Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
File: bMdYWreoPsgLVauVe_N7eR52UBY.mft (raw, json)
Hash identifier: eZkWaVgR1vlLXd/iCshm1PzoZ7sy2h2kPSOkNclkQMo=
Subject key identifier: 4E:EB:F1:2E:26:C8:DD:4D:92:86:F4:A7:50:41:AC:1A:0B:0B:FF:E2
Authority key identifier: 6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
Certificate issuer: /CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Certificate serial: 019641B0CFF9DB69AC8FA8F0AF6CF8662CA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
Manifest number: 125F
Signing time: Thu 17 Apr 2025 03:00:28 +0000
Manifest this update: Thu 17 Apr 2025 03:00:28 +0000
Manifest next update: Fri 18 Apr 2025 03:00:28 +0000
Files and hashes: 1: JJLEui4261ZXJVAJCMhhZuF8jH8.roa (hash: /ixKOls/TcJQuO85TTUBz1567wbeYHBB+Wz+IfsDjR8=)
2: bMdYWreoPsgLVauVe_N7eR52UBY.crl (hash: IEEZ9IjQHq6lSpUrGyGI+fPSlNGRmg9KylqfPTcWIm8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:41:b0:cf:f9:db:69:ac:8f:a8:f0:af:6c:f8:66:2c:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Validity
Not Before: Apr 17 03:00:28 2025 GMT
Not After : Apr 18 03:00:28 2025 GMT
Subject: CN=4eebf12e26c8dd4d9286f4a75041ac1a0b0bffe2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a8:47:73:75:84:19:85:4f:98:c0:48:c9:9b:
5e:a6:1b:82:91:c8:75:3a:a2:4d:7c:42:1f:c5:e1:
ed:6a:34:7d:17:d5:f9:8f:27:33:19:0f:5d:ba:b3:
bd:c7:94:1a:ee:59:9a:8e:47:3d:8a:dc:1c:1d:27:
40:68:54:b9:d2:9f:37:df:a8:6a:13:c3:3a:3e:fe:
8a:83:ec:a4:ca:3f:5e:91:01:9d:ce:ba:25:c7:ed:
8e:76:2d:b3:27:09:43:cc:36:27:9a:f1:dd:f3:f6:
22:c0:fb:3e:b5:8d:f6:6b:a0:df:c4:c0:b6:42:b0:
32:99:c4:7e:06:66:c1:15:3f:2b:4b:7f:ed:6c:1c:
4f:ea:89:d3:dd:5e:d1:94:9c:ca:1d:06:0a:e5:66:
6b:fd:0d:bb:fc:9b:b8:5a:c5:46:d5:40:e2:c4:cb:
5b:db:b4:d1:cc:40:5f:46:0d:1e:3b:12:45:c1:3a:
0c:5b:ab:25:01:37:b6:8f:c2:12:48:1a:c5:a4:9a:
8b:f3:ff:c1:45:b8:ba:0f:bb:35:53:8d:b3:9f:ce:
ea:50:72:aa:48:cf:26:aa:fb:e2:79:e0:2a:62:63:
a6:75:a6:77:af:4b:09:35:12:ae:70:63:b3:a2:a5:
7b:36:d5:cc:63:09:13:0c:71:a2:34:bc:db:00:9f:
fa:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:EB:F1:2E:26:C8:DD:4D:92:86:F4:A7:50:41:AC:1A:0B:0B:FF:E2
X509v3 Authority Key Identifier:
keyid:6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:4f:96:b3:f4:45:ed:b0:bc:61:3b:d6:d5:e6:d8:dd:1e:27:
22:2e:17:2e:3a:35:84:5d:dd:8e:86:5f:57:dd:73:dc:49:6a:
6c:bd:a5:63:e3:58:c1:83:f0:92:e5:08:c3:cf:7c:23:41:b1:
d6:e3:93:0f:c6:b0:3d:ef:64:f8:4b:86:e8:8d:46:cc:2c:c6:
41:09:4c:d3:0e:7a:a5:df:84:a4:1d:5c:9d:66:8b:e4:e5:7e:
15:c6:9c:50:2b:26:44:3d:e7:62:c2:f7:15:26:2b:f4:28:4e:
c9:3f:6f:7a:64:fc:5b:54:44:66:4c:9a:29:7c:50:cc:49:3a:
69:f7:09:c9:a0:42:cf:ba:09:8a:22:7e:db:1c:21:41:88:59:
f1:49:41:83:89:54:b6:1b:2b:87:88:93:91:79:f1:a3:c3:be:
81:d4:f7:ca:ff:1e:2b:d4:38:99:c4:6b:fd:4c:e1:ee:14:93:
10:a1:d1:8d:59:31:76:41:cd:68:c0:90:49:5e:c5:7d:16:0c:
da:b0:45:71:52:d7:d1:d0:5d:f5:9f:01:93:e5:25:c9:bb:7a:
bc:65:97:37:9e:2b:e2:32:d5:c6:04:a2:be:22:3d:02:5d:d6:
0d:01:5e:73:a0:5b:27:e8:3c:f6:69:60:30:7d:b3:37:5a:b2:
79:05:8a:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:28:53 2025 by rpki-client