Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
File: bqGhD32UTazB3sBBqqVZ1SK_uus.mft (raw, json)
Hash identifier: feLMhqJ2o1BwmV+DkALAN/QQ8W7aNWh4BgickVSDZho=
Subject key identifier: 35:64:E9:45:CB:DD:20:71:03:C9:DB:B4:DB:D0:71:01:6D:02:84:40
Authority key identifier: 6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB
Certificate issuer: /CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb
Certificate serial: 019649A27FB8810963CDEDE9466FD8FA22B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
Manifest number: 126E
Signing time: Fri 18 Apr 2025 16:01:48 +0000
Manifest this update: Fri 18 Apr 2025 16:01:48 +0000
Manifest next update: Sat 19 Apr 2025 16:01:48 +0000
Files and hashes: 1: M9NbgULzUbUgy5QfFA80DfDkYIo.roa (hash: 9jvwTaiwGzjoN6t2OLikrXjXwIhCTFgXlEI2alktc+E=)
2: bqGhD32UTazB3sBBqqVZ1SK_uus.crl (hash: QmI6H6gThT9ZwALcqcm8GqFd5qjFUZpwBgp3CaWEWM4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 14:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:49:a2:7f:b8:81:09:63:cd:ed:e9:46:6f:d8:fa:22:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb
Validity
Not Before: Apr 18 16:01:48 2025 GMT
Not After : Apr 19 16:01:48 2025 GMT
Subject: CN=3564e945cbdd207103c9dbb4dbd071016d028440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:3e:51:ba:27:ae:71:01:ad:94:94:bf:6b:69:
1a:32:f4:29:45:1b:cf:40:06:15:31:b6:4e:ea:fd:
40:bf:ac:76:e3:8b:d0:50:8d:27:6e:23:01:97:5e:
7f:6e:b8:fe:e7:87:27:ed:fe:70:63:63:89:e2:de:
7d:7d:21:bb:67:94:5e:c2:75:7d:ff:7d:62:33:68:
4b:7d:c0:50:6e:55:ca:2d:2f:b9:a1:ad:ff:e4:73:
81:7d:2d:05:24:e1:03:8b:aa:52:87:58:b6:3c:96:
b6:75:2a:ea:32:8d:5f:1a:fa:23:ed:0c:47:3f:ea:
c5:5e:d1:fa:40:6d:34:b7:43:56:ee:fd:11:5f:7f:
9a:e5:45:d7:5d:33:62:a8:5f:db:c0:88:da:df:28:
06:07:17:15:24:c9:92:87:f3:20:17:21:1d:c6:0f:
a6:4d:4a:6d:c4:88:81:97:07:4a:ed:c0:b9:7e:5c:
b5:39:9a:3b:e9:d9:fa:13:7e:8d:00:fa:ef:12:87:
a0:f3:95:66:97:dd:1d:e2:04:72:9d:32:a2:af:eb:
36:b6:8b:d1:70:e8:69:dc:c5:7c:9f:a9:22:be:01:
8a:f6:d8:3b:a5:30:be:69:37:67:7d:ad:00:3e:3a:
9d:4d:d8:64:d5:7a:0c:b5:d5:8d:06:c6:6a:a8:89:
75:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:64:E9:45:CB:DD:20:71:03:C9:DB:B4:DB:D0:71:01:6D:02:84:40
X509v3 Authority Key Identifier:
keyid:6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:9b:03:59:9b:96:ac:54:70:1c:8c:a0:3c:f9:51:7c:dd:77:
b6:7c:73:d2:dd:2b:c2:7c:a2:f9:39:5e:e9:68:81:af:fc:fd:
10:b6:f9:ed:63:8b:54:c6:2f:e2:9a:3e:2c:84:3f:4b:4e:06:
b0:de:9f:1b:4c:48:40:1a:3f:6f:fb:fd:c9:04:ab:66:5f:f4:
6f:b4:1c:a5:ae:31:c4:a2:f8:85:4d:8f:e3:f9:e4:e5:71:91:
56:b0:d1:74:0d:07:8b:f3:3d:95:6d:86:66:af:6f:e8:31:bc:
f4:8c:9b:86:60:ef:0a:ab:fe:6d:37:04:3a:23:c2:25:64:fd:
97:bc:30:61:c6:c7:54:a7:ca:df:26:b3:4e:1d:f6:3f:3c:04:
52:91:00:6a:2e:30:13:41:77:a4:e4:a2:a6:4d:0e:51:64:8c:
59:49:fe:5c:e4:cd:eb:6b:99:f7:44:3f:b1:26:03:c6:86:29:
52:c9:0c:3d:c5:14:24:46:e3:9b:66:79:9a:34:4e:a1:c7:b7:
dc:44:2e:a0:56:b7:0e:47:2e:8b:08:e0:d4:96:00:8b:94:4a:
fa:4c:7e:21:07:12:f7:3f:2d:a3:5f:5d:88:fc:63:ce:ba:a1:
9d:78:fd:a7:8f:83:e6:7b:b9:ef:a8:e1:a2:d4:8a:8d:da:d5:
01:ec:39:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 00:55:22 2025 by rpki-client