Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft
File: BgOecctxUgSoPMJTgi3CmmLHmeY.mft (raw, json)
Hash identifier: 0TjOXMgbVEq2rUn+y/fybFOaCJd0WGOYY6TVlammMfg=
Subject key identifier: E8:CA:DD:47:1F:AA:BC:B5:61:09:4C:AE:C7:7E:6A:76:AD:43:BC:39
Authority key identifier: 06:03:9E:71:CB:71:52:04:A8:3C:C2:53:82:2D:C2:9A:62:C7:99:E6
Certificate issuer: /CN=06039e71cb715204a83cc253822dc29a62c799e6
Certificate serial: 0195127E1940BC5B907E0FE8A20766D58A32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft
Manifest number: 0568
Signing time: Mon 17 Feb 2025 06:00:08 +0000
Manifest this update: Mon 17 Feb 2025 06:00:08 +0000
Manifest next update: Tue 18 Feb 2025 06:00:08 +0000
Files and hashes: 1: AzSimOOUCBaH0nGWbesdL3p-c-Y.roa (hash: tmnAHG5c86gcxksbrSaGyYNVU434mmJFa3fZgdZ+AZw=)
2: BgOecctxUgSoPMJTgi3CmmLHmeY.crl (hash: K2rDjpFC4Kz/k6xRLXGLiguLbyNJVJYLhVXayoKcpyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:19:40:bc:5b:90:7e:0f:e8:a2:07:66:d5:8a:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06039e71cb715204a83cc253822dc29a62c799e6
Validity
Not Before: Feb 17 06:00:08 2025 GMT
Not After : Feb 18 06:00:08 2025 GMT
Subject: CN=e8cadd471faabcb561094caec77e6a76ad43bc39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cc:6c:df:2c:70:8f:29:cc:04:53:78:1e:b9:
72:ec:71:e6:95:7d:f5:06:0e:bc:81:89:68:33:c6:
32:fa:53:33:ce:1f:ef:92:4f:d0:a1:a2:d3:00:c1:
ef:1e:a7:3e:66:da:f2:b9:0d:d3:a6:ca:74:b5:cc:
8e:da:1e:bb:55:4d:7a:32:51:52:b3:21:43:30:d9:
42:73:7d:cc:af:d3:07:7e:d0:33:04:2c:cf:3f:ac:
9b:45:33:d0:60:92:c6:07:98:ba:c8:7c:93:9f:9c:
7f:8a:39:8f:30:19:17:39:69:ae:cc:80:06:fb:73:
43:c3:08:0d:93:9a:b6:88:bc:2d:bc:70:1f:04:36:
21:ff:f5:ae:68:3a:63:5d:54:d8:5e:de:95:36:62:
e0:d8:10:85:3b:c6:1c:85:77:45:97:66:e3:78:3b:
64:b7:55:61:19:90:48:99:45:16:a5:b6:c4:9c:8a:
5c:5a:ca:83:89:5f:18:2e:da:b7:47:53:6d:06:23:
1f:99:bd:8d:9b:40:7d:71:78:0f:31:cb:bd:dc:06:
88:69:60:de:f1:56:e1:6d:f2:14:a0:3b:f0:2f:81:
89:ac:50:c9:4a:ac:e1:d4:7d:4e:df:65:51:a5:ee:
a0:cb:d2:8f:fc:32:0b:ec:f6:87:6c:24:94:74:7e:
24:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:CA:DD:47:1F:AA:BC:B5:61:09:4C:AE:C7:7E:6A:76:AD:43:BC:39
X509v3 Authority Key Identifier:
keyid:06:03:9E:71:CB:71:52:04:A8:3C:C2:53:82:2D:C2:9A:62:C7:99:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:b4:ab:da:1d:94:4f:bd:11:08:06:4f:d8:5e:df:6e:55:cd:
a1:fa:ec:d1:d9:bd:bc:9e:d0:80:4b:d5:b8:94:ef:21:6f:2d:
78:4b:23:32:6b:da:0d:f7:ab:43:7e:89:ef:86:a2:91:35:b8:
b3:85:70:e1:6d:be:d4:57:d7:4e:b1:12:30:03:37:23:62:68:
2b:b4:79:3e:b9:8e:cf:72:cc:f8:6c:f7:e7:90:ee:b6:7a:29:
b2:bc:67:2c:de:63:9e:4c:fc:8e:14:98:7a:e4:72:11:71:5e:
f5:d5:10:fd:6c:4b:55:07:14:5e:44:49:6a:4e:64:5b:47:9f:
2e:41:99:11:71:f2:72:93:82:02:d3:0e:ae:89:94:d2:39:84:
9a:ca:f3:92:be:b7:f7:d2:df:66:fb:3c:b9:9d:71:f7:82:87:
d9:a7:3d:75:5a:fe:57:6b:a7:8b:44:af:2f:14:7f:23:56:a4:
f7:fa:64:3f:6e:cf:ba:e0:35:a6:a0:7d:25:77:69:ac:82:9f:
5d:dd:02:9f:02:2e:22:bf:85:8a:e8:27:c1:ad:5a:5c:8a:6b:
91:6e:29:24:41:95:29:7a:5a:65:a7:23:d1:bc:06:3e:12:e0:
a1:f0:3f:b1:ae:2a:21:77:c3:00:d4:62:3f:66:53:a0:b0:9b:
00:a2:c6:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUSfhlAvFuQfg/oogdm1YoyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2MDM5ZTcxY2I3MTUyMDRhODNjYzI1MzgyMmRjMjlhNjJj
Nzk5ZTYwHhcNMjUwMjE3MDYwMDA4WhcNMjUwMjE4MDYwMDA4WjAzMTEwLwYDVQQD
EyhlOGNhZGQ0NzFmYWFiY2I1NjEwOTRjYWVjNzdlNmE3NmFkNDNiYzM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAucxs3yxwjynMBFN4Hrly7HHmlX31
Bg68gYloM8Yy+lMzzh/vkk/QoaLTAMHvHqc+ZtryuQ3Tpsp0tcyO2h67VU16MlFS
syFDMNlCc33Mr9MHftAzBCzPP6ybRTPQYJLGB5i6yHyTn5x/ijmPMBkXOWmuzIAG
+3NDwwgNk5q2iLwtvHAfBDYh//WuaDpjXVTYXt6VNmLg2BCFO8YchXdFl2bjeDtk
t1VhGZBImUUWpbbEnIpcWsqDiV8YLtq3R1NtBiMfmb2Nm0B9cXgPMcu93AaIaWDe
8VbhbfIUoDvwL4GJrFDJSqzh1H1O32VRpe6gy9KP/DIL7PaHbCSUdH4k1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOjK3Ucfqry1YQlMrsd+anatQ7w5MB8GA1UdIwQY
MBaAFAYDnnHLcVIEqDzCU4Itwppix5nmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmdPZWNjdHhVZ1NvUE1KVGdpM0NtbUxIbWVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9lNjI4NzktMmM2OS00MGMzLWIxMTYt
MGU0Njg3NWQ0NWZkLzEvQmdPZWNjdHhVZ1NvUE1KVGdpM0NtbUxIbWVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi9lNjI4NzktMmM2OS00MGMzLWIxMTYtMGU0Njg3NWQ0NWZk
LzEvQmdPZWNjdHhVZ1NvUE1KVGdpM0NtbUxIbWVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAALSr2h2U
T70RCAZP2F7fblXNofrs0dm9vJ7QgEvVuJTvIW8teEsjMmvaDferQ36J74aikTW4
s4Vw4W2+1FfXTrESMAM3I2JoK7R5PrmOz3LM+Gz355DutnopsrxnLN5jnkz8jhSY
euRyEXFe9dUQ/WxLVQcUXkRJak5kW0efLkGZEXHycpOCAtMOromU0jmEmsrzkr63
99LfZvs8uZ1x94KH2ac9dVr+V2uni0SvLxR/I1ak9/pkP27PuuA1pqB9JXdprIKf
Xd0CnwIuIr+Fiugnwa1aXIprkW4pJEGVKXpaZacj0bwGPhLgofA/sa4qIXfDANRi
P2ZToLCbAKLGVw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:14 2025 by rpki-client