Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
File: BkizODOZAP9_O1myRtJNJofGNnw.mft (raw, json)
Hash identifier: qWoKNQO1UwEMbWIscz/DiVxqr4x+tHbIx9S9QrosjLg=
Subject key identifier: A9:A4:4E:8C:F4:88:3E:B0:CD:FE:0E:45:CF:A4:B9:26:6B:4D:C1:23
Authority key identifier: 06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
Certificate issuer: /CN=0648b338339900ff7f3b59b246d24d2687c6367c
Certificate serial: 0196512446D48F159738E5AB7E19B59A8C23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
Manifest number: 7B
Signing time: Sun 20 Apr 2025 03:00:53 +0000
Manifest this update: Sun 20 Apr 2025 03:00:53 +0000
Manifest next update: Mon 21 Apr 2025 03:00:53 +0000
Files and hashes: 1: BkizODOZAP9_O1myRtJNJofGNnw.crl (hash: PohZGnAOrCgriKpMVB1fPmiQH4gDuKepEZ3qasOGATU=)
2: pO5jZKPZtKc7LFh2B3gUF2ssV3Y.roa (hash: rDX32rjjFQPeFJLlsJ7HQ9El7VqEOXBlwYtku8n7ZJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:24:46:d4:8f:15:97:38:e5:ab:7e:19:b5:9a:8c:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0648b338339900ff7f3b59b246d24d2687c6367c
Validity
Not Before: Apr 20 03:00:53 2025 GMT
Not After : Apr 21 03:00:53 2025 GMT
Subject: CN=a9a44e8cf4883eb0cdfe0e45cfa4b9266b4dc123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:dc:8c:00:ee:c7:06:8f:2d:ac:61:e6:b7:b7:
b6:d7:41:fa:53:61:68:14:89:aa:e0:85:56:20:7a:
af:18:a5:f1:d2:9d:eb:30:98:f6:8c:d6:38:0b:70:
fc:1d:2e:e8:74:e9:61:5b:f8:b8:41:e3:5f:88:d4:
e1:22:2b:50:91:39:39:02:89:76:32:5c:d3:58:8f:
f6:79:21:90:d7:1b:72:4f:4a:3f:4e:c7:2f:3c:bf:
f8:59:b2:a8:3f:1f:bb:91:7f:b6:4f:9c:78:43:e8:
2c:1d:34:72:7b:0e:7f:55:04:1c:5c:8f:89:9e:72:
e1:87:af:e7:db:c2:4d:32:6e:11:24:18:b7:15:e7:
50:a2:1d:0a:04:69:89:95:fd:65:e4:0f:24:bf:ab:
05:b0:3b:01:7a:a8:d9:d9:0c:8c:cf:e7:d6:9b:35:
38:d2:ca:30:c7:08:94:bf:5b:df:28:68:82:b9:24:
56:62:8b:96:3a:cc:43:30:20:7e:e0:0a:64:c5:a4:
e5:81:02:cc:75:5d:82:1f:80:04:d3:56:4e:15:0b:
3f:4d:6d:3b:a3:84:33:d3:44:db:39:1f:98:78:1b:
72:e3:ab:66:c7:38:60:c6:8d:dd:43:b7:58:e5:b7:
2a:88:74:9c:2c:c9:f2:1d:01:e0:00:77:7c:97:0f:
50:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:A4:4E:8C:F4:88:3E:B0:CD:FE:0E:45:CF:A4:B9:26:6B:4D:C1:23
X509v3 Authority Key Identifier:
keyid:06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:b2:9b:c1:c6:41:df:38:92:1e:5c:f5:60:a2:a1:59:5f:a3:
18:29:0e:c8:d5:a3:dc:0b:c9:8e:c8:3f:f8:2a:12:f8:1d:eb:
ed:77:f2:df:07:2f:44:79:3c:bf:f8:d2:1c:0c:ee:89:43:ff:
f9:28:f7:15:64:6e:ec:87:26:ce:3c:1e:b0:30:96:35:51:7a:
83:d8:4c:00:c9:5c:d0:0b:75:08:4d:62:4d:0c:62:61:de:a7:
c9:69:00:81:e3:c4:97:85:fd:a0:14:8f:f9:54:e2:a5:5d:d6:
39:2e:31:61:28:58:56:32:29:1b:34:7c:24:f7:19:b9:bc:02:
1d:54:a4:ac:4e:e1:57:c3:65:77:eb:f7:71:41:4d:33:30:f0:
de:aa:0e:30:8c:0d:18:fa:93:cf:88:0f:17:e0:22:60:7c:ac:
c9:39:66:52:78:6d:18:df:90:4f:97:ed:1f:24:74:e9:4e:31:
af:c8:e5:03:aa:49:43:a8:87:30:bc:ee:41:e6:fe:c2:66:5e:
22:23:5d:cc:25:a4:8b:e9:de:6d:f8:6f:4e:47:59:65:4d:ab:
b7:d5:6d:92:a6:23:6e:0a:bc:04:ff:fd:52:cd:64:30:aa:8b:
6b:21:0b:0f:3a:bf:a5:49:30:fd:9a:cf:33:f1:0c:f4:fc:2d:
58:43:ad:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:00:58 2025 by rpki-client