Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
File: bfHIcky70DS6t6Da3wq0uZ_2b_8.mft (raw, json)
Hash identifier: KNevwrAKE2bIJ+GLOYd+xQeTqjxr6FMEldrKWM1jt5M=
Subject key identifier: 24:03:1E:C7:79:50:DF:8A:06:62:4B:3A:EA:A9:BA:EC:D3:26:C6:DE
Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Certificate serial: 01963F54F94173966EBB384B634C90570697
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
Manifest number: 14F4
Signing time: Wed 16 Apr 2025 16:00:55 +0000
Manifest this update: Wed 16 Apr 2025 16:00:55 +0000
Manifest next update: Thu 17 Apr 2025 16:00:55 +0000
Files and hashes: 1: 3gASlQlN9UdPtrWqrdLITdzt5Ew.roa (hash: ramhN8+V67WDz+dJge66wgSFRzcM7UnMyKgsybDZiQA=)
2: bfHIcky70DS6t6Da3wq0uZ_2b_8.crl (hash: FTaBIwzROVugvQ7p/3b9+XL1t/TDfvqGXUI2id3PY5I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 16:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:54:f9:41:73:96:6e:bb:38:4b:63:4c:90:57:06:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Validity
Not Before: Apr 16 16:00:55 2025 GMT
Not After : Apr 17 16:00:55 2025 GMT
Subject: CN=24031ec77950df8a06624b3aeaa9baecd326c6de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:74:ff:37:86:ed:bd:50:19:0d:af:52:2a:52:
b5:ff:9e:ed:cf:b4:a3:1c:cf:37:41:e8:8f:3d:63:
76:a7:23:2e:51:d2:82:9b:ee:df:bc:80:54:3a:6c:
57:0e:22:c6:99:fb:ad:c5:4e:c4:67:d4:37:78:1f:
17:ec:ff:0b:86:ef:a0:c9:00:0d:68:41:37:aa:66:
66:e9:03:41:1f:16:30:74:ac:1d:da:06:47:2d:6c:
0f:3e:d1:e3:ee:a9:34:ae:99:f5:c2:6a:90:7d:ba:
bd:f0:23:f3:05:9b:d9:18:7b:fc:61:30:96:7c:1b:
ba:24:58:17:d5:24:2e:f9:e5:85:06:59:85:80:1a:
cf:bd:a4:3f:91:ad:59:5b:b6:5c:27:d8:64:ed:98:
3d:e7:1c:90:ae:53:2b:98:7f:7d:e3:a7:77:91:8c:
2e:fb:4d:50:22:a4:e4:2c:aa:ef:0e:e4:17:5e:c5:
67:54:3a:b7:3b:90:89:88:53:7c:c0:14:cb:c2:47:
7b:c6:94:6c:c1:0e:f0:79:fa:6a:09:eb:9e:45:df:
b3:5b:65:20:af:c7:9e:d4:72:d7:4b:30:ec:7d:ce:
97:ed:7f:2c:1c:d8:ee:84:d5:de:f8:8e:c2:ee:7b:
0a:7d:a0:65:fc:2d:f8:48:fb:c4:24:33:38:7d:53:
2b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:03:1E:C7:79:50:DF:8A:06:62:4B:3A:EA:A9:BA:EC:D3:26:C6:DE
X509v3 Authority Key Identifier:
keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:e2:87:a6:c4:01:d5:de:c6:74:5a:dc:50:b6:a4:58:c4:93:
db:b0:01:80:d4:ef:4c:c4:48:60:7a:a8:f1:36:cc:67:2b:b4:
bf:fc:c4:c3:f0:81:91:21:b8:e2:0b:85:51:d5:d2:f6:67:2e:
6e:2e:05:79:47:18:be:85:1e:b2:f2:8c:df:2b:79:3a:6b:8b:
5b:1d:19:45:bf:3e:e3:5d:53:68:c3:a3:38:8a:38:e3:c3:e2:
dd:06:1b:02:2b:ed:b3:7a:ca:9e:26:35:36:b5:b1:53:a3:65:
7f:fc:c1:68:59:a1:ab:b3:15:cb:bc:29:29:9c:e4:8f:73:e8:
22:8b:73:d3:a4:64:4b:53:e3:59:10:77:af:e1:af:9f:37:a6:
9e:a7:59:7f:85:af:05:24:9a:fc:63:87:91:e2:5d:1e:4c:28:
e1:e6:79:17:76:b7:f5:42:31:10:13:71:42:75:01:02:46:4a:
44:82:91:0e:06:e4:47:55:d6:43:ac:4c:c3:8b:66:a8:c3:4d:
f1:69:70:99:a7:de:c0:1d:51:d1:cc:15:c5:3b:39:d6:6b:91:
b6:ad:b8:5e:09:ff:a1:b7:68:8c:9f:ed:c0:b1:48:cd:42:c5:
a9:8a:8e:4e:75:8b:d3:b5:bd:6f:dd:87:6a:7b:dc:1d:5d:0d:
f1:b7:dc:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 01:10:23 2025 by rpki-client