Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.mft
File: B9oDycgmha5taz0h1oS7z0aL91s.mft (raw, json)
Hash identifier: Bw0Z87fcZjNReR+tD6wifEQu8OGi7Php5vmwXJm81OI=
Subject key identifier: B2:49:9E:A1:0B:6C:22:91:CB:60:D1:DD:F6:E0:F3:B5:42:B6:21:51
Authority key identifier: 07:DA:03:C9:C8:26:85:AE:6D:6B:3D:21:D6:84:BB:CF:46:8B:F7:5B
Certificate issuer: /CN=07da03c9c82685ae6d6b3d21d684bbcf468bf75b
Certificate serial: 0196523715487EBBFFED9E760AB7EF85DF8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9oDycgmha5taz0h1oS7z0aL91s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.mft
Manifest number: 14FA
Signing time: Sun 20 Apr 2025 08:01:03 +0000
Manifest this update: Sun 20 Apr 2025 08:01:03 +0000
Manifest next update: Mon 21 Apr 2025 08:01:03 +0000
Files and hashes: 1: B9oDycgmha5taz0h1oS7z0aL91s.crl (hash: TGVLmpeyTun3T/Z788c2hOFOXIqYWlMsVsJZh4THB2c=)
2: qM88UnBEO7hJIOXTGn5mpC9drZ4.roa (hash: Zjl7M5YF5NfW5doz7UZ6OWeeqYFMW7XiaZIij5TEofI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.mft
rsync://rpki.ripe.net/repository/DEFAULT/B9oDycgmha5taz0h1oS7z0aL91s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 08:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:37:15:48:7e:bb:ff:ed:9e:76:0a:b7:ef:85:df:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07da03c9c82685ae6d6b3d21d684bbcf468bf75b
Validity
Not Before: Apr 20 08:01:03 2025 GMT
Not After : Apr 21 08:01:03 2025 GMT
Subject: CN=b2499ea10b6c2291cb60d1ddf6e0f3b542b62151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ef:02:51:85:36:2e:47:39:9f:c9:ab:0c:48:
14:f7:86:73:63:3b:92:c6:dd:5c:00:27:c6:f2:df:
05:f7:c7:d7:f8:64:90:a8:0e:78:c7:27:bd:12:5c:
29:a6:8b:ec:21:ad:9f:97:b1:65:cf:fc:9a:1f:98:
47:08:13:f5:1c:01:ee:20:70:36:03:bb:93:82:e9:
d0:23:5b:7a:47:eb:6b:e3:28:ae:d9:8b:8c:67:f1:
5b:5d:3d:eb:79:cc:4d:cd:06:c4:29:b8:b3:d0:40:
b9:4d:51:37:2b:80:c0:04:33:44:85:96:1b:ec:bb:
07:89:a0:ec:28:34:7c:e9:8e:bc:de:d4:ae:4a:e0:
9b:b2:53:33:a3:32:5f:91:80:be:33:6e:c5:ce:40:
17:33:c7:fd:9e:9d:4a:bd:1d:87:eb:1c:23:19:fe:
17:c3:71:e6:3f:d0:3c:c8:fd:c5:41:85:9e:7d:ba:
17:a0:f1:65:1e:a1:80:fd:70:00:47:6f:38:8a:29:
1d:b5:1f:ba:d4:fc:3f:14:a7:b7:65:aa:89:88:7b:
52:94:3c:f5:a8:94:b4:e3:b6:57:db:ac:10:6e:46:
77:6a:22:48:5a:2c:fa:7f:8d:74:15:d3:d7:d4:71:
b4:7c:e8:ff:ce:74:fa:0c:34:df:3b:1c:20:45:b0:
89:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:49:9E:A1:0B:6C:22:91:CB:60:D1:DD:F6:E0:F3:B5:42:B6:21:51
X509v3 Authority Key Identifier:
keyid:07:DA:03:C9:C8:26:85:AE:6D:6B:3D:21:D6:84:BB:CF:46:8B:F7:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9oDycgmha5taz0h1oS7z0aL91s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:11:66:03:67:56:06:77:c9:0a:86:82:e1:95:b2:8e:c4:8f:
e5:00:60:d3:e0:0c:20:07:84:bf:e1:6d:47:cc:40:49:d8:52:
24:a7:d8:13:2c:61:08:9f:4e:cb:f6:7e:15:5e:b4:35:ef:52:
e0:19:74:77:b1:24:65:0a:2a:7c:f4:31:18:a1:36:39:cc:2a:
3d:72:8e:f9:c1:3f:85:a3:27:07:04:95:01:0b:7d:67:e8:ae:
86:d9:b9:63:4d:23:12:80:86:d4:d4:45:92:ba:52:e7:40:60:
e0:32:14:fa:64:55:bf:0e:99:ee:c5:fc:4f:d5:c8:f7:43:1b:
6a:c9:59:07:59:2d:b0:09:64:61:03:e9:df:21:30:62:f8:3a:
11:7f:03:01:fd:7e:a8:57:be:da:a1:98:e2:5c:a7:eb:07:45:
98:a8:48:ed:d6:56:95:52:b3:43:81:6a:1b:16:fc:e3:e0:b7:
e5:54:ba:7a:6a:d8:4f:3b:2f:9d:f6:3a:79:88:6d:89:17:bf:
53:89:64:f6:59:99:d8:cb:13:37:65:6c:f2:d9:73:fb:3e:9b:
86:a8:f4:3f:4e:d9:96:18:fa:9a:83:91:fb:e2:fd:ad:04:de:
18:43:9e:3c:7d:0d:ed:39:66:af:c3:a7:e3:cc:d4:34:d2:d1:
0f:e8:5b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:55:39 2025 by rpki-client