Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
File: bSID7B5abCZsyjm5rxq-LLILGVo.mft (raw, json)
Hash identifier: L7d6V3NEXMmQkBnqR5vbuoQmKrtpfNmD3TFQCg2nY0c=
Subject key identifier: 54:89:FF:0C:EC:42:75:F3:85:18:2A:76:3C:66:AB:5D:18:83:64:46
Authority key identifier: 6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
Certificate issuer: /CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Certificate serial: 01964F357928DCB4F947AB435EB611C0A87D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 18:00:26 +0000
Manifest this update: Sat 19 Apr 2025 18:00:26 +0000
Manifest next update: Sun 20 Apr 2025 18:00:26 +0000
Files and hashes: 1: bSID7B5abCZsyjm5rxq-LLILGVo.crl (hash: aqzgrcQSLBoQuE11x3iB3P9QchLboQHXRANhmfHFRgI=)
2: h9zvvPI2dBY4jNWQKpPxUoE047A.roa (hash: PkWglafHXDxF9KIzM61BgLg1omYPGots3ZThAKgjHP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:35:79:28:dc:b4:f9:47:ab:43:5e:b6:11:c0:a8:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Validity
Not Before: Apr 19 18:00:26 2025 GMT
Not After : Apr 20 18:00:26 2025 GMT
Subject: CN=5489ff0cec4275f385182a763c66ab5d18836446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3e:62:2a:c9:bc:fb:1a:f4:cf:9e:3b:52:95:
14:c8:b7:2a:58:f9:56:a7:ee:52:51:80:fd:af:ed:
fb:13:fe:18:d4:9a:20:ad:29:a4:b1:e1:3a:b9:f1:
fb:81:e1:0d:7f:0c:16:6d:8d:46:f1:ad:ba:d2:bf:
7b:c2:c2:8b:0b:d4:e2:2a:d4:54:78:6a:62:fc:c7:
5b:e1:66:75:19:ff:ac:59:c3:e6:90:2f:bd:fd:44:
cd:a8:ee:db:e6:f1:47:e9:1d:ac:15:7e:0d:7d:c7:
b3:8a:6f:13:f5:4d:0b:1b:26:a8:8c:15:17:4c:75:
c1:05:0d:86:77:49:f6:47:12:08:37:e8:a4:60:5e:
7c:25:e8:d5:b1:89:dd:95:a5:3e:fb:38:9e:69:52:
05:7f:3f:72:73:5e:7c:da:61:ed:7b:fb:6d:2b:16:
69:5e:2b:88:19:dd:9a:27:7b:10:27:2f:a9:6f:b9:
1c:e4:24:fe:98:4c:fb:1b:f1:29:13:e2:c3:97:70:
6e:2f:37:5a:50:2e:d3:bd:89:cb:12:f3:dd:a8:9e:
c2:3f:80:c4:7d:bd:38:70:5f:5a:ed:c2:f5:89:b0:
2c:a0:ed:a5:8b:61:dd:48:4f:87:d6:17:e8:d7:f7:
c3:89:d2:2f:90:dd:79:50:0d:49:9e:b4:96:37:39:
3b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:89:FF:0C:EC:42:75:F3:85:18:2A:76:3C:66:AB:5D:18:83:64:46
X509v3 Authority Key Identifier:
keyid:6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:45:85:db:b5:03:ac:05:4c:ee:80:9e:a2:a6:b0:8e:56:9d:
89:f5:0f:65:07:3f:2e:5c:e3:a5:26:21:af:70:15:0f:bd:0f:
1f:e2:a5:13:57:a8:f8:72:0a:c3:2c:9b:37:11:5a:bc:2d:63:
80:85:40:ca:ae:bc:ca:c0:d6:4f:e7:35:b5:29:1a:e3:00:0f:
51:0b:3e:c4:b0:4e:3e:f8:54:60:1d:ae:85:3b:f7:82:b4:a4:
19:e4:77:c9:0e:aa:35:53:74:d7:f4:6c:fe:d8:da:0f:6a:91:
83:58:16:67:6e:b9:25:11:c1:74:75:f8:05:48:17:da:01:f2:
4a:c3:a2:31:6d:d2:12:45:e8:bc:46:bb:fa:58:9d:bc:18:d0:
47:7a:b6:42:a2:31:02:82:10:d1:ea:bb:a0:37:d4:9f:c8:78:
da:21:a7:4b:1c:46:3d:dc:71:84:69:04:24:9e:bd:23:c1:60:
5d:96:ad:a4:a0:fd:3e:d8:61:2d:b2:96:e9:95:be:5b:55:ca:
82:e8:c8:38:d0:a7:f4:db:6b:1a:5b:9a:fc:e3:9d:dd:7f:9d:
08:80:46:0c:7f:eb:10:df:96:25:d7:f0:47:7e:30:76:65:25:
a8:dc:a5:31:f1:5c:32:54:a8:62:ba:da:2c:a2:19:36:84:4f:
8d:e4:bd:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:49:40 2025 by rpki-client