Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
File: bfhqH1cK4xUpAiqk9h79nsK5fQU.mft (raw, json)
Hash identifier: w9iHyBHQuiAEbpKjFyh/5WdumfjybYRJeuKJ5RAgLYI=
Subject key identifier: F8:F4:C6:0F:9B:6E:83:EB:F6:19:4B:9D:4D:91:A0:2E:A1:2C:33:11
Authority key identifier: 6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
Certificate issuer: /CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Certificate serial: 0194C350B77AB931EB22C44DB37DF2F911A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
Manifest number: 12A9
Signing time: Sat 01 Feb 2025 21:00:34 +0000
Manifest this update: Sat 01 Feb 2025 21:00:34 +0000
Manifest next update: Sun 02 Feb 2025 21:00:34 +0000
Files and hashes: 1: BpLbGApyHXLB4qqgJyw3nGH9lH0.roa (hash: 4AoUx/2M994KEwtEdAKInOt11G1446xmTonI1qJPrOg=)
2: bfhqH1cK4xUpAiqk9h79nsK5fQU.crl (hash: NvQPVw03P4M8h0QiapNhaLrPburfuVLtfYJouVQOyIY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:50:b7:7a:b9:31:eb:22:c4:4d:b3:7d:f2:f9:11:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Validity
Not Before: Feb 1 21:00:34 2025 GMT
Not After : Feb 2 21:00:34 2025 GMT
Subject: CN=f8f4c60f9b6e83ebf6194b9d4d91a02ea12c3311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5e:bf:2c:fc:62:0b:50:d1:26:d5:cf:b9:ab:
d9:5f:c8:57:5a:09:bc:32:c0:b2:eb:03:f7:6b:79:
62:ee:35:29:54:55:4b:2d:7a:d5:eb:00:82:44:85:
21:5e:1e:dd:6f:2c:08:b5:be:dc:b0:66:1b:e2:b5:
56:58:57:a1:68:e5:36:ee:76:ae:4b:b9:38:be:84:
fa:d9:89:3b:c9:b7:60:1f:b1:50:7d:79:46:94:f0:
ab:10:ed:b8:13:0f:08:e6:26:d1:23:8a:91:70:ff:
2b:4b:56:6d:4f:fd:0d:2e:f8:35:8f:70:ff:a9:a1:
d4:60:40:a9:28:57:ea:ae:32:53:ef:60:4d:98:6f:
f1:bd:59:5e:eb:e2:66:db:42:71:9e:21:0f:24:fb:
d9:05:3c:4d:38:07:79:48:93:09:39:3c:a1:4e:d0:
5b:68:87:9a:16:84:2f:80:a9:13:e8:13:7b:e2:9b:
51:e1:b2:ff:61:c9:69:db:01:ef:35:6d:ba:92:90:
c3:98:66:48:9a:be:b7:07:ce:6d:3d:a8:2f:d9:1e:
ae:ed:14:c1:52:02:82:eb:95:1e:e6:f4:6b:a3:3c:
09:98:c8:2c:f8:c3:85:3a:ef:dc:49:94:7b:7f:fb:
51:7e:ee:ae:34:c8:cf:c6:00:e0:09:d9:8f:18:d6:
43:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:F4:C6:0F:9B:6E:83:EB:F6:19:4B:9D:4D:91:A0:2E:A1:2C:33:11
X509v3 Authority Key Identifier:
keyid:6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:84:61:4e:1b:98:f6:9a:cd:f6:14:0c:b6:ea:f9:de:97:27:
e6:e8:fa:e4:09:15:1a:40:26:74:68:ab:79:4b:84:8d:94:0f:
92:98:f4:ab:41:03:25:e9:e7:e5:01:51:49:72:7b:93:dc:17:
49:fc:9f:2e:b9:98:d2:eb:e7:15:9f:0d:ea:50:2c:3d:07:87:
0b:76:f2:65:9a:d8:c2:da:45:dd:6a:cf:21:30:bf:bc:ac:4e:
09:ee:24:81:91:37:a3:d2:73:1a:1c:fa:6b:ae:6f:45:1a:91:
48:1f:fa:89:a9:b2:98:b9:96:fb:99:4b:4a:b5:36:58:6e:cf:
06:57:7a:44:19:8c:f8:ea:74:69:3a:1c:5c:12:2e:7d:d1:da:
5a:29:da:5b:6c:b1:4b:a2:2d:ae:7f:71:ab:59:f2:74:b7:e9:
74:8f:bb:3f:51:23:25:9d:a1:0d:86:87:2d:92:8a:fa:e0:d0:
08:08:76:b9:4e:c4:3b:9c:e2:10:73:0f:ec:aa:38:64:f4:c7:
16:b2:dd:2e:27:b7:7b:79:18:52:bb:aa:5d:a2:e3:f2:bd:a3:
bb:6d:ef:e8:56:b3:89:57:c4:0e:b7:b8:88:21:e3:96:ca:6d:
0c:27:33:80:ec:cc:ed:ec:dc:9f:01:93:96:a9:6c:5a:b2:4b:
5d:e9:b7:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDULd6uTHrIsRNs33y+RGkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZjg2YTFmNTcwYWUzMTUyOTAyMmFhNGY2MWVmZDllYzJi
OTdkMDUwHhcNMjUwMjAxMjEwMDM0WhcNMjUwMjAyMjEwMDM0WjAzMTEwLwYDVQQD
EyhmOGY0YzYwZjliNmU4M2ViZjYxOTRiOWQ0ZDkxYTAyZWExMmMzMzExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx16/LPxiC1DRJtXPuavZX8hXWgm8
MsCy6wP3a3li7jUpVFVLLXrV6wCCRIUhXh7dbywItb7csGYb4rVWWFehaOU27nau
S7k4voT62Yk7ybdgH7FQfXlGlPCrEO24Ew8I5ibRI4qRcP8rS1ZtT/0NLvg1j3D/
qaHUYECpKFfqrjJT72BNmG/xvVle6+Jm20JxniEPJPvZBTxNOAd5SJMJOTyhTtBb
aIeaFoQvgKkT6BN74ptR4bL/Yclp2wHvNW26kpDDmGZImr63B85tPagv2R6u7RTB
UgKC65Ue5vRrozwJmMgs+MOFOu/cSZR7f/tRfu6uNMjPxgDgCdmPGNZDrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPj0xg+bboPr9hlLnU2RoC6hLDMRMB8GA1UdIwQY
MBaAFG34ah9XCuMVKQIqpPYe/Z7CuX0FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmZocUgxY0s0eFVwQWlxazloNzluc0s1ZlFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS82YWRkMzUtYTk4My00MDExLWFmOGEt
N2FhYzJkODQ3OTU1LzEvYmZocUgxY0s0eFVwQWlxazloNzluc0s1ZlFVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS82YWRkMzUtYTk4My00MDExLWFmOGEtN2FhYzJkODQ3OTU1
LzEvYmZocUgxY0s0eFVwQWlxazloNzluc0s1ZlFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMYRhThuY
9prN9hQMtur53pcn5uj65AkVGkAmdGireUuEjZQPkpj0q0EDJenn5QFRSXJ7k9wX
SfyfLrmY0uvnFZ8N6lAsPQeHC3byZZrYwtpF3WrPITC/vKxOCe4kgZE3o9JzGhz6
a65vRRqRSB/6iamymLmW+5lLSrU2WG7PBld6RBmM+Op0aTocXBIufdHaWinaW2yx
S6Itrn9xq1nydLfpdI+7P1EjJZ2hDYaHLZKK+uDQCAh2uU7EO5ziEHMP7Ko4ZPTH
FrLdLie3e3kYUruqXaLj8r2ju23v6FaziVfEDre4iCHjlsptDCczgOzM7ezcnwGT
lqlsWrJLXem3MA==
-----END CERTIFICATE-----
Generated at Sun Feb 2 07:01:19 2025 by rpki-client