Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft
File: bJHX1fXOV5JskDlz7L8RK_rhUw0.mft (raw, json)
Hash identifier: V4O34tGY7YzuViYSC5UVMIDUmYgg+gqVwm4y4SnBJUY=
Subject key identifier: 33:09:2C:54:39:A5:68:10:C1:8C:8B:08:13:13:BC:06:09:BD:4D:AB
Authority key identifier: 6C:91:D7:D5:F5:CE:57:92:6C:90:39:73:EC:BF:11:2B:FA:E1:53:0D
Certificate issuer: /CN=6c91d7d5f5ce57926c903973ecbf112bfae1530d
Certificate serial: 019656B7E2650B3BBA2EE49BC1411610C4C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft
Manifest number: 14FF
Signing time: Mon 21 Apr 2025 05:00:13 +0000
Manifest this update: Mon 21 Apr 2025 05:00:13 +0000
Manifest next update: Tue 22 Apr 2025 05:00:13 +0000
Files and hashes: 1: bJHX1fXOV5JskDlz7L8RK_rhUw0.crl (hash: R85GZijEXh1OvHKXi7v0Cnwy7J8JXGMfnc3CGvpoZnM=)
2: eEvrSYjLUGg5GhW7JvZI3HWYfcI.roa (hash: GMSu0KMyD4SKyVpe+o1Z3AHIVpLBmKGk+5TuUmweIis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:b7:e2:65:0b:3b:ba:2e:e4:9b:c1:41:16:10:c4:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c91d7d5f5ce57926c903973ecbf112bfae1530d
Validity
Not Before: Apr 21 05:00:13 2025 GMT
Not After : Apr 22 05:00:13 2025 GMT
Subject: CN=33092c5439a56810c18c8b081313bc0609bd4dab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:16:20:43:a0:ef:38:25:6d:45:7f:56:55:32:
e5:db:07:32:ac:86:39:f8:cf:5c:ad:52:65:a7:c9:
64:32:15:21:73:23:1f:56:60:2b:b5:91:d0:5a:fc:
a5:5b:cf:84:9e:67:65:f5:1b:76:57:cb:52:e0:fe:
ba:eb:8b:9f:8d:7e:27:15:09:14:25:df:04:4c:e3:
67:35:90:ac:67:43:c7:44:3f:af:ad:78:89:d6:63:
74:16:6d:5c:40:03:df:f9:7b:ee:51:38:d7:99:24:
1d:21:f0:a7:37:1e:97:6a:cb:ac:58:8f:d9:36:6f:
33:24:f2:ac:1e:5b:9e:a1:50:3f:8e:7b:9a:1e:fc:
02:b4:3b:2c:10:44:1a:fa:39:cd:2a:d6:c8:a7:0c:
c6:e8:dc:96:42:56:b3:20:36:71:03:e8:f2:aa:40:
da:f8:2d:a3:bf:ca:13:32:63:79:80:de:22:cb:74:
69:2d:c9:85:ec:cd:80:fc:f4:0d:8a:dd:25:f7:d3:
e4:d6:84:bf:01:e9:03:9a:72:9d:c9:b6:79:e2:42:
8d:71:ab:e1:8e:ae:df:a5:05:4e:2e:90:46:b5:e5:
fd:73:27:32:53:6f:a7:b0:c7:70:7f:fa:3e:6b:a8:
42:82:b1:ca:89:77:f4:a3:67:fb:df:66:fe:a8:89:
1e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:09:2C:54:39:A5:68:10:C1:8C:8B:08:13:13:BC:06:09:BD:4D:AB
X509v3 Authority Key Identifier:
keyid:6C:91:D7:D5:F5:CE:57:92:6C:90:39:73:EC:BF:11:2B:FA:E1:53:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:f7:12:59:eb:31:dd:81:2f:df:51:c7:e9:e0:00:9c:bd:36:
2e:ad:bc:1c:b6:0c:7f:39:40:d4:e4:b6:cf:28:44:52:58:26:
95:b7:2d:4c:6d:68:54:68:54:d1:cb:fd:b6:ba:00:22:4a:5c:
be:d6:fc:ac:e3:50:9f:4a:fe:13:fa:9c:26:a7:39:c0:8d:3c:
d9:53:00:ef:2d:aa:11:75:31:a5:2e:e3:37:b9:76:b2:44:33:
6f:3e:3d:8b:2b:a9:8d:8a:75:4e:c0:7b:8c:5b:ab:98:76:23:
7f:21:29:e9:2d:fb:34:0f:3a:0c:fc:ed:a3:f3:d5:1b:f9:ea:
9c:5c:2e:61:05:99:21:2e:33:30:91:e9:2c:6b:8d:8a:6a:a3:
8a:12:12:b1:87:f4:96:44:39:00:7b:bb:67:53:21:ed:bc:0c:
36:de:d7:64:74:86:5a:40:af:ad:bf:af:0a:6a:14:5b:5a:82:
5a:ce:cd:4f:92:6b:92:b5:e8:44:27:95:3a:f1:2b:f2:97:dd:
cb:f3:9c:5b:30:cb:2f:8f:04:3b:ae:31:ef:9d:76:17:f3:cc:
f7:5e:df:b3:b7:9e:d1:28:1f:3c:65:dd:74:9c:77:95:a1:88:
7d:69:c2:ee:b6:03:4c:4d:de:81:27:4a:10:93:c4:02:e2:8d:
0a:2b:0c:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:57:53 2025 by rpki-client