Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
File: bAlGwIGzK-hIywDY2TLowfcXlmg.mft (raw, json)
Hash identifier: jYloFMpuXBEEf7Gw96VU4KHmpgi/PYmpIKzwAJNiK+Q=
Subject key identifier: 6B:99:19:2B:73:67:F0:70:DE:89:71:28:C1:54:15:81:7A:41:A7:54
Authority key identifier: 6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68
Certificate issuer: /CN=6c0946c081b32be848cb00d8d932e8c1f7179668
Certificate serial: 01963DD446DB8AE1D1AC944D253499F1AEEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
Manifest number: 14F1
Signing time: Wed 16 Apr 2025 09:00:44 +0000
Manifest this update: Wed 16 Apr 2025 09:00:44 +0000
Manifest next update: Thu 17 Apr 2025 09:00:44 +0000
Files and hashes: 1: bAlGwIGzK-hIywDY2TLowfcXlmg.crl (hash: 8/PpcSjF+eAPCXd96tWpBaqUayWhQLnHqz9HH9mYGzA=)
2: zcbK2VYAm9mMFJWXJQ7evncTyKY.roa (hash: IlkFU9F+u30MyRO9adAYRJd3agbOfEkk4M3dko//XTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 09:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3d:d4:46:db:8a:e1:d1:ac:94:4d:25:34:99:f1:ae:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c0946c081b32be848cb00d8d932e8c1f7179668
Validity
Not Before: Apr 16 09:00:44 2025 GMT
Not After : Apr 17 09:00:44 2025 GMT
Subject: CN=6b99192b7367f070de897128c15415817a41a754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:10:52:b1:03:2d:16:a9:32:b3:58:64:4d:e6:
0e:01:5b:7e:89:63:e4:df:e1:09:79:cb:fc:37:44:
e5:6d:03:e6:98:81:30:29:7f:95:b3:7a:a8:79:fd:
fe:81:37:17:64:74:73:3f:f3:65:11:a9:e0:f8:ab:
79:72:bd:a3:47:01:f1:34:b6:17:c0:0f:8d:ee:e1:
fb:98:53:ca:23:09:c0:b1:96:ab:92:2a:8a:06:53:
36:cd:4f:4b:a9:60:18:dc:a3:b2:c7:72:71:c6:9e:
a5:c8:5c:88:dc:85:55:ef:21:49:89:1b:a8:27:06:
75:70:91:01:10:bd:9e:1f:ac:92:a1:70:ce:9a:07:
58:9f:95:b3:81:c7:0c:bf:13:ce:ad:01:2b:5e:88:
b7:c5:b9:47:c4:b8:e2:9d:6d:25:09:5a:1a:b1:e6:
86:7d:05:25:0a:37:19:38:2f:76:1d:58:7f:7f:91:
e8:1c:f4:4d:60:17:06:3e:24:57:78:99:f5:65:e5:
4c:8d:d3:e1:e5:71:63:a9:dc:04:b1:43:14:24:41:
a7:b9:f4:61:b5:3f:da:7a:91:53:4a:a4:92:58:1f:
7c:14:f2:f0:ac:42:13:7a:12:88:ba:a8:a5:14:ca:
58:fd:18:2d:d1:47:b5:56:72:53:2f:15:47:b6:02:
87:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:99:19:2B:73:67:F0:70:DE:89:71:28:C1:54:15:81:7A:41:A7:54
X509v3 Authority Key Identifier:
keyid:6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:fd:2f:57:04:6a:fa:2e:b3:80:44:99:0a:2c:2d:ea:7a:d8:
33:f7:cd:7d:fd:f7:ec:fe:c6:7f:33:2d:d5:fe:11:94:6c:57:
46:76:dc:8a:eb:5e:7b:12:ca:b2:66:c2:11:ad:ce:64:85:04:
cf:38:30:d7:e7:f9:70:6e:3d:65:b9:d2:89:8f:bc:a9:16:ba:
f9:e1:7f:ad:45:cf:6f:00:6a:44:02:1a:1a:36:2f:0a:e5:0d:
34:b2:2f:4e:c0:c7:7b:dc:ed:5a:9a:27:cf:2d:fc:3a:77:48:
41:0a:e0:40:16:ae:f5:4c:43:20:db:c3:2c:48:72:29:f4:98:
76:3d:6a:6d:06:cb:83:ab:62:18:82:c6:c8:47:a7:b8:00:05:
fa:b4:36:f0:51:c1:22:34:e8:67:14:3f:61:e8:1a:3e:80:ca:
42:7c:af:87:1d:4c:9d:b0:f2:d4:c8:1c:11:49:bb:2b:67:fe:
98:3b:fc:a8:96:78:8b:81:3a:5c:4c:ec:13:cf:45:4f:e5:ba:
a3:ad:60:d7:3d:b3:1d:10:25:5a:b0:17:7d:1c:12:27:36:53:
4f:91:f3:f2:f1:04:8d:ab:30:7b:ef:90:70:41:15:64:c3:bc:
ac:6a:55:93:17:53:c8:81:93:ae:27:43:e0:ce:c8:22:09:cc:
60:52:ec:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 13:03:04 2025 by rpki-client