4b:30:9d:80:f0:0e:b4:3a:
89:52:74:95:dc:92:89:d6:47:4a:1c:6b:86:95:3d:
c7:e2:20:ef:86:26:b9:c4:53:9c:de:f5:25:35:0f:
b6:43:ca:1d:62:f2:eb:52:7b:a1:aa:ad:89:14:63:
4f:d5:2a:fb:f2:9d:71:52:f5:89:50:08:33:c3:ec:
5a:5c:04:93:34:b6:2f:62:e6:18:be:dc:25:fa:58:
3c:3b:ac:77:f4:d4:d7:48:72:73:e0:a7:f3:c8:08:
fd:8b:0c:50:b9:11:a0:b7:37:79:a3:1f:70:3c:00:
08:e5:c2:d0:1d:b9:ca:d9:0e:de:28:bb:c8:a5:ee:
24:dd:64:63:d9:d7:19:d4:9a:fd:d2:d3:6f:1b:f8:
a1:bd:55:a7:1e:0f:0c:03:27:de:22:7b:77:e0:60:
4d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:3E:7A:6B:BD:31:2E:8F:46:F4:FC:E8:DE:4C:92:15:4D:B4:4F:51
X509v3 Authority Key Identifier:
keyid:6F:0B:36:6A:13:6F:8F:CC:5D:F5:23:C8:D4:6F:79:07:91:C1:B3:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:c6:d7:d0:cd:d8:f9:16:7e:96:df:ab:81:66:94:da:5c:49:
e7:75:41:cb:38:d1:40:47:24:42:00:d5:c6:00:c1:d7:af:6a:
6b:c9:35:ab:8c:4e:51:24:f0:2f:56:77:d8:ac:48:b1:ad:26:
ed:39:ef:81:a4:77:41:78:84:d0:ac:49:c6:ee:be:5e:12:5c:
fe:2c:3e:c6:a5:69:56:55:47:e6:14:c6:09:a8:8f:86:ed:45:
b8:d6:63:68:c4:1c:5a:1f:2b:c7:5a:19:66:c0:8a:06:06:93:
4e:cb:8b:78:b7:76:04:e9:19:4e:89:c4:62:fb:5a:15:a9:17:
25:98:84:c1:5b:fa:14:11:1f:70:59:e1:e8:12:8f:34:97:c1:
85:49:cd:50:1d:70:a0:18:1f:91:d5:84:a2:68:d3:d2:29:be:
8b:d6:f7:80:7d:d2:24:46:da:34:58:98:ad:41:b5:39:c0:c0:
97:f7:ed:4e:ad:ff:fb:f4:28:cb:56:37:03:17:5b:88:c8:40:
6b:b2:82:6f:b6:b9:e0:82:51:2a:b4:00:b7:ea:44:7f:4f:ff:
e3:3b:3c:e6:ed:87:2d:7b:49:8b:bd:01:c4:74:08:57:bf:58:
50:46:77:35:9c:4e:4c:8f:d6:f5:33:69:20:56:61:8f:d4:85:
31:53:ce:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 19:54:37 2025 by rpki-client