Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
File: bSPOewwQBo-8RMAhlD4zkBPyruA.mft (raw, json)
Hash identifier: nVh5yxyiZwVlLSrOSYQwmdtOUXJQFyxrp6Ziq33iNhU=
Subject key identifier: B4:16:7E:11:90:45:47:C0:10:7A:1E:FA:21:2E:BB:D3:F3:E7:DC:3B
Authority key identifier: 6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
Certificate issuer: /CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Certificate serial: 01964CD980299543F70DD4C7B9800CB6FAE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
Manifest number: 14F9
Signing time: Sat 19 Apr 2025 07:00:44 +0000
Manifest this update: Sat 19 Apr 2025 07:00:44 +0000
Manifest next update: Sun 20 Apr 2025 07:00:44 +0000
Files and hashes: 1: LQcm0nhQTgxfcAEHFSpSeQFsVHo.roa (hash: ScQNvXtsK5w/Wj3QzlqfHMAUcdIYUpFbtGKhSGmn1FI=)
2: bSPOewwQBo-8RMAhlD4zkBPyruA.crl (hash: StfX3V7+z+wc3BZAVBpaYpPrYkwrUpcr/ZiaKrRs7xg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:d9:80:29:95:43:f7:0d:d4:c7:b9:80:0c:b6:fa:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Validity
Not Before: Apr 19 07:00:44 2025 GMT
Not After : Apr 20 07:00:44 2025 GMT
Subject: CN=b4167e11904547c0107a1efa212ebbd3f3e7dc3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3f:b1:9e:94:0d:79:fc:e5:19:b1:da:a0:2a:
59:de:ee:a4:07:0c:70:1e:61:76:39:a4:d1:5c:85:
8d:8c:57:f2:12:83:a8:5c:ea:d0:a2:fe:c9:9e:9e:
e5:2d:76:9f:19:5d:2e:49:ec:7b:02:d5:69:2a:4d:
f2:5b:18:f3:85:e0:b6:a7:67:d2:f5:cc:e4:7a:b6:
73:99:2b:db:40:c0:ab:ec:14:67:08:ca:66:87:f7:
85:73:06:f9:51:91:bd:b8:07:69:a1:84:ae:34:6c:
a8:e1:97:bf:b1:5c:0b:7c:04:3b:8d:79:e9:43:dd:
97:77:00:44:7a:f9:d4:20:70:c9:39:ae:d4:9d:a5:
03:eb:88:59:0c:39:5a:78:ba:43:40:83:1d:ae:5b:
95:17:8e:d1:ff:ce:dd:9f:86:6f:97:46:9b:64:ea:
73:2e:57:36:06:09:7c:9b:89:63:60:6c:a3:83:e7:
d7:8a:df:14:e6:df:51:ed:66:3d:cb:d6:7d:0b:8b:
8b:2c:d7:a0:4e:9f:13:78:6c:45:aa:90:97:24:db:
57:8b:1c:02:11:b7:13:d9:9c:72:e2:f4:aa:21:a5:
9c:9b:5a:f1:d9:1d:e2:ba:f3:81:c0:98:d4:8a:83:
87:64:21:03:7a:b4:e1:6f:3b:ca:87:45:dc:a4:5c:
3c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:16:7E:11:90:45:47:C0:10:7A:1E:FA:21:2E:BB:D3:F3:E7:DC:3B
X509v3 Authority Key Identifier:
keyid:6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:ab:e4:e4:af:93:15:c3:14:f1:ca:06:5b:b6:a5:4c:0e:8a:
e2:a4:e9:dc:47:f7:97:19:6a:80:c0:15:a9:71:e4:f1:67:d6:
ea:38:72:a3:7d:6e:23:0a:a9:b3:07:c4:58:4a:63:c2:70:6a:
ae:51:68:34:95:3f:e2:d7:c1:fc:78:c2:60:f1:94:85:f3:1e:
2b:b3:db:a8:e2:cf:1d:76:10:a1:c0:1d:7c:ba:e7:ae:eb:01:
95:f5:1a:87:55:b4:92:35:a2:0e:c2:6f:51:bd:f7:e2:3f:70:
2b:97:da:09:2e:22:ba:6f:45:57:d8:23:a8:57:cd:07:64:b5:
44:ec:59:5d:8f:dc:b1:a8:ac:d4:ad:a0:87:9e:14:68:69:89:
48:7d:dd:41:ba:ae:07:a0:9b:19:f3:5d:24:8f:a6:06:ca:cc:
4a:55:28:45:28:fb:ed:61:18:4e:cb:87:d9:3b:ab:a6:ae:c9:
cf:33:03:d6:47:55:82:eb:07:1f:d9:1c:8e:64:bf:96:40:88:
1e:6f:91:ae:9c:d4:76:ac:00:da:9f:52:9b:76:76:df:ec:9d:
4c:df:1d:5e:9c:c4:89:63:cf:54:a4:bc:fb:26:26:cc:10:88:
4f:61:c0:b4:21:1e:f9:bc:95:97:22:17:a4:e6:a7:18:ca:0a:
0a:82:d2:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:08:50 2025 by rpki-client