Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft
File: BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft (raw, json)
Hash identifier: p+/9bBybH2PNBKeCGgV2alE1ZgT7LDPVuKgIrKlajmk=
Subject key identifier: 0D:44:02:57:4E:CE:B4:F0:2C:4C:58:D5:5E:D3:BA:14:51:B1:BB:A3
Authority key identifier: 06:17:02:D2:C2:91:95:FA:0A:7D:B1:1E:E4:65:F0:C0:54:5D:17:09
Certificate issuer: /CN=061702d2c29195fa0a7db11ee465f0c0545d1709
Certificate serial: 019650ECCAE63D2B2C4C2F3CDE524A4E53A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BhcC0sKRlfoKfbEe5GXwwFRdFwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft
Manifest number: 14FB
Signing time: Sun 20 Apr 2025 02:00:17 +0000
Manifest this update: Sun 20 Apr 2025 02:00:17 +0000
Manifest next update: Mon 21 Apr 2025 02:00:17 +0000
Files and hashes: 1: BhcC0sKRlfoKfbEe5GXwwFRdFwk.crl (hash: IYaj3ca28b4hdYE1oRXEBSNVulPOWOgyi2q4zxnWb5Q=)
2: N7TBLk6ijg60Rw5drnJxmPzvOok.roa (hash: Gzj1MrzdxuXElz1N9UYhs6KigXCuOfoYMXiwL2fVYSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft
rsync://rpki.ripe.net/repository/DEFAULT/BhcC0sKRlfoKfbEe5GXwwFRdFwk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:ec:ca:e6:3d:2b:2c:4c:2f:3c:de:52:4a:4e:53:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=061702d2c29195fa0a7db11ee465f0c0545d1709
Validity
Not Before: Apr 20 02:00:17 2025 GMT
Not After : Apr 21 02:00:17 2025 GMT
Subject: CN=0d4402574eceb4f02c4c58d55ed3ba1451b1bba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a0:6f:a3:8b:d9:3d:22:ba:8f:11:ca:ab:6d:
6b:90:7b:6f:dd:fb:c6:6b:b2:e9:b7:db:79:75:2b:
23:2a:cb:0a:1f:39:d9:54:9b:4e:eb:e4:d8:85:61:
e8:bf:b5:1a:46:04:dc:89:0f:a6:3a:1a:f4:5e:52:
95:42:58:3e:0c:cd:66:ef:2e:de:41:8d:c9:d4:f2:
d0:df:98:d8:f4:50:b7:1f:fc:91:69:22:20:c5:09:
99:52:9b:e2:c8:67:24:13:07:bd:7e:53:04:a6:0a:
1d:54:87:71:bd:a7:8c:3a:02:40:49:63:fe:cd:b3:
a7:1d:06:42:7b:a8:e8:f3:62:8d:28:db:e7:d1:e1:
79:1e:d9:0b:64:93:3e:3b:b7:12:21:35:25:5b:7b:
ac:e0:fa:1d:46:26:c0:ab:07:b6:b0:7f:17:32:95:
22:ef:c5:be:25:5c:02:fe:04:d5:e5:7f:a2:06:51:
23:93:1e:2e:c5:fe:38:6d:2e:a8:d2:f3:99:fa:94:
e9:6a:56:21:a6:8d:90:9d:dc:de:86:41:42:be:91:
77:59:e0:1a:85:1e:47:96:69:9e:be:be:a2:b3:e6:
12:b7:24:75:34:ad:17:5c:3f:1c:ba:f5:e3:90:ef:
32:59:7c:a0:62:f4:8e:3b:da:2f:dc:f2:5d:9a:fc:
db:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:44:02:57:4E:CE:B4:F0:2C:4C:58:D5:5E:D3:BA:14:51:B1:BB:A3
X509v3 Authority Key Identifier:
keyid:06:17:02:D2:C2:91:95:FA:0A:7D:B1:1E:E4:65:F0:C0:54:5D:17:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BhcC0sKRlfoKfbEe5GXwwFRdFwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:a4:f6:6e:19:1b:50:da:8a:d8:23:63:95:5a:2a:e3:d3:19:
b2:d0:53:d7:2f:48:6e:01:e6:50:aa:87:94:00:75:62:1a:97:
fd:99:0c:42:ac:cb:0a:4d:1d:ce:e7:eb:89:cf:6e:d2:89:14:
01:13:10:15:be:a2:b9:c0:6a:39:a7:ce:6d:c4:6c:88:b9:bf:
80:a7:70:62:d7:23:e2:8b:4b:c7:ba:f2:bd:fe:a3:d8:36:3d:
76:b6:e1:7f:1e:79:aa:a1:ed:b4:c1:66:31:29:77:02:d0:ea:
f0:82:c5:a3:1f:92:54:f6:e4:52:3f:79:6e:07:d1:e3:95:85:
83:ab:eb:17:25:72:9e:3e:a5:aa:e2:9e:9e:4c:d9:98:c3:76:
8f:6e:91:05:48:0f:73:2a:57:23:6a:b8:94:c0:42:45:44:3c:
db:47:7c:d8:0d:df:b4:54:4b:5d:a0:27:46:a0:2b:b0:0c:de:
75:8d:ff:04:2b:4d:b1:4d:c1:f5:66:c5:4f:a0:c6:8b:bc:83:
af:5c:67:03:d2:fb:6c:5b:f8:68:42:8e:4c:d1:1f:7f:ab:54:
cf:8c:be:c9:cc:6c:02:e1:66:51:61:92:af:44:e6:7e:e1:b1:
86:37:b0:7e:27:51:34:a9:88:45:e6:b3:4d:84:8f:5d:60:41:
d3:34:cb:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:14:42 2025 by rpki-client