Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft
File: Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft (raw, json)
Hash identifier: 0V1kLsVCfCPEqHObFNaOAPHMBSl8eEGySx0r9pPEXNc=
Subject key identifier: 49:10:A7:0C:2F:B7:FC:1A:E9:9A:CA:C6:72:21:04:A9:9A:81:FA:EF
Authority key identifier: 06:09:7A:72:E4:AE:40:B6:B9:92:9B:72:F8:1E:FD:71:C5:17:DD:98
Certificate issuer: /CN=06097a72e4ae40b6b9929b72f81efd71c517dd98
Certificate serial: 01957A22C672B475BAABD03F15E9B84FBF9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft
Manifest number: AF
Signing time: Sun 09 Mar 2025 09:00:54 +0000
Manifest this update: Sun 09 Mar 2025 09:00:54 +0000
Manifest next update: Mon 10 Mar 2025 09:00:54 +0000
Files and hashes: 1: Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl (hash: mIueQgX7Vwu8WYpikP/WbPw2REGitrDW9D8qboFUzi8=)
2: aTqNBiMtHyqY4sjo2vUby0yJMKk.roa (hash: 8tR80jRMgENDFDI+mB0B/a9/v+rAAXYdo53Fd7KchX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:7a:22:c6:72:b4:75:ba:ab:d0:3f:15:e9:b8:4f:bf:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06097a72e4ae40b6b9929b72f81efd71c517dd98
Validity
Not Before: Mar 9 09:00:54 2025 GMT
Not After : Mar 10 09:00:54 2025 GMT
Subject: CN=4910a70c2fb7fc1ae99acac6722104a99a81faef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:1a:8e:45:84:41:8b:49:5b:49:2d:44:d9:06:
eb:82:ea:f0:84:64:6f:49:0f:50:6d:41:00:73:93:
d7:ca:8a:b4:ff:78:f1:20:8a:37:b7:58:94:65:05:
f5:95:93:42:2f:fc:50:b4:c4:12:36:53:4f:24:85:
de:33:10:8b:b7:0c:47:0c:18:04:26:62:51:ac:41:
6d:54:05:ce:54:fc:0a:4b:dc:ae:05:81:d7:21:98:
2f:ba:03:7b:c5:79:1b:e6:4e:41:cf:d7:ed:79:d4:
66:cb:8c:f2:a4:ea:07:ab:d8:e0:8a:e1:65:8d:ab:
f2:28:97:72:da:25:40:27:80:a7:a9:9c:97:d8:13:
8d:4e:50:f2:c7:af:8f:40:4b:0e:82:e4:b8:aa:79:
6a:95:78:66:69:11:5a:62:38:d7:35:a9:7a:4c:73:
3c:92:81:36:2c:36:a6:53:ee:41:29:fb:ce:ec:48:
ef:d3:15:dd:5c:3a:88:6b:12:9b:86:20:db:7f:44:
c7:e8:15:1b:a2:0a:5d:75:ef:97:b8:6a:e3:3c:38:
22:47:81:3b:11:78:bf:cd:50:2e:97:4e:7b:5d:50:
02:ce:8a:e3:e3:fd:f1:f7:5c:39:76:c1:e6:d6:60:
5d:5f:ac:fd:86:33:15:5c:e8:5e:72:94:f1:e9:33:
94:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:10:A7:0C:2F:B7:FC:1A:E9:9A:CA:C6:72:21:04:A9:9A:81:FA:EF
X509v3 Authority Key Identifier:
keyid:06:09:7A:72:E4:AE:40:B6:B9:92:9B:72:F8:1E:FD:71:C5:17:DD:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:4d:92:13:a6:66:71:ed:95:9f:17:6c:2f:a6:ba:4e:da:05:
26:71:4f:50:f9:5d:70:f4:9e:a7:8d:3c:4c:61:13:a0:68:24:
c1:2d:bc:c6:9c:a2:82:a7:21:06:8d:d9:76:30:9f:54:9b:91:
a9:91:43:a8:f2:44:9e:30:70:af:71:83:89:e4:da:fd:81:7c:
92:d7:5c:b3:c2:04:10:9c:d7:bb:c0:f8:fc:88:a6:db:32:ad:
91:6d:6e:74:fb:dc:a0:e7:01:06:86:70:5c:80:a0:ac:55:4f:
5a:ae:4d:9f:ee:cb:43:fa:0a:96:70:73:21:e3:0b:a7:3c:40:
49:ec:63:8f:c0:1f:32:36:a5:26:de:0b:6b:b2:6c:99:d9:6f:
99:86:e9:ea:06:54:63:f0:78:e0:fa:8a:7a:31:11:b5:fb:17:
14:bb:d2:d5:0d:c6:a3:ba:30:ca:f5:b9:d6:18:88:23:a0:5e:
52:8d:09:f5:86:91:d5:8c:d2:cb:01:6b:a4:53:da:94:3f:de:
0f:77:cd:57:c3:ec:f9:81:42:ee:6e:75:cc:b0:41:71:7d:d5:
0d:ff:49:26:58:98:bd:f3:b8:e4:60:cd:29:0f:3d:b0:e3:7c:
f5:02:5b:2a:a4:bb:c5:12:38:ed:62:f5:e8:0a:d1:a9:19:0d:
e5:e2:35:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZV6IsZytHW6q9A/Fem4T7+dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2MDk3YTcyZTRhZTQwYjZiOTkyOWI3MmY4MWVmZDcxYzUx
N2RkOTgwHhcNMjUwMzA5MDkwMDU0WhcNMjUwMzEwMDkwMDU0WjAzMTEwLwYDVQQD
Eyg0OTEwYTcwYzJmYjdmYzFhZTk5YWNhYzY3MjIxMDRhOTlhODFmYWVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5hqORYRBi0lbSS1E2QbrgurwhGRv
SQ9QbUEAc5PXyoq0/3jxIIo3t1iUZQX1lZNCL/xQtMQSNlNPJIXeMxCLtwxHDBgE
JmJRrEFtVAXOVPwKS9yuBYHXIZgvugN7xXkb5k5Bz9ftedRmy4zypOoHq9jgiuFl
javyKJdy2iVAJ4CnqZyX2BONTlDyx6+PQEsOguS4qnlqlXhmaRFaYjjXNal6THM8
koE2LDamU+5BKfvO7Ejv0xXdXDqIaxKbhiDbf0TH6BUbogpdde+XuGrjPDgiR4E7
EXi/zVAul057XVACzorj4/3x91w5dsHm1mBdX6z9hjMVXOhecpTx6TOUTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEkQpwwvt/wa6ZrKxnIhBKmagfrvMB8GA1UdIwQY
MBaAFAYJenLkrkC2uZKbcvge/XHFF92YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zYTEwOWEtOWIzMi00NWE4LTliMGMt
N2EwMjUxN2ZkOWQyLzEvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi8zYTEwOWEtOWIzMi00NWE4LTliMGMtN2EwMjUxN2ZkOWQy
LzEvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALU2SE6Zm
ce2VnxdsL6a6TtoFJnFPUPldcPSep408TGEToGgkwS28xpyigqchBo3ZdjCfVJuR
qZFDqPJEnjBwr3GDieTa/YF8ktdcs8IEEJzXu8D4/Iim2zKtkW1udPvcoOcBBoZw
XICgrFVPWq5Nn+7LQ/oKlnBzIeMLpzxASexjj8AfMjalJt4La7JsmdlvmYbp6gZU
Y/B44PqKejERtfsXFLvS1Q3Go7owyvW51hiII6BeUo0J9YaR1YzSywFrpFPalD/e
D3fNV8Ps+YFC7m51zLBBcX3VDf9JJliYvfO45GDNKQ89sON89QJbKqS7xRI47WL1
6ArRqRkN5eI1zg==
-----END CERTIFICATE-----
Generated at Sun Mar 9 11:34:00 2025 by rpki-client