Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.mft
File: BYfISQs3IEVmn0Xxgxk-7Ub5kfU.mft (raw, json)
Hash identifier: iN965twmAcO6ormZ6qX8RF8AuZ8xUCZe1o6CChYU4DE=
Subject key identifier: C5:C0:40:60:90:7A:7E:26:D6:41:2D:AE:BC:C5:1E:0A:3D:18:38:2C
Authority key identifier: 05:87:C8:49:0B:37:20:45:66:9F:45:F1:83:19:3E:ED:46:F9:91:F5
Certificate issuer: /CN=0587c8490b372045669f45f183193eed46f991f5
Certificate serial: 01965914EB788E19E6798065E53730F959FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.mft
Manifest number: 085F
Signing time: Mon 21 Apr 2025 16:01:05 +0000
Manifest this update: Mon 21 Apr 2025 16:01:05 +0000
Manifest next update: Tue 22 Apr 2025 16:01:05 +0000
Files and hashes: 1: BYfISQs3IEVmn0Xxgxk-7Ub5kfU.crl (hash: aHbKHqD8112op+GAcHv0Xwv/16YqDFrn7SmhOIZEsbo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:14:eb:78:8e:19:e6:79:80:65:e5:37:30:f9:59:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0587c8490b372045669f45f183193eed46f991f5
Validity
Not Before: Apr 21 16:01:05 2025 GMT
Not After : Apr 22 16:01:05 2025 GMT
Subject: CN=c5c04060907a7e26d6412daebcc51e0a3d18382c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:94:d3:bb:47:00:f9:9c:74:67:a9:f6:90:f4:
b4:d9:23:81:bb:41:34:6e:5c:83:06:16:e9:21:20:
0f:dc:8d:0b:12:8c:a9:00:50:5f:5f:0b:d3:54:94:
49:c2:1d:2e:73:9a:56:7d:6c:51:8a:82:32:9c:d9:
99:db:c9:9c:5f:fc:99:98:40:2d:f6:1d:b9:be:f7:
11:5f:dd:63:df:58:92:e0:e6:6e:17:cb:63:65:47:
a8:67:bd:11:09:db:b1:5f:77:3e:73:6d:5b:f8:03:
92:f8:3c:ca:39:df:e6:de:66:89:8b:dc:81:d6:f2:
10:e5:29:e9:36:e7:12:d9:4e:54:c4:93:0e:5b:46:
5b:c6:23:e4:b1:ad:bb:3e:3b:03:38:02:0b:8b:96:
34:2d:fc:88:62:c4:27:e2:1f:bf:01:c6:e3:66:88:
86:78:3b:73:ba:08:94:51:68:2b:fc:8c:03:6c:be:
ac:97:21:88:62:3e:a3:15:b3:dc:3f:bb:4e:f7:d2:
08:ca:e0:cb:00:9b:24:54:f9:be:80:96:09:36:74:
4f:9c:32:09:aa:ca:39:23:a7:49:e6:22:e0:a9:6d:
81:76:12:03:44:0f:91:3d:18:b5:4c:ab:8b:5e:2c:
b1:f5:1e:5a:63:c0:9e:88:91:7f:73:0e:24:0e:eb:
8d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C0:40:60:90:7A:7E:26:D6:41:2D:AE:BC:C5:1E:0A:3D:18:38:2C
X509v3 Authority Key Identifier:
keyid:05:87:C8:49:0B:37:20:45:66:9F:45:F1:83:19:3E:ED:46:F9:91:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:ac:fd:3f:db:28:8f:4e:19:d7:66:e2:44:61:88:15:7c:8c:
27:81:39:0c:51:c7:64:55:7d:cf:db:53:87:8a:7d:52:2f:e4:
90:6a:8d:72:7c:5f:15:39:8a:ec:f3:e6:f5:77:b4:8a:64:72:
03:10:d2:ac:85:9d:6f:7f:8b:79:b5:0d:40:47:12:09:83:8b:
a6:30:b5:bd:da:bf:8d:01:fa:32:13:4e:31:43:4c:a5:65:5b:
f4:8f:7d:98:e1:78:41:c2:53:22:4e:ae:7d:75:5e:2f:82:ba:
6c:67:9d:c7:6c:d2:55:88:d6:bb:f4:d3:cb:f7:e2:f8:3c:d7:
34:bd:d0:7a:9f:0a:a2:9e:8e:23:3b:ed:f4:0c:db:bd:e1:af:
8a:9c:fc:3c:44:10:ec:a7:df:87:eb:a3:87:d5:2b:22:2e:b2:
e5:1b:d5:7c:70:0d:39:55:2d:f8:f8:0e:87:96:16:54:49:95:
74:67:9f:ef:c1:bf:f3:5b:ec:72:9a:d4:b5:03:ce:fe:14:1d:
96:26:ea:d9:ca:85:33:4b:1c:ce:2d:d0:7b:1f:03:17:b9:f9:
f4:83:14:6b:77:ff:a9:09:0e:01:92:bd:6f:a6:78:71:de:c9:
e1:e8:e2:c0:53:57:6e:c5:cf:41:5d:e9:d8:32:54:e6:38:ef:
74:b3:72:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:11:26 2025 by rpki-client