Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.mft
File: BeHQfebxKPRpxMOzAorfjU034tk.mft (raw, json)
Hash identifier: PefKMkYpJUP406jFDNS53nGymmK/ZIWXZFnEGQyttNU=
Subject key identifier: 10:D8:8E:7B:6C:72:8B:F0:CF:64:2B:1C:22:B3:BF:43:9E:0A:BC:DD
Authority key identifier: 05:E1:D0:7D:E6:F1:28:F4:69:C4:C3:B3:02:8A:DF:8D:4D:37:E2:D9
Certificate issuer: /CN=05e1d07de6f128f469c4c3b3028adf8d4d37e2d9
Certificate serial: 01974BFB871F869F02B640A6FFD67DDB258C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BeHQfebxKPRpxMOzAorfjU034tk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 20:01:04 +0000
Manifest this update: Sat 07 Jun 2025 20:01:04 +0000
Manifest next update: Sun 08 Jun 2025 20:01:04 +0000
Files and hashes: 1: 5_4qOd1GTRdKd6DbyMT4VAzgn60.roa (hash: Q449y6NU5T0NgahXGNO0aRD91GR+m9cfLNErlQRiyf0=)
2: BeHQfebxKPRpxMOzAorfjU034tk.crl (hash: W9nWuPFfcP7fbmVWJ6R3HS0oNDn2Kpk8n2o5wYIvkr4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.mft
rsync://rpki.ripe.net/repository/DEFAULT/BeHQfebxKPRpxMOzAorfjU034tk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:87:1f:86:9f:02:b6:40:a6:ff:d6:7d:db:25:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05e1d07de6f128f469c4c3b3028adf8d4d37e2d9
Validity
Not Before: Jun 7 20:01:04 2025 GMT
Not After : Jun 8 20:01:04 2025 GMT
Subject: CN=10d88e7b6c728bf0cf642b1c22b3bf439e0abcdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e7:71:33:b5:67:c9:09:b6:26:b8:8f:d9:88:
f5:49:cd:31:e1:87:45:25:43:52:3a:c0:9a:ac:38:
6d:44:8a:3d:26:3b:f8:20:0a:cf:0e:a2:9d:6d:7e:
31:9f:01:df:ac:87:00:ce:3c:25:9e:6d:0e:8d:2d:
56:61:7c:e9:16:e8:8a:9b:85:ed:5d:8a:dd:79:48:
31:05:45:42:e5:86:e8:ec:2b:38:4f:24:c2:69:ea:
40:ac:e9:54:07:4b:d2:63:d2:3f:6b:1c:08:16:23:
70:2a:5e:00:04:84:ff:a5:cd:85:ce:29:82:4b:4a:
e5:ed:4d:67:23:f4:8d:97:57:c1:8e:ab:bd:21:4e:
73:99:7b:0e:3a:a1:fb:d9:37:dc:fd:43:df:e7:8f:
65:73:22:d4:50:1e:15:ca:0e:59:f2:ff:41:ff:06:
6f:c3:0e:2a:04:43:98:77:b9:b5:e2:81:d4:cc:80:
65:24:39:bc:62:bd:79:3a:ce:e4:6a:e6:79:96:2e:
e3:84:62:2a:01:dc:c9:b8:0b:0d:70:2f:6b:49:d1:
ea:35:4e:e6:72:ba:b1:7e:dc:05:0d:52:76:6a:82:
b7:3f:46:e6:b5:35:53:dc:45:d9:f0:f1:3a:f7:17:
82:5d:e7:fd:f4:e2:9a:71:e5:77:19:0b:17:f6:d5:
f2:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:D8:8E:7B:6C:72:8B:F0:CF:64:2B:1C:22:B3:BF:43:9E:0A:BC:DD
X509v3 Authority Key Identifier:
keyid:05:E1:D0:7D:E6:F1:28:F4:69:C4:C3:B3:02:8A:DF:8D:4D:37:E2:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BeHQfebxKPRpxMOzAorfjU034tk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:1d:ac:66:4b:36:73:d3:c6:13:63:0a:13:72:7a:47:68:bb:
7b:9d:82:2e:f1:f9:20:da:d0:62:13:59:dc:c3:8b:90:85:5e:
4c:f3:9d:18:a5:35:dc:39:97:b2:dd:8b:3d:8a:3f:5a:6c:77:
9f:97:95:bd:35:23:0b:5a:f6:1a:23:b5:64:d4:97:2d:b8:75:
65:6b:56:08:a8:49:ee:4c:b2:e0:5a:3d:78:33:e1:87:19:2e:
92:02:05:1b:de:84:a6:bf:ab:7f:c7:2a:cb:f5:48:8d:5d:26:
8a:0a:db:f0:1f:9d:f3:8e:7d:b4:65:8e:80:d9:9b:94:46:a1:
ed:61:3f:41:15:71:26:64:c0:cd:36:ce:ec:64:8f:ce:4d:75:
1c:4b:79:df:45:a0:68:34:19:4e:c5:d2:e0:ce:ae:4c:20:ca:
8f:d7:c8:9c:2a:8f:f9:0e:65:bf:94:1d:2f:aa:e7:c9:4b:67:
46:11:50:c1:54:b7:c7:f0:88:fe:55:99:0e:2e:f8:5e:79:df:
12:58:c5:0a:7f:b1:2c:c3:11:7b:e0:0e:23:8a:4d:05:87:b4:
97:e0:66:dd:3f:6b:85:52:e9:ac:06:f9:ab:10:8c:82:fd:9b:
85:aa:60:93:6c:97:3e:0a:98:44:3f:f4:38:d4:02:9a:9b:c6:
26:8f:71:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:20:01 2025 by rpki-client