Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft
File: BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft (raw, json)
Hash identifier: 73KSVC2YSh1bEngQZuwXsaY8KFr+RZkcOedZ+4/Wl2g=
Subject key identifier: 89:B5:53:3C:87:AA:B0:49:A0:6C:67:66:A6:F4:52:30:B8:03:F6:ED
Authority key identifier: 06:17:02:D2:C2:91:95:FA:0A:7D:B1:1E:E4:65:F0:C0:54:5D:17:09
Certificate issuer: /CN=061702d2c29195fa0a7db11ee465f0c0545d1709
Certificate serial: 019746300E23FEE58667AFC9A4677DD9FF01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BhcC0sKRlfoKfbEe5GXwwFRdFwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft
Manifest number: 157A
Signing time: Fri 06 Jun 2025 17:00:43 +0000
Manifest this update: Fri 06 Jun 2025 17:00:43 +0000
Manifest next update: Sat 07 Jun 2025 17:00:43 +0000
Files and hashes: 1: BhcC0sKRlfoKfbEe5GXwwFRdFwk.crl (hash: 10/1P7sipMbrn2VwS5b6WPGBMVgH4WdaCck+bxX91Z4=)
2: N7TBLk6ijg60Rw5drnJxmPzvOok.roa (hash: Gzj1MrzdxuXElz1N9UYhs6KigXCuOfoYMXiwL2fVYSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft
rsync://rpki.ripe.net/repository/DEFAULT/BhcC0sKRlfoKfbEe5GXwwFRdFwk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:0e:23:fe:e5:86:67:af:c9:a4:67:7d:d9:ff:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=061702d2c29195fa0a7db11ee465f0c0545d1709
Validity
Not Before: Jun 6 17:00:43 2025 GMT
Not After : Jun 7 17:00:43 2025 GMT
Subject: CN=89b5533c87aab049a06c6766a6f45230b803f6ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:c5:6f:07:17:67:9a:f9:49:3f:8e:75:e1:07:
db:5e:6b:07:47:3f:e8:01:6e:17:87:82:2e:f1:42:
13:57:2b:fb:86:53:38:26:65:ce:7c:7f:3d:d1:42:
60:d9:02:88:73:7e:a5:be:17:45:22:53:dd:5f:c8:
6a:82:b3:80:0a:07:9f:b4:f4:e4:68:fb:18:4b:d2:
96:ca:7b:d1:69:60:cf:ad:5e:c9:92:8b:6a:9b:0e:
81:32:36:15:6e:5a:ca:d4:e2:0f:2f:f2:7c:aa:17:
8d:83:71:10:79:05:89:e9:77:47:37:d1:6c:93:6b:
cb:4f:f6:73:be:38:8b:1d:43:87:9c:6b:df:31:75:
5c:68:8d:5f:99:45:ab:b0:d9:c9:51:b1:af:04:26:
d4:c2:a9:e2:82:62:c2:39:20:ef:23:7d:43:b2:65:
6a:a5:4e:ae:d2:17:88:f5:f2:a0:65:4e:0f:7e:63:
16:f3:56:8d:c9:56:e6:5f:b9:70:63:f4:0c:da:24:
c1:b4:55:7c:5b:1c:1d:1d:67:28:b3:9e:2e:d8:71:
c8:65:bb:19:21:35:35:61:b6:9d:56:71:bb:e8:ea:
bd:08:45:ca:01:78:d5:c4:db:7a:3c:04:69:23:97:
51:ff:5a:5d:e4:f5:11:44:8b:24:0c:70:d3:4e:e4:
5e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B5:53:3C:87:AA:B0:49:A0:6C:67:66:A6:F4:52:30:B8:03:F6:ED
X509v3 Authority Key Identifier:
keyid:06:17:02:D2:C2:91:95:FA:0A:7D:B1:1E:E4:65:F0:C0:54:5D:17:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BhcC0sKRlfoKfbEe5GXwwFRdFwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:6d:63:ed:a9:78:31:a8:df:a7:dc:a4:3c:25:3a:78:07:c2:
93:ed:27:72:bf:b3:a9:b7:3f:f9:cd:26:c1:45:bb:ad:58:b6:
ad:3d:c6:66:e0:a9:16:d5:61:fc:cb:b5:00:b2:50:f6:7a:39:
65:07:c2:67:ca:b3:7e:ca:bf:59:51:4d:d0:51:88:39:08:59:
19:4d:7e:38:8f:44:ab:3d:4e:c3:6a:1f:7d:c9:71:c6:2d:2a:
bf:b0:ec:2f:a8:64:c2:69:c5:6b:44:38:ff:d1:f8:cf:4a:11:
14:4c:e8:7e:66:3a:28:de:b1:65:18:00:22:33:47:cc:9d:99:
dc:08:c3:62:85:80:d6:d1:03:88:d2:63:9b:0c:0f:51:eb:f5:
65:89:1a:3e:c2:e7:69:35:de:36:b1:a0:91:4b:34:09:19:3e:
d5:9e:11:a5:7a:88:da:81:57:86:28:1d:b3:77:95:3f:84:d2:
cc:66:df:f7:f4:23:8c:4f:7d:c2:47:8a:25:87:24:a7:91:5a:
ca:f3:7f:75:22:f0:6f:3b:35:59:7c:b1:10:5f:2f:ee:86:a4:
55:87:12:ca:48:d1:ea:5b:87:97:12:af:2b:08:96:0a:e3:cf:
b9:ba:36:f9:cd:5c:54:fb:9c:ae:c7:fc:1e:0a:a8:f0:83:fc:
a3:16:0e:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:54:17 2025 by rpki-client