Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/a06a67-d4dc-458e-abe6-4bb1fd0375f2/1/bzU9GF_B600HBKS0qJD5i4tP74M.mft
File: bzU9GF_B600HBKS0qJD5i4tP74M.mft (raw, json)
Hash identifier: h8MyDWm6Xzla+eDRWw9Dk+uBLvvmRFQ4aoUMEtR4/rU=
Subject key identifier: 69:90:02:81:DC:BF:36:20:03:ED:41:87:F5:6B:32:2B:0A:57:47:50
Authority key identifier: 6F:35:3D:18:5F:C1:EB:4D:07:04:A4:B4:A8:90:F9:8B:8B:4F:EF:83
Certificate issuer: /CN=6f353d185fc1eb4d0704a4b4a890f98b8b4fef83
Certificate serial: 01962CAA1D4E0CF25A68BC66C26A97E93D05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzU9GF_B600HBKS0qJD5i4tP74M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/a06a67-d4dc-458e-abe6-4bb1fd0375f2/1/bzU9GF_B600HBKS0qJD5i4tP74M.mft
Manifest number: 130E
Signing time: Sun 13 Apr 2025 01:01:08 +0000
Manifest this update: Sun 13 Apr 2025 01:01:08 +0000
Manifest next update: Mon 14 Apr 2025 01:01:08 +0000
Files and hashes: 1: bzU9GF_B600HBKS0qJD5i4tP74M.crl (hash: WGkG7x+k4zo87qGTKzRNealIOmxoBMH/80osyj7/gfQ=)
2: gvsVSFz03ym6x4GX1RIpPiUYpbE.roa (hash: qMyunpUmf/QPIAP0ujJIHQg80YhQYSCuTZCFegCEJUA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/a06a67-d4dc-458e-abe6-4bb1fd0375f2/1/bzU9GF_B600HBKS0qJD5i4tP74M.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/a06a67-d4dc-458e-abe6-4bb1fd0375f2/1/bzU9GF_B600HBKS0qJD5i4tP74M.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzU9GF_B600HBKS0qJD5i4tP74M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 18:34:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2c:aa:1d:4e:0c:f2:5a:68:bc:66:c2:6a:97:e9:3d:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f353d185fc1eb4d0704a4b4a890f98b8b4fef83
Validity
Not Before: Apr 13 01:01:08 2025 GMT
Not After : Apr 14 01:01:08 2025 GMT
Subject: CN=69900281dcbf362003ed4187f56b322b0a574750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4a:bd:b6:b3:64:14:69:0b:79:63:63:da:ad:
ec:da:16:b9:91:de:62:01:1d:64:ea:19:d0:96:24:
e8:c8:e8:6e:1c:22:b9:d3:90:20:21:d8:22:f3:9c:
3a:2f:03:35:25:23:0e:54:38:48:06:a8:76:41:0a:
19:12:86:bd:ac:4c:7d:51:db:fd:2c:2a:24:fc:3d:
a1:66:24:bd:fe:84:a3:43:ee:b5:48:4c:3b:7c:2e:
fb:9b:04:b8:22:da:be:30:5c:67:14:54:fa:55:2d:
49:d7:6d:e0:af:1d:72:06:51:20:20:2d:05:0d:bd:
bd:67:16:9f:02:72:ca:58:d1:8b:0d:1a:e7:24:a6:
8c:5f:85:ee:c6:cc:d8:6d:98:4a:fc:61:fb:5f:ff:
44:44:1b:55:63:2d:67:28:ea:f7:f4:0c:ff:07:31:
1d:28:3f:71:b2:ff:37:a8:16:67:e4:10:32:a3:45:
1f:fa:e6:86:ab:40:65:94:30:66:2a:ef:7b:ce:5a:
73:4a:2d:34:aa:4c:e8:fd:e2:28:6f:dd:de:c5:b6:
2d:14:a8:e3:a4:dd:1d:c5:ea:fc:2a:f5:75:c2:1c:
b0:57:96:49:6b:8a:5f:ef:ff:f5:84:15:37:63:a2:
e6:72:e3:6e:8d:e6:4f:8c:5b:53:7d:70:d6:54:a6:
4e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:90:02:81:DC:BF:36:20:03:ED:41:87:F5:6B:32:2B:0A:57:47:50
X509v3 Authority Key Identifier:
keyid:6F:35:3D:18:5F:C1:EB:4D:07:04:A4:B4:A8:90:F9:8B:8B:4F:EF:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzU9GF_B600HBKS0qJD5i4tP74M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a06a67-d4dc-458e-abe6-4bb1fd0375f2/1/bzU9GF_B600HBKS0qJD5i4tP74M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a06a67-d4dc-458e-abe6-4bb1fd0375f2/1/bzU9GF_B600HBKS0qJD5i4tP74M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:95:a0:25:d6:5c:b9:ae:a7:77:ad:40:e2:6d:10:9e:3d:fb:
11:cb:5d:ed:f4:ca:9d:4f:e4:17:87:1f:0e:40:f1:07:cf:90:
70:37:02:82:62:3e:32:97:9b:83:b0:e3:c3:cf:a7:fb:a2:61:
c9:5d:49:89:ec:f5:f3:c3:08:ed:4b:9c:11:64:39:9f:eb:bd:
df:2d:7c:f5:b1:c4:68:ec:d5:ef:90:8f:10:19:1a:94:f8:4d:
41:ad:3b:64:08:be:22:85:08:d6:c2:d6:98:90:9e:43:70:3c:
e7:09:68:70:83:1d:e9:41:b4:3c:47:19:99:e2:42:31:e2:61:
22:0c:00:20:aa:02:6c:ff:58:91:e0:61:79:e0:f9:f2:3a:26:
1f:62:e6:ea:9a:cc:05:e7:f6:c5:e0:9f:02:d0:09:12:0d:81:
a6:96:f2:41:a5:a6:96:5e:c0:96:1a:95:7f:c3:03:ed:e2:e8:
05:3a:cf:a1:c3:16:46:84:db:2f:5d:91:be:65:23:08:c6:97:
c1:89:69:47:1d:2d:42:52:50:52:e0:ff:2e:dc:3d:3e:e2:3c:
e1:55:96:65:fc:7c:4c:d4:8d:0e:f0:f6:b1:c8:11:c0:e3:9a:
10:b4:a7:f9:8f:57:74:a3:f7:b6:a1:a7:b8:8e:65:7a:9f:a9:
b1:ce:7e:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 03:54:28 2025 by rpki-client