Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft
File: BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft (raw, json)
Hash identifier: oU/BZz1Tm9i7mndk1BRkHZIZCihLfO3AdGgFLE3J8wA=
Subject key identifier: FE:16:C7:49:58:FF:BD:92:9C:C8:E9:8F:43:74:89:24:45:FA:26:E1
Authority key identifier: 06:17:02:D2:C2:91:95:FA:0A:7D:B1:1E:E4:65:F0:C0:54:5D:17:09
Certificate issuer: /CN=061702d2c29195fa0a7db11ee465f0c0545d1709
Certificate serial: 01958BF226E3AA785E8880FBA3180C094CA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BhcC0sKRlfoKfbEe5GXwwFRdFwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft
Manifest number: 1495
Signing time: Wed 12 Mar 2025 20:00:57 +0000
Manifest this update: Wed 12 Mar 2025 20:00:57 +0000
Manifest next update: Thu 13 Mar 2025 20:00:57 +0000
Files and hashes: 1: BhcC0sKRlfoKfbEe5GXwwFRdFwk.crl (hash: RfcRtlafmgFI5l9zkkZGGvAs6n7l1/ga1HWAk25Ufp8=)
2: N7TBLk6ijg60Rw5drnJxmPzvOok.roa (hash: Gzj1MrzdxuXElz1N9UYhs6KigXCuOfoYMXiwL2fVYSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft
rsync://rpki.ripe.net/repository/DEFAULT/BhcC0sKRlfoKfbEe5GXwwFRdFwk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:f2:26:e3:aa:78:5e:88:80:fb:a3:18:0c:09:4c:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=061702d2c29195fa0a7db11ee465f0c0545d1709
Validity
Not Before: Mar 12 20:00:57 2025 GMT
Not After : Mar 13 20:00:57 2025 GMT
Subject: CN=fe16c74958ffbd929cc8e98f4374892445fa26e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ad:37:6b:67:b1:d9:11:4d:59:1a:28:53:90:
54:77:1a:ac:16:e8:2f:34:de:20:62:bb:82:38:ca:
c5:1f:f3:97:79:35:77:17:a1:f8:71:11:cc:3a:30:
62:78:ae:5c:db:87:c1:4b:9b:c9:23:dc:40:5c:b1:
39:9e:39:61:64:79:5e:c7:6c:1e:76:3e:42:2a:9b:
c7:e2:46:08:c7:67:eb:06:5e:35:ea:44:3e:be:4d:
2e:1c:98:63:e0:c1:64:e6:80:62:88:cc:af:d9:2a:
17:28:aa:5b:ec:84:33:5e:d3:6f:e5:fa:46:c0:22:
58:4b:80:b6:c5:d3:e4:df:2f:93:2d:fa:23:9e:a6:
82:a9:83:71:0e:41:83:e7:8c:ec:c9:5b:1a:25:ac:
ec:2b:68:72:18:7a:c2:7f:46:4f:2d:18:d5:09:a4:
74:4b:07:88:69:6a:e2:fb:18:99:6b:8e:69:e8:30:
b0:09:d6:6b:4e:64:3d:3b:38:be:4a:77:2c:bc:f2:
19:e8:6d:40:47:bb:72:e8:43:fb:06:a7:0c:62:99:
7d:b6:04:34:d3:02:8a:ec:be:b8:33:b1:88:13:95:
0c:1d:43:12:77:bd:b0:35:cc:4e:96:a7:da:91:b3:
29:3e:bf:1b:af:fe:2f:07:13:10:1c:61:8c:c2:a6:
1f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:16:C7:49:58:FF:BD:92:9C:C8:E9:8F:43:74:89:24:45:FA:26:E1
X509v3 Authority Key Identifier:
keyid:06:17:02:D2:C2:91:95:FA:0A:7D:B1:1E:E4:65:F0:C0:54:5D:17:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BhcC0sKRlfoKfbEe5GXwwFRdFwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:9c:91:55:e9:f8:94:d6:5c:e3:a3:56:da:e5:28:ee:ac:66:
dc:fc:2a:7c:7a:5f:61:0d:f9:e6:26:aa:63:af:82:c7:eb:6c:
d3:1d:df:00:69:a5:8f:4c:e2:21:98:14:fd:48:db:75:e9:79:
05:c1:d4:7a:b7:df:57:b3:e6:89:6a:3c:2b:5b:22:b9:5c:2d:
e3:a8:66:bd:70:84:b1:39:49:9e:01:2f:6c:b1:4a:31:28:68:
d8:3e:cd:14:8d:6d:d3:ba:94:1a:54:6a:df:0d:af:ac:b9:0f:
f9:3f:b2:e3:f5:0f:c4:f6:f5:54:4d:f2:74:38:1a:71:86:1c:
c1:a6:47:ea:5e:51:ef:b0:9d:3f:75:33:d5:c5:4f:fb:fd:ef:
c7:94:1a:a1:3f:da:98:59:d3:88:80:17:dd:e3:ad:ac:b2:6b:
42:b0:c4:98:44:aa:65:03:ab:27:a4:b8:7c:f9:3a:1b:fd:08:
91:63:ac:b7:25:d5:ee:76:de:53:00:a0:8e:b6:d9:c7:48:58:
d7:f9:1c:dc:c8:21:7b:0c:b2:5a:c6:ba:0b:ca:00:94:e4:8b:
ca:06:65:61:c1:ae:9b:13:b9:b6:c5:f8:50:84:3e:8e:3a:20:
e5:fe:49:39:3b:79:cd:39:9f:ab:18:e2:94:17:53:e3:ff:63:
e2:33:f7:52
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWL8ibjqnheiID7oxgMCUypMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2MTcwMmQyYzI5MTk1ZmEwYTdkYjExZWU0NjVmMGMwNTQ1
ZDE3MDkwHhcNMjUwMzEyMjAwMDU3WhcNMjUwMzEzMjAwMDU3WjAzMTEwLwYDVQQD
EyhmZTE2Yzc0OTU4ZmZiZDkyOWNjOGU5OGY0Mzc0ODkyNDQ1ZmEyNmUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoq03a2ex2RFNWRooU5BUdxqsFugv
NN4gYruCOMrFH/OXeTV3F6H4cRHMOjBieK5c24fBS5vJI9xAXLE5njlhZHlex2we
dj5CKpvH4kYIx2frBl416kQ+vk0uHJhj4MFk5oBiiMyv2SoXKKpb7IQzXtNv5fpG
wCJYS4C2xdPk3y+TLfojnqaCqYNxDkGD54zsyVsaJazsK2hyGHrCf0ZPLRjVCaR0
SweIaWri+xiZa45p6DCwCdZrTmQ9Ozi+SncsvPIZ6G1AR7ty6EP7BqcMYpl9tgQ0
0wKK7L64M7GIE5UMHUMSd72wNcxOlqfakbMpPr8br/4vBxMQHGGMwqYfswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP4Wx0lY/72SnMjpj0N0iSRF+ibhMB8GA1UdIwQY
MBaAFAYXAtLCkZX6Cn2xHuRl8MBUXRcJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmhjQzBzS1JsZm9LZmJFZTVHWHd3RlJkRndrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS8wMGIyOGItY2M3Mi00NDA2LWI2ZDgt
NGM1MWM2Nzk3YzFmLzEvQmhjQzBzS1JsZm9LZmJFZTVHWHd3RlJkRndrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS8wMGIyOGItY2M3Mi00NDA2LWI2ZDgtNGM1MWM2Nzk3YzFm
LzEvQmhjQzBzS1JsZm9LZmJFZTVHWHd3RlJkRndrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABpyRVen4
lNZc46NW2uUo7qxm3PwqfHpfYQ355iaqY6+Cx+ts0x3fAGmlj0ziIZgU/Ujbdel5
BcHUerffV7PmiWo8K1siuVwt46hmvXCEsTlJngEvbLFKMSho2D7NFI1t07qUGlRq
3w2vrLkP+T+y4/UPxPb1VE3ydDgacYYcwaZH6l5R77CdP3Uz1cVP+/3vx5QaoT/a
mFnTiIAX3eOtrLJrQrDEmESqZQOrJ6S4fPk6G/0IkWOstyXV7nbeUwCgjrbZx0hY
1/kc3MghewyyWsa6C8oAlOSLygZlYcGumxO5tsX4UIQ+jjog5f5JOTt5zTmfqxji
lBdT4/9j4jP3Ug==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:02 2025 by rpki-client