Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft
File: bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft (raw, json)
Hash identifier: DM9/L5CaIvgcMLFFrbg0CxvWYB/1kBfk0vMlfwOOxsI=
Subject key identifier: F9:28:86:AB:13:6C:F4:23:C8:18:A0:5C:78:B9:79:A3:B7:96:54:F3
Authority key identifier: 6F:06:04:74:08:86:06:EC:4E:E8:EE:D7:C4:1B:69:43:F8:9A:09:BD
Certificate issuer: /CN=6f060474088606ec4ee8eed7c41b6943f89a09bd
Certificate serial: 0194C35091696A7340C5149D8F02025917A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft
Manifest number: 0772
Signing time: Sat 01 Feb 2025 21:00:24 +0000
Manifest this update: Sat 01 Feb 2025 21:00:24 +0000
Manifest next update: Sun 02 Feb 2025 21:00:24 +0000
Files and hashes: 1: bwYEdAiGBuxO6O7XxBtpQ_iaCb0.crl (hash: TjpwvgBAdP1JVsw29qzMUcQmyEkwSRi7BvWnU3z58vg=)
2: xfilALq9xVm7LJX_uaRRDqm1ZX0.roa (hash: o3xsXXS0G1bR6xk5CmXK470ksv+YeZHYJ06DDMgu6J0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:50:91:69:6a:73:40:c5:14:9d:8f:02:02:59:17:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f060474088606ec4ee8eed7c41b6943f89a09bd
Validity
Not Before: Feb 1 21:00:24 2025 GMT
Not After : Feb 2 21:00:24 2025 GMT
Subject: CN=f92886ab136cf423c818a05c78b979a3b79654f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0f:0d:59:29:92:cf:a4:ee:65:a4:bc:e8:21:
0a:fd:4d:74:fe:30:0f:0e:b9:f4:3c:5f:0a:a7:1c:
22:7b:3e:41:69:da:4b:d9:13:d2:e9:0b:5e:d9:58:
6c:0d:84:ff:0c:e6:b2:60:3e:10:6b:8d:6a:57:6c:
4d:a6:26:bd:de:38:30:f5:7a:8e:57:27:fd:10:ab:
4e:2c:a2:f4:b0:05:d6:3e:ee:07:b1:db:ef:d8:53:
3d:63:59:43:81:2d:90:d2:5c:47:05:31:93:a2:d6:
d9:8f:ba:32:44:66:3d:b2:70:54:9d:fd:f3:d5:a6:
cb:00:fc:9c:82:ab:fd:10:a3:7d:21:62:1c:00:56:
49:44:08:f2:42:f1:75:d1:2f:d6:ad:3e:65:06:fe:
a3:39:ba:4e:3a:01:18:3f:d8:d9:4e:c5:5a:dc:de:
c4:0d:4a:1b:2d:bf:6a:65:01:34:fc:0b:40:bf:51:
24:42:a5:37:e4:f4:8b:b1:07:bc:b2:64:b9:73:2c:
59:45:00:42:82:2a:f0:a9:aa:04:40:7f:95:cf:f8:
d9:7c:a1:16:4b:37:0e:2b:b5:48:c2:18:c1:71:32:
c3:60:47:c9:55:78:d8:41:3e:ef:44:1d:bd:15:86:
45:bf:94:d6:cf:57:0d:6f:7f:03:5b:1e:57:34:a7:
de:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:28:86:AB:13:6C:F4:23:C8:18:A0:5C:78:B9:79:A3:B7:96:54:F3
X509v3 Authority Key Identifier:
keyid:6F:06:04:74:08:86:06:EC:4E:E8:EE:D7:C4:1B:69:43:F8:9A:09:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:f9:eb:c4:fb:dc:13:ac:95:4c:03:77:d7:ea:eb:76:21:dc:
32:e3:20:4d:d5:a9:8e:e8:82:b4:f8:6a:f2:11:f2:b7:69:3f:
59:14:7e:19:a4:82:27:c8:1c:d2:08:3d:94:2c:16:62:84:d6:
81:9d:07:15:a4:a4:89:7e:45:c7:36:55:fd:7c:d0:f5:dc:b1:
23:00:92:dd:20:56:78:99:da:ca:05:04:ec:51:0b:93:b7:54:
9b:58:48:6c:c3:f2:23:90:6e:d6:1d:8c:77:69:46:80:88:f3:
eb:c5:aa:5e:34:0d:75:48:f9:1e:1d:07:a9:a8:05:21:e7:12:
44:84:84:0c:c2:cb:5f:3d:4b:78:b8:7e:ed:2a:ba:34:76:8c:
89:21:95:24:e0:ee:05:1e:ad:c4:61:56:9e:c4:6c:90:1f:cc:
53:a4:ed:eb:ba:0c:a8:7f:1a:ae:92:15:9d:53:68:5f:60:4c:
21:c8:73:18:ee:7f:c8:2d:40:2d:4f:cf:32:7a:6b:ae:30:cf:
33:ca:af:41:a1:cc:80:8e:2e:7a:d2:a4:1f:11:90:31:6a:f0:
ae:8c:15:12:41:f8:45:d8:38:93:23:18:b4:ed:d7:f4:0a:4d:
d1:f0:bc:cb:d4:e4:36:d6:c7:c4:4f:ed:41:e1:14:85:8b:58:
02:f2:d9:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:08:48 2025 by rpki-client