Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
File: BAfWwkhET2tcN42w_-wPiZJW66M.mft (raw, json)
Hash identifier: ThdYc6wEem7g5wtkol1Ebl01OR5coDKRZ7gTT9ab0x8=
Subject key identifier: E7:C1:1E:2F:AF:96:99:41:4C:DC:34:8B:F6:91:7A:70:14:30:D7:04
Authority key identifier: 04:07:D6:C2:48:44:4F:6B:5C:37:8D:B0:FF:EC:0F:89:92:56:EB:A3
Certificate issuer: /CN=0407d6c248444f6b5c378db0ffec0f899256eba3
Certificate serial: 019747B092510A03B14E864805BF85791B44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
Manifest number: 084F
Signing time: Sat 07 Jun 2025 00:00:43 +0000
Manifest this update: Sat 07 Jun 2025 00:00:43 +0000
Manifest next update: Sun 08 Jun 2025 00:00:43 +0000
Files and hashes: 1: BAfWwkhET2tcN42w_-wPiZJW66M.crl (hash: 5qpLYmf4vyQInpc5aOkdPlzdjhpAbuQwO81pzYacwX0=)
2: QpIKO4ejjPjXaNQ1_KyJkWKevB8.roa (hash: e6W0MKDyzgf7+BDF2Ho9KsY3xBRYMIFdcPH8WpxhKmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:b0:92:51:0a:03:b1:4e:86:48:05:bf:85:79:1b:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0407d6c248444f6b5c378db0ffec0f899256eba3
Validity
Not Before: Jun 7 00:00:43 2025 GMT
Not After : Jun 8 00:00:43 2025 GMT
Subject: CN=e7c11e2faf9699414cdc348bf6917a701430d704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4a:0b:d8:72:d2:46:04:af:57:39:78:13:00:
7a:cf:f6:10:1b:89:95:22:3b:bc:f5:4f:62:88:a4:
83:5c:a6:6c:21:71:b3:91:42:84:79:e9:b1:00:e9:
70:bd:2a:56:c8:4c:9f:9e:58:26:88:9f:11:8c:0f:
42:59:da:ff:be:ad:d9:01:d7:f2:aa:62:a4:ed:22:
fb:cc:87:43:ec:8a:7d:e6:87:15:64:83:2f:36:2a:
e5:9c:09:5c:9c:89:70:d2:f5:b4:cb:41:9b:ed:48:
f0:dc:b5:96:ab:40:8c:89:69:e0:db:25:da:69:90:
6a:95:87:c8:cc:ba:bd:ee:25:d3:af:a7:07:9f:86:
c5:8f:fb:49:57:32:7d:4d:d1:5c:88:cc:57:47:c3:
4a:1e:cc:a8:fd:3c:42:d0:6a:71:29:74:70:c3:41:
00:6b:69:9c:b1:ea:3c:bc:85:e8:ef:c9:aa:75:25:
86:c3:84:cd:b3:92:27:e8:0d:21:a1:95:8e:0d:01:
52:3c:60:05:93:b8:b4:50:36:e6:a4:ff:04:05:4d:
62:37:95:a9:79:c2:cf:5d:03:fe:cc:ad:83:16:72:
36:a0:b9:c3:70:b4:40:9b:d0:b6:51:af:12:65:b0:
b9:6c:6a:53:0e:44:e3:60:4c:16:67:2a:92:04:0e:
7f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C1:1E:2F:AF:96:99:41:4C:DC:34:8B:F6:91:7A:70:14:30:D7:04
X509v3 Authority Key Identifier:
keyid:04:07:D6:C2:48:44:4F:6B:5C:37:8D:B0:FF:EC:0F:89:92:56:EB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:29:1f:3c:a3:68:05:7f:94:a0:1b:9f:f9:2b:78:34:4b:96:
b6:70:1f:23:36:49:4b:5d:fd:bb:88:6b:a3:b0:24:0d:34:70:
9d:c8:cc:49:de:f5:2a:3d:7f:fe:61:51:4d:dd:0b:ec:76:3a:
b9:2e:22:80:d4:6c:c1:05:83:a1:6b:75:ad:43:6b:58:0d:22:
9b:f5:6d:a5:7d:a9:9e:8a:97:53:03:23:28:13:c6:26:7b:39:
04:b3:1d:9a:0c:aa:84:4f:6e:bd:c5:c6:f3:9b:15:39:7a:5a:
37:cc:3b:09:dd:0f:ab:9d:81:1f:10:ca:4d:2f:0f:c7:3b:b6:
ae:b5:b1:94:aa:b1:a7:c6:96:1b:1e:24:5c:1b:cc:df:ed:e5:
7d:89:6c:f2:38:3a:15:39:bf:2c:a4:18:54:7b:b0:12:1e:29:
d2:3f:18:34:48:c6:c5:9c:3e:f0:dc:fd:dd:5e:88:1f:ef:08:
aa:56:0d:0b:53:fd:aa:62:4c:01:31:79:a1:82:16:30:68:5e:
90:c9:38:79:cf:05:18:b3:c4:91:e6:33:6d:98:50:75:be:3c:
43:03:96:91:82:1e:b2:1f:42:bb:42:19:f8:08:f0:b3:93:3a:
cd:57:d4:76:84:e6:c2:6c:96:11:f0:ca:04:d5:cc:97:20:c4:
09:0f:4e:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 08:26:09 2025 by rpki-client