Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft
File: bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft (raw, json)
Hash identifier: 14zUan6/mccD2kZha0uiSpWX4uJlTSTiKznuettAX+E=
Subject key identifier: 41:E1:95:F7:8D:A4:F2:6D:77:CB:AE:96:E0:24:C9:12:FE:0E:45:52
Authority key identifier: 6D:64:A8:67:F4:5C:48:F2:02:7B:00:B8:3C:77:79:6F:BB:BE:03:28
Certificate issuer: /CN=6d64a867f45c48f2027b00b83c77796fbbbe0328
Certificate serial: 01974AE86A0D4C5609590C02E0DD90A330D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bWSoZ_RcSPICewC4PHd5b7u-Ayg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft
Manifest number: 0128
Signing time: Sat 07 Jun 2025 15:00:34 +0000
Manifest this update: Sat 07 Jun 2025 15:00:34 +0000
Manifest next update: Sun 08 Jun 2025 15:00:34 +0000
Files and hashes: 1: ZX73IV0uGk2ob4VktyJV9wBSBac.roa (hash: Z5WvoiItJu0epzg3OUDQ1qokvJ24J2oFtkaMgOd6bHY=)
2: bWSoZ_RcSPICewC4PHd5b7u-Ayg.crl (hash: 6cx8AEnz6+JfwDhPNmzm+4wVBxZQfvCDJp6aXN2al3w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bWSoZ_RcSPICewC4PHd5b7u-Ayg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:6a:0d:4c:56:09:59:0c:02:e0:dd:90:a3:30:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d64a867f45c48f2027b00b83c77796fbbbe0328
Validity
Not Before: Jun 7 15:00:34 2025 GMT
Not After : Jun 8 15:00:34 2025 GMT
Subject: CN=41e195f78da4f26d77cbae96e024c912fe0e4552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:da:a5:d7:5f:83:48:73:9e:8a:9c:af:1b:e2:
01:61:1f:e8:de:fd:1e:32:a8:1c:10:3e:43:46:d0:
99:fb:c6:e4:b7:77:a3:a8:06:14:b9:68:a0:de:f1:
fd:93:11:00:93:f2:b6:b9:2a:61:8c:9b:ab:0e:45:
97:23:31:08:c5:59:20:2c:e5:15:78:03:6d:e3:fe:
be:f8:f7:73:89:7d:81:48:86:94:7e:1f:5b:43:b0:
73:7f:ea:d6:fa:8a:36:d2:22:28:a6:de:df:53:1d:
59:61:b5:ee:d8:2b:ef:a5:b6:f6:b0:3f:0c:fd:92:
7c:91:9b:1d:68:eb:05:78:dc:4f:20:2d:40:70:21:
06:9b:fe:e7:81:7f:8b:53:da:d2:e4:aa:d8:81:fe:
5d:53:25:b7:24:f0:7a:d8:11:59:1f:48:22:c6:34:
c3:9e:78:5d:4c:44:cd:b3:94:19:d4:01:10:f1:31:
e5:cb:3e:0a:33:a7:59:9c:6e:dc:03:fc:af:54:f5:
51:64:7a:cb:8c:67:56:cc:3a:86:cb:c8:e9:42:85:
39:57:e3:80:3c:39:ec:2d:2e:4a:6e:53:a3:26:32:
a3:b8:cd:8f:6e:78:f8:c8:02:87:42:ad:ee:3d:ec:
11:33:58:8a:34:1d:05:8f:f8:d0:35:b4:76:23:6d:
4a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E1:95:F7:8D:A4:F2:6D:77:CB:AE:96:E0:24:C9:12:FE:0E:45:52
X509v3 Authority Key Identifier:
keyid:6D:64:A8:67:F4:5C:48:F2:02:7B:00:B8:3C:77:79:6F:BB:BE:03:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bWSoZ_RcSPICewC4PHd5b7u-Ayg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:db:6b:fb:8e:14:d8:45:44:aa:2a:b5:af:d9:63:b3:bc:08:
4c:27:06:b5:9c:ae:6b:90:12:37:25:0a:f3:70:21:d4:6a:5e:
4d:f1:cf:44:29:28:e8:c3:7e:cd:58:55:e5:a5:f9:8d:f9:26:
3a:69:8c:17:93:e2:ac:36:7d:9d:c8:20:a2:08:50:90:e4:0f:
60:af:d3:70:15:22:db:7f:27:59:33:2f:37:74:c1:00:43:9c:
c3:13:a8:5f:a1:e7:78:8f:0b:e8:96:21:40:72:5b:c9:01:af:
6d:14:ac:d8:65:2e:86:90:f1:1a:7c:4b:f0:46:83:51:2b:8e:
7c:ff:7a:6c:69:a2:ea:1c:11:04:aa:a3:c5:15:e0:26:fe:81:
08:c0:08:60:7e:6d:61:a3:2d:6e:19:26:58:31:6d:1a:97:4f:
ea:1b:cd:3e:80:7f:ee:87:a0:c6:b6:7b:77:e8:64:b9:6c:97:
66:64:96:28:ed:e3:e6:67:3f:2d:73:cd:b6:8b:98:ea:b4:75:
35:6f:7f:77:07:8c:28:88:23:f1:f4:15:ca:c3:f4:50:b4:f7:
cf:9c:51:8c:1c:55:c0:be:62:6e:ee:85:b4:f3:b2:75:62:c9:
6f:f0:b1:65:d6:7d:14:48:84:d2:93:bb:94:83:32:8e:4b:2e:
03:b5:50:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:44:09 2025 by rpki-client