Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
File: BZ9RaALCYTCaYQSHcubq_VhnqZA.mft (raw, json)
Hash identifier: CVBKkxQzHbgsmuXErnvjgDY4FqdR83Qd672cHeITrsE=
Subject key identifier: 39:3B:2A:D9:F2:0E:82:5C:2D:BB:B2:62:60:FC:71:67:F2:F6:0F:72
Authority key identifier: 05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
Certificate issuer: /CN=059f516802c261309a61048772e6eafd5867a990
Certificate serial: 0196564A294EB8206471B21B869AEF2A3BB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
Manifest number: 13BB
Signing time: Mon 21 Apr 2025 03:00:22 +0000
Manifest this update: Mon 21 Apr 2025 03:00:22 +0000
Manifest next update: Tue 22 Apr 2025 03:00:22 +0000
Files and hashes: 1: BZ9RaALCYTCaYQSHcubq_VhnqZA.crl (hash: HUBC6ZKY9T+LaUy/v/Z7IEeyDwj0A5e4rcJWXYwMVcU=)
2: RyM0TaDcy3MATcF4kZgnomIhcSc.roa (hash: u1hwu96g0Ti3Leptf/8mOz/le6P/VB383vy/UE8/YqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:4a:29:4e:b8:20:64:71:b2:1b:86:9a:ef:2a:3b:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=059f516802c261309a61048772e6eafd5867a990
Validity
Not Before: Apr 21 03:00:22 2025 GMT
Not After : Apr 22 03:00:22 2025 GMT
Subject: CN=393b2ad9f20e825c2dbbb26260fc7167f2f60f72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ca:67:8a:d4:8d:92:2d:36:1a:c0:98:ac:c7:
3c:cc:aa:17:a6:d8:14:99:c3:70:40:9c:e6:83:2d:
1e:a8:ac:c9:1a:9d:df:e4:41:3f:65:f6:45:0f:f3:
cc:74:29:65:b2:36:aa:44:19:c0:e7:94:87:49:c5:
7b:50:f7:0f:40:6f:95:90:d9:ff:53:3f:2f:88:22:
88:71:05:c4:19:b5:2c:f7:73:ad:20:d8:c6:f2:64:
26:2f:11:97:bd:78:7b:70:a7:76:44:5f:a7:12:de:
7b:7c:f8:1e:f4:07:44:24:f1:24:9d:6c:ca:4b:c5:
43:33:6a:f3:6b:e3:2e:d0:87:12:20:05:13:23:2d:
3c:f1:cc:5b:2d:9b:ac:0a:b6:a2:42:dc:66:6e:3e:
fb:0f:77:ef:b7:ad:5e:c1:47:d7:62:5d:3d:e9:03:
d3:87:e2:6d:dc:3a:25:a1:7d:3b:f5:35:26:f1:9f:
65:2f:81:ee:2c:96:eb:6c:16:2e:10:d4:51:7d:30:
96:fc:d3:76:dd:1c:92:fe:77:68:80:e9:6f:6e:c9:
9d:07:23:cc:46:f6:a1:1c:7c:9d:39:09:27:23:15:
79:6c:36:e9:4d:d2:4c:0b:64:62:af:f8:74:42:8d:
d3:8c:c3:5e:f0:52:21:4c:01:cc:1d:06:74:48:ba:
70:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:3B:2A:D9:F2:0E:82:5C:2D:BB:B2:62:60:FC:71:67:F2:F6:0F:72
X509v3 Authority Key Identifier:
keyid:05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:24:74:50:f6:40:aa:52:bb:13:1a:a6:15:df:de:9b:de:c7:
c1:7b:79:a7:89:89:a0:eb:ec:ec:c3:86:0c:cb:48:6a:21:d1:
de:cf:8e:a2:ec:63:56:6b:c7:a6:de:fd:46:90:47:de:0a:87:
1a:80:d5:80:b0:3d:77:83:64:76:16:03:9d:dc:3e:b1:8d:02:
b3:5c:34:2d:39:31:7f:6a:9b:cd:1c:bb:f5:1f:41:3a:f4:56:
8b:23:9c:86:a3:8e:d4:e5:12:b8:91:6a:cb:19:2a:34:ad:46:
9d:b2:5f:f0:b5:f9:53:40:d2:1d:0e:eb:9a:2d:fb:51:e7:a2:
ca:5a:68:1d:69:4c:10:70:f1:d8:43:0b:7a:11:fc:84:bf:37:
a0:1f:37:e8:2b:bf:8f:51:a8:89:29:33:bd:30:c8:3f:40:05:
30:02:43:45:bb:3e:96:b9:08:2c:14:51:28:ec:3c:d0:34:29:
de:b6:a1:48:61:41:bb:72:ab:80:ea:44:d2:be:36:ec:c9:1a:
81:bd:24:7c:8b:67:46:ea:e7:95:56:7b:6c:bb:56:59:c5:15:
fd:a2:cd:6e:bc:24:8a:49:1f:07:2e:43:73:80:16:18:28:6f:
bd:f1:f6:4f:a8:ee:e5:b5:71:a9:74:33:55:5d:1a:17:90:76:
fc:37:b7:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:47:03 2025 by rpki-client