Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
File: bNmlABXpaTdlb8DKW21WXkWb02A.mft (raw, json)
Hash identifier: j9UVA8sqFO/40iMo+ueZj06uiPzUXHyfgT20j1O/GDQ=
Subject key identifier: 5D:06:1D:3C:D7:4E:E8:E0:9C:29:DB:C6:3F:38:4D:BF:3D:67:CD:D3
Authority key identifier: 6C:D9:A5:00:15:E9:69:37:65:6F:C0:CA:5B:6D:56:5E:45:9B:D3:60
Certificate issuer: /CN=6cd9a50015e96937656fc0ca5b6d565e459bd360
Certificate serial: 0197469E8BBA9DC5E793A8920C3849AFB67A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
Manifest number: 1579
Signing time: Fri 06 Jun 2025 19:01:24 +0000
Manifest this update: Fri 06 Jun 2025 19:01:24 +0000
Manifest next update: Sat 07 Jun 2025 19:01:24 +0000
Files and hashes: 1: bNmlABXpaTdlb8DKW21WXkWb02A.crl (hash: wvsB2g0NREwGOXlfnPHubWO2LGwD6j+0obC3dYh/36A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:8b:ba:9d:c5:e7:93:a8:92:0c:38:49:af:b6:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd9a50015e96937656fc0ca5b6d565e459bd360
Validity
Not Before: Jun 6 19:01:24 2025 GMT
Not After : Jun 7 19:01:24 2025 GMT
Subject: CN=5d061d3cd74ee8e09c29dbc63f384dbf3d67cdd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9b:23:96:e9:e4:0f:cc:21:81:49:fc:32:5c:
98:a9:ea:80:81:61:f8:dc:01:e2:a3:8e:79:a6:36:
83:4d:77:39:92:26:26:48:49:da:80:9c:fe:60:be:
f0:70:c0:f0:68:00:c7:44:2d:74:9b:a7:2f:3c:77:
87:15:0f:35:5e:f3:94:cd:d2:82:db:d8:c8:e7:51:
5e:ea:2c:61:92:65:c1:62:c1:b8:5b:97:37:4e:16:
be:17:ec:6d:0f:e9:09:8b:64:72:56:cf:53:87:db:
6e:c3:09:0d:81:fc:fb:bd:5b:b6:e4:6f:34:29:dd:
1a:df:0e:cd:1e:3d:ca:b8:e6:12:ff:a0:e4:31:78:
d8:e6:10:e5:b1:7b:69:3f:6a:82:03:9e:14:49:5d:
e4:89:a1:f0:d7:28:bc:2b:ec:d9:db:d5:68:86:a1:
13:fa:ec:aa:fd:c8:a4:57:2e:87:ec:5c:79:61:8d:
09:0a:cc:df:55:a7:f8:e0:cc:59:1a:95:84:ef:30:
c0:e1:43:f2:ea:25:c2:87:a2:03:3a:49:c9:46:15:
c0:33:33:4e:9f:0f:26:c9:fd:55:ca:df:79:bc:1a:
10:35:32:97:6e:59:04:7c:9d:82:72:53:55:19:ce:
9c:79:11:76:d3:28:21:8d:ae:08:7d:ac:27:92:e4:
95:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:06:1D:3C:D7:4E:E8:E0:9C:29:DB:C6:3F:38:4D:BF:3D:67:CD:D3
X509v3 Authority Key Identifier:
keyid:6C:D9:A5:00:15:E9:69:37:65:6F:C0:CA:5B:6D:56:5E:45:9B:D3:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:1d:4f:e8:ee:e5:f1:44:79:21:13:65:fa:fb:20:ca:0a:e9:
ed:a1:06:b9:e4:f0:be:c0:fb:34:72:c2:ee:c6:47:91:a7:22:
2c:51:1e:2b:2f:59:d6:46:6c:49:4f:38:ef:aa:d1:71:5c:5a:
0e:c5:7f:d5:b2:f9:28:3e:a3:61:27:b1:97:f8:fd:c6:d6:f2:
1b:89:f8:f6:7f:d8:df:5a:33:86:77:d1:ae:b3:7e:11:f9:18:
3b:8e:24:91:48:11:8d:f1:84:f2:14:a2:60:05:0c:e8:e4:9c:
17:2b:c8:b6:7d:d3:df:85:8e:b7:85:7b:91:53:62:37:7a:fa:
22:e6:4e:46:0e:c2:03:cd:9a:84:67:ba:e4:3d:cf:4e:6b:e9:
6d:1a:6d:54:98:3f:f7:d6:aa:a1:41:6c:8b:f4:26:b6:8a:0b:
6e:c7:26:e6:44:3d:33:ba:9a:98:cb:08:99:ea:bb:c6:77:c8:
e9:e1:c3:03:fb:5f:25:62:77:50:5e:93:b6:08:7f:48:1c:22:
ba:92:32:3e:5e:18:db:45:bf:48:27:b4:eb:c4:8d:18:48:7e:
fa:05:18:06:f6:9e:f3:a8:47:43:75:aa:e6:e8:40:7b:b9:fb:
4f:24:84:6d:50:4b:04:c1:c8:a7:9a:69:a0:86:56:09:2e:6b:
ef:8c:a6:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:10:25 2025 by rpki-client