Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
File: bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft (raw, json)
Hash identifier: UoweivRROyotgYIaXTbbPHxg3cZGWCSY9s4mE2TwgQo=
Subject key identifier: D0:7A:E9:80:77:39:2E:B0:F0:ED:EA:F8:34:83:25:CF:C6:04:6C:F7
Authority key identifier: 6D:F2:93:21:2D:25:D4:86:3E:38:6B:9C:48:0D:DC:9B:E7:38:12:4F
Certificate issuer: /CN=6df293212d25d4863e386b9c480ddc9be738124f
Certificate serial: 019752D8CE046C83FB62BB7528A1FB2DF33F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
Manifest number: 1514
Signing time: Mon 09 Jun 2025 04:00:29 +0000
Manifest this update: Mon 09 Jun 2025 04:00:29 +0000
Manifest next update: Tue 10 Jun 2025 04:00:29 +0000
Files and hashes: 1: HoMgEifDpVQ65AHqBFCCx_7uMoE.roa (hash: MZgT/uxhPiKd1q/F+OrFW0KnU1po9n7PWWPZxZXmYvg=)
2: bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl (hash: zwh0tE6CRId0BAAvFBIa/M3JxE1PaucZHS808aXTG64=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:d8:ce:04:6c:83:fb:62:bb:75:28:a1:fb:2d:f3:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df293212d25d4863e386b9c480ddc9be738124f
Validity
Not Before: Jun 9 04:00:29 2025 GMT
Not After : Jun 10 04:00:29 2025 GMT
Subject: CN=d07ae98077392eb0f0edeaf8348325cfc6046cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f5:83:1f:03:54:f7:86:3d:b9:cf:e1:b0:ce:
28:12:37:c6:94:78:be:61:ce:42:1f:82:d3:6f:6e:
00:3c:61:a9:8b:86:67:3c:cb:3d:85:6e:59:8b:d2:
6a:9b:12:dd:ec:a3:35:74:86:b8:04:e4:c1:69:8b:
d4:ea:3e:25:b9:8f:a9:48:25:38:54:88:e4:8c:69:
8d:8b:ce:cf:03:2f:4a:c9:93:10:0b:69:2a:5d:c8:
b5:99:0f:0c:02:15:4a:26:b5:50:be:89:91:45:e9:
96:87:ca:d6:77:8b:cc:c3:24:eb:6f:7e:92:06:bf:
16:95:f7:f6:90:bd:ea:a0:84:e5:44:a3:b2:88:54:
a2:4b:70:8e:8f:82:6f:db:7d:65:bb:d8:dd:eb:ec:
b6:c7:63:9f:e7:19:27:5e:8d:69:d2:84:23:e0:26:
dd:50:37:7a:01:c5:18:39:96:77:4a:42:f5:0c:34:
0b:2a:38:bd:b4:c5:ec:a9:23:28:e4:c2:d4:3b:c8:
0b:8a:ba:0b:a6:13:1f:fd:7f:00:06:e5:8d:e9:62:
b9:10:85:f4:9b:99:ec:07:e0:e6:09:a1:fa:a9:97:
57:2c:99:dc:1c:b4:1e:6f:7c:e7:d8:55:ae:a8:56:
7b:b6:98:dc:02:87:65:89:4e:51:49:23:60:04:e6:
29:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:7A:E9:80:77:39:2E:B0:F0:ED:EA:F8:34:83:25:CF:C6:04:6C:F7
X509v3 Authority Key Identifier:
keyid:6D:F2:93:21:2D:25:D4:86:3E:38:6B:9C:48:0D:DC:9B:E7:38:12:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:38:0c:c7:97:8e:f6:e6:2c:33:e7:00:51:a8:53:f0:a1:b4:
10:0e:5f:26:ac:b6:03:9b:f6:22:3b:da:11:52:a5:11:ff:da:
a0:67:b8:ee:7c:fc:18:39:b5:02:6e:fb:f9:15:49:25:36:88:
e4:1d:6e:7a:81:14:e4:3e:12:a6:58:0e:d9:80:05:48:b4:9e:
69:59:ce:28:db:bc:7f:ea:e8:f4:8e:81:62:95:b5:b1:92:06:
17:94:82:04:69:9f:2a:0b:da:c7:b1:7f:ce:f4:b0:99:73:91:
ef:f7:ad:55:3e:49:c7:f5:75:05:70:ff:56:59:6e:f0:48:2f:
ff:8a:bc:a1:9f:58:73:58:94:b7:9c:10:5b:72:32:03:e1:1c:
66:a2:e1:3e:3e:1d:86:6b:e4:b8:da:40:7d:bb:00:78:1d:6c:
61:39:bd:a9:53:26:88:c7:e6:71:9a:cb:e4:02:5a:79:a6:e7:
6a:07:96:68:56:0e:3a:31:1e:b2:34:17:a0:44:c0:09:23:d6:
26:2e:18:11:f7:4f:18:f4:32:00:e4:94:7f:32:7b:ce:28:4e:
44:87:2a:04:15:6b:83:a6:7e:2e:ea:66:89:0d:91:2e:1b:c5:
17:3c:80:60:d0:21:82:7e:88:23:c1:75:d4:7b:5d:0f:7b:6f:
60:8c:33:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 07:26:07 2025 by rpki-client