Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
File: bG9jkROWOM74MYEUEyzPJuFn06Q.mft (raw, json)
Hash identifier: ZGaPvc5HgFG934VWRUChDQVJZGMgPXRLVBAGUtd0Bx4=
Subject key identifier: 15:ED:8B:FA:58:06:EE:28:3C:62:F5:33:32:CC:8E:0F:0E:BA:27:23
Authority key identifier: 6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
Certificate issuer: /CN=6c6f6391139638cef8318114132ccf26e167d3a4
Certificate serial: 0195903CBDC23EAD08F987F6C19D4C31CABF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
Manifest number: 1171
Signing time: Thu 13 Mar 2025 16:00:54 +0000
Manifest this update: Thu 13 Mar 2025 16:00:54 +0000
Manifest next update: Fri 14 Mar 2025 16:00:54 +0000
Files and hashes: 1: _HGowDUCSG2pcAysO4ogxA6yosc.roa (hash: UPTC6ZbpFxK2iqUZ6z67RcYvcbR0/gldSq3kNUHLLJI=)
2: bG9jkROWOM74MYEUEyzPJuFn06Q.crl (hash: /A6mxtqwohClkbhHQwpdNweK3u8EOyvaRUHNabe5jKE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:3c:bd:c2:3e:ad:08:f9:87:f6:c1:9d:4c:31:ca:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c6f6391139638cef8318114132ccf26e167d3a4
Validity
Not Before: Mar 13 16:00:54 2025 GMT
Not After : Mar 14 16:00:54 2025 GMT
Subject: CN=15ed8bfa5806ee283c62f53332cc8e0f0eba2723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:56:5d:41:56:53:d4:1e:14:90:eb:5d:ac:96:
f1:d0:e5:40:68:a8:2d:0a:cf:65:f5:2a:bc:cd:7c:
b7:12:61:b8:64:55:fc:2b:67:81:d2:9e:5d:f2:f4:
ea:a1:59:d0:6f:95:3a:99:6f:74:1d:43:66:ab:57:
6c:99:5b:37:8d:1b:fa:5e:62:e5:09:3f:f8:b7:58:
d7:8f:66:75:fc:2c:f1:76:79:69:b7:04:aa:67:91:
52:17:cc:2f:13:80:87:a4:a4:da:96:de:39:c2:16:
81:7d:38:2d:99:12:76:7b:84:3e:4f:92:a4:5f:2e:
14:a4:6b:86:5d:ca:94:b4:b1:08:dc:55:93:aa:81:
52:93:bf:01:6d:86:89:ae:dd:84:b5:61:06:4a:f8:
b3:fd:5f:6c:7a:12:c2:d2:0e:91:dd:c4:bc:e9:90:
84:ae:f1:f9:cd:47:7c:51:24:51:2b:6d:ab:ac:b4:
77:5e:a9:7b:9d:09:32:ff:78:06:fd:32:f3:08:78:
e9:47:13:02:05:f5:58:9c:1d:b8:d8:69:eb:cf:91:
10:87:57:af:ea:ef:e5:78:1c:b1:0d:83:99:50:b8:
46:0f:f2:93:04:92:4b:a3:64:90:ff:63:7b:02:8d:
44:94:07:65:70:81:2c:7c:a3:17:6a:98:4b:d2:de:
66:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:ED:8B:FA:58:06:EE:28:3C:62:F5:33:32:CC:8E:0F:0E:BA:27:23
X509v3 Authority Key Identifier:
keyid:6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:84:5a:46:e7:f8:46:be:39:5a:15:08:07:50:fa:fd:fc:f5:
5d:53:a3:63:20:98:c1:9c:eb:71:2b:b2:30:9c:8e:11:46:cc:
8a:6f:0f:9d:bd:5a:1e:41:f6:67:47:5c:48:90:20:64:74:a5:
07:c0:5b:bf:ef:b5:58:a8:6b:19:ff:6e:9e:86:18:da:ab:95:
99:6a:f5:dd:3e:4e:cd:57:0b:51:43:39:62:e4:3e:5a:b3:77:
8a:59:b7:e6:79:57:9b:b0:3c:0c:52:45:16:af:8f:83:5a:88:
5c:cf:f0:8a:60:9e:94:2a:e4:92:85:d3:c7:2b:32:e8:09:13:
2d:2d:5f:2e:23:42:88:92:39:9b:a4:65:70:1e:45:7d:c0:71:
03:ca:78:70:bd:8d:9a:eb:8b:14:7d:ae:35:74:4b:f5:77:8e:
9a:b7:05:3e:0a:ce:16:56:a5:cc:79:59:42:7b:96:18:45:c2:
3e:43:d4:7a:db:d8:69:4f:9c:2e:0d:47:7e:29:6d:15:b7:0b:
2c:98:18:27:29:24:0c:cd:00:1e:62:bd:d9:06:e5:9f:79:ff:
34:25:19:15:85:b2:a1:3c:1c:69:cf:7c:be:4e:7d:ff:68:2e:
72:66:7e:43:ee:ec:f8:43:6b:31:01:14:43:c5:32:fb:e2:41:
6c:d3:8e:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:40:36 2025 by rpki-client