Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
File: bfhqH1cK4xUpAiqk9h79nsK5fQU.mft (raw, json)
Hash identifier: xlyS1hI1coyRg3cIroSSNx0rqluBxnLkEpc3nysM6uk=
Subject key identifier: D9:8D:40:7C:1F:6C:01:91:D9:CC:D3:CE:3B:3C:DE:73:27:E6:7C:FA
Authority key identifier: 6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
Certificate issuer: /CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Certificate serial: 01963FC2293AF38C5E9A85BA8449CDCF0332
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
Manifest number: 136E
Signing time: Wed 16 Apr 2025 18:00:11 +0000
Manifest this update: Wed 16 Apr 2025 18:00:11 +0000
Manifest next update: Thu 17 Apr 2025 18:00:11 +0000
Files and hashes: 1: BpLbGApyHXLB4qqgJyw3nGH9lH0.roa (hash: 4AoUx/2M994KEwtEdAKInOt11G1446xmTonI1qJPrOg=)
2: bfhqH1cK4xUpAiqk9h79nsK5fQU.crl (hash: 5ivf7CMx+A8M1otjt32q63MunY7Vg+wR3JNdAkR5vEc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 18:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:c2:29:3a:f3:8c:5e:9a:85:ba:84:49:cd:cf:03:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Validity
Not Before: Apr 16 18:00:11 2025 GMT
Not After : Apr 17 18:00:11 2025 GMT
Subject: CN=d98d407c1f6c0191d9ccd3ce3b3cde7327e67cfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a0:4f:49:36:dc:b9:bd:c6:f8:b7:3c:94:f2:
53:74:6e:cf:d7:47:34:26:6a:5c:a9:46:9c:93:dc:
06:1a:43:cd:db:ea:0f:60:fe:cd:7b:08:47:c3:f2:
b7:44:3d:c3:51:6a:1a:3d:19:c2:71:f5:32:67:36:
36:07:83:5e:a7:02:75:53:eb:b2:f3:64:ce:b7:44:
f4:91:1f:0f:ff:19:98:f3:c7:2c:57:e8:47:a0:26:
27:7a:81:59:94:b3:f3:8e:8f:76:ca:27:9a:62:b3:
79:06:84:e5:1a:ff:d1:96:b6:b3:7a:15:2f:75:47:
ee:ae:00:7b:20:c0:6b:01:1b:89:ba:33:b4:5e:01:
a8:f0:21:07:10:0b:b8:7f:9c:7f:99:b5:e1:97:a7:
8e:1a:b3:8c:a3:de:33:09:1c:69:8a:cb:c9:e0:90:
2d:aa:32:c4:d5:a7:50:23:e6:0d:8a:ad:25:7d:21:
fc:7f:7d:51:f3:2a:6f:b0:23:48:62:63:c8:4d:5d:
f7:c3:38:e4:75:8a:46:63:95:07:5d:eb:c1:5e:a0:
97:7a:eb:e1:11:2f:10:7f:b1:58:77:d1:3c:38:f3:
61:ad:56:4a:85:61:6d:f2:66:53:d3:53:b3:07:f0:
95:5c:42:b7:29:4e:df:bd:05:f8:99:4b:0e:37:e4:
79:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:8D:40:7C:1F:6C:01:91:D9:CC:D3:CE:3B:3C:DE:73:27:E6:7C:FA
X509v3 Authority Key Identifier:
keyid:6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:30:e6:c8:0a:ef:92:53:3a:6b:5b:d7:b4:0f:3b:96:d5:ee:
e9:6b:36:06:33:9a:b5:19:d8:00:07:89:95:44:b3:e6:ce:18:
c0:f1:1f:c2:8b:57:48:60:db:44:8c:4d:6b:c0:e0:c9:b2:b4:
cd:06:7c:44:45:8e:af:a1:b4:f8:be:2d:75:f7:51:af:15:d6:
85:1c:e3:98:52:40:61:0d:0b:32:f8:5e:57:2e:6f:83:1a:56:
89:6e:80:d7:52:a8:c8:f6:0a:3a:96:38:7b:37:c1:75:5a:a7:
81:b6:f3:48:d1:4e:e6:a1:a9:94:3f:4f:97:b6:9f:49:bb:2e:
04:d8:73:7f:af:ae:d4:6c:89:c8:13:bf:fe:d6:4d:3a:2b:9a:
cf:2a:83:c8:35:32:01:b3:07:32:36:e9:79:3e:f1:f9:07:33:
ff:89:2e:9c:dd:00:06:8b:69:1c:18:35:0f:5e:a5:5c:c1:a6:
15:cd:be:2d:a0:8e:59:76:d6:7d:e9:1e:88:2a:73:0d:d3:48:
2e:0f:08:f9:c7:85:95:57:8b:45:8f:5e:28:c4:72:39:6e:ff:
ad:83:14:62:68:4c:53:61:39:ef:41:db:ca:63:06:2f:56:a3:
c3:a0:96:83:0e:d1:40:d5:dd:92:08:98:eb:df:e4:09:8a:f0:
b6:f9:72:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:40:48 2025 by rpki-client