Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
File: bRRgVvD7veYYv_ARwPIrp0pYMrc.mft (raw, json)
Hash identifier: Xn/xpnc0UeVCBEW4tCgAvl6uVijFMFYXfStfG2CbyU8=
Subject key identifier: 5B:E1:FD:F6:DC:0C:56:16:F8:82:3B:C0:49:AD:EB:CB:B7:53:64:8B
Authority key identifier: 6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7
Certificate issuer: /CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
Certificate serial: 019659F08373F8C6C090F667AF4441342B78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
Manifest number: 1501
Signing time: Mon 21 Apr 2025 20:00:56 +0000
Manifest this update: Mon 21 Apr 2025 20:00:56 +0000
Manifest next update: Tue 22 Apr 2025 20:00:56 +0000
Files and hashes: 1: PWSDM2wQmRNxztAKQ8wgaZS7VDM.roa (hash: d9Wa5FwcE+PxgkYEzEZPmnpoKU1tHYNjbElNCRhvEFk=)
2: bRRgVvD7veYYv_ARwPIrp0pYMrc.crl (hash: a+LJIppCVO31q4mpbbiOmwCAO+dvL/WFxV3oK85XKAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:f0:83:73:f8:c6:c0:90:f6:67:af:44:41:34:2b:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
Validity
Not Before: Apr 21 20:00:56 2025 GMT
Not After : Apr 22 20:00:56 2025 GMT
Subject: CN=5be1fdf6dc0c5616f8823bc049adebcbb753648b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a3:5b:4f:51:93:34:ea:74:6b:4f:f2:1f:1a:
a6:18:1e:32:49:37:45:6d:f9:8a:8e:fa:ec:11:1b:
2e:bd:dc:4e:27:a2:8e:3d:1e:57:6e:07:38:65:eb:
1b:ba:7b:03:75:66:ef:71:35:48:59:c4:d1:14:32:
b3:4d:41:b0:d9:14:37:61:c4:1c:27:f4:04:66:d6:
35:79:0f:ef:64:f3:55:ba:e5:2f:c6:da:c4:ad:ac:
d5:52:aa:eb:fb:c1:63:5b:5f:2a:11:b8:cd:58:f2:
3c:8e:0d:eb:76:62:0b:c7:33:49:ee:f0:d7:64:97:
e3:7c:d3:bd:53:66:01:ec:62:a7:3a:a1:11:08:6c:
a2:8a:c3:0e:0e:86:9e:6e:33:da:16:1f:b5:dd:d2:
91:e1:47:65:64:ee:59:60:b6:fb:cd:85:b1:fe:03:
59:bf:e1:82:7b:04:47:06:87:64:f6:a1:2b:e6:e9:
91:09:cd:61:4a:01:32:d4:81:8d:5a:32:75:fe:56:
9b:4f:86:f9:f2:be:ab:8e:42:4c:cb:c8:44:07:d7:
6c:00:1b:c3:f1:01:7c:a7:81:7d:10:20:0a:c5:cc:
b0:5e:c6:eb:2e:7a:8c:bd:59:2c:02:2d:f8:21:b7:
a3:d8:3f:7e:a5:4b:78:1c:a8:32:2f:00:8b:69:8b:
ff:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:E1:FD:F6:DC:0C:56:16:F8:82:3B:C0:49:AD:EB:CB:B7:53:64:8B
X509v3 Authority Key Identifier:
keyid:6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e0:eb:2b:06:fe:04:98:fc:97:2b:dc:b2:ad:c0:4b:f4:fa:7e:
c3:6c:89:af:e6:4e:3f:85:b5:f7:50:2b:b8:e2:78:4d:a2:dd:
8d:46:d6:d3:1e:b0:e3:b5:55:e6:26:96:bd:38:a8:eb:f8:b8:
2f:b3:49:16:9e:b1:23:5e:92:73:e7:e7:6c:a1:be:8a:c4:40:
46:3c:2b:81:5b:36:4c:ae:e6:79:b8:e5:70:84:5d:de:1f:a8:
f3:72:7e:78:07:d0:34:cc:99:18:5c:85:bb:fd:3e:da:b6:a8:
61:61:3c:d9:8e:24:06:3f:2e:db:98:c6:99:91:b2:62:f9:0c:
ef:4d:e8:85:23:cf:c3:a4:c3:0f:3d:7d:e0:a5:25:b8:ad:92:
d9:e2:7a:76:e7:16:ff:62:3e:31:c7:3d:cc:ef:8e:d2:e2:8e:
b8:38:b4:96:94:0f:cb:9b:7c:b7:00:49:48:31:9b:d2:c3:25:
bd:94:ca:9e:3f:91:9d:c5:49:46:4b:55:e1:7d:c9:a5:9e:22:
1c:dd:24:00:cb:36:87:78:50:79:80:14:5d:fd:f1:ff:67:88:
2d:9a:0c:1e:4e:bf:17:56:ef:cb:74:a6:49:c3:95:66:f5:ce:
a8:ac:ea:89:98:30:78:3a:d5:3d:2f:0b:8a:b3:f8:65:18:98:
31:85:c2:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:35:46 2025 by rpki-client