Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.mft
File: BsL3NfcUX3DScCYC7oyBVknrLkU.mft (raw, json)
Hash identifier: 7ldV23EiFkGq18aJwt+NQJKr8DU9dm0VKHtA2ciWH38=
Subject key identifier: EB:04:A0:5D:B9:DE:5F:72:48:57:2A:42:E8:26:08:CE:9E:33:BE:D5
Authority key identifier: 06:C2:F7:35:F7:14:5F:70:D2:70:26:02:EE:8C:81:56:49:EB:2E:45
Certificate issuer: /CN=06c2f735f7145f70d2702602ee8c815649eb2e45
Certificate serial: 019510C7414EBA6610FA63E9EFA346F9EECC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsL3NfcUX3DScCYC7oyBVknrLkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.mft
Manifest number: 0E8A
Signing time: Sun 16 Feb 2025 22:00:48 +0000
Manifest this update: Sun 16 Feb 2025 22:00:48 +0000
Manifest next update: Mon 17 Feb 2025 22:00:48 +0000
Files and hashes: 1: BsL3NfcUX3DScCYC7oyBVknrLkU.crl (hash: PsLVIojHYyXay/Q6Sao/sQSk8nT5IIitlPjvEVk6Zuc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.mft
rsync://rpki.ripe.net/repository/DEFAULT/BsL3NfcUX3DScCYC7oyBVknrLkU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:41:4e:ba:66:10:fa:63:e9:ef:a3:46:f9:ee:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c2f735f7145f70d2702602ee8c815649eb2e45
Validity
Not Before: Feb 16 22:00:48 2025 GMT
Not After : Feb 17 22:00:48 2025 GMT
Subject: CN=eb04a05db9de5f7248572a42e82608ce9e33bed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e3:b6:39:7f:14:f4:77:b0:8c:f5:96:a6:c6:
4a:24:7e:da:6b:b6:f6:05:c3:d4:7c:ec:00:c7:ed:
78:16:4d:e6:64:8e:60:74:1b:83:d3:b3:6a:69:53:
e3:1e:ce:7f:02:ac:0b:d5:d3:95:20:18:44:db:ea:
82:94:d7:e4:9f:c2:d2:ba:ca:9d:27:01:d5:79:6a:
27:14:4f:0d:5e:7b:0b:c8:81:6c:74:b0:6c:01:fb:
9e:06:02:0b:e8:8a:1c:27:3c:a2:d3:89:cb:f8:3d:
b1:2c:07:ef:13:56:ca:df:e2:83:a2:56:78:d9:15:
f7:0b:bc:96:13:b7:12:91:f3:13:fb:d4:61:5a:29:
cd:06:68:10:45:b9:68:0f:da:84:62:1d:9f:66:50:
52:be:e1:49:65:38:04:e5:1d:ce:56:65:47:a4:48:
91:01:b7:b4:8e:4e:b2:90:af:71:15:b8:59:f4:ed:
fb:bb:50:fd:12:c8:21:51:1a:3b:d5:9f:fc:6a:2e:
8d:58:53:ef:ac:27:4d:f9:62:e2:2b:36:5a:f8:5f:
a2:0f:61:0c:91:3d:23:81:76:a8:1e:dd:7f:1b:5d:
3c:02:94:c8:25:ac:80:8a:84:b1:91:ff:d5:c0:fc:
6e:3c:1e:0d:4b:0e:f8:b3:31:bf:27:80:f4:e9:0c:
f9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:04:A0:5D:B9:DE:5F:72:48:57:2A:42:E8:26:08:CE:9E:33:BE:D5
X509v3 Authority Key Identifier:
keyid:06:C2:F7:35:F7:14:5F:70:D2:70:26:02:EE:8C:81:56:49:EB:2E:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsL3NfcUX3DScCYC7oyBVknrLkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:29:fb:fd:a0:c1:9a:4c:03:f2:76:00:14:e0:7e:50:be:d8:
c1:9c:c0:89:0f:eb:52:e5:29:27:9b:a6:70:a3:8e:5d:cc:11:
54:eb:a3:af:5d:68:61:cb:8c:19:4d:76:79:5a:d0:fe:1e:b7:
ad:9c:11:8d:47:37:8c:93:e0:0a:62:69:94:7e:b1:14:20:36:
b0:01:17:a4:15:e6:e6:19:10:aa:59:f8:a0:15:0e:5f:10:e3:
fa:e7:b3:8c:39:20:7b:06:a3:39:f2:45:61:4c:77:1b:b0:3b:
81:d8:2a:52:84:4b:ba:89:b9:f3:02:c3:88:92:3e:c6:cd:5b:
e7:7f:b7:be:6c:d2:bf:80:cf:82:43:69:57:5a:ba:a2:ba:d9:
f4:55:67:47:42:be:b4:e1:dc:50:4a:da:ad:f0:cf:6d:12:fd:
cb:6d:cc:1e:ee:3d:d7:2f:8e:ac:f1:76:45:57:cc:e9:55:ac:
e6:f0:be:44:f0:7c:94:05:a6:6a:0a:a6:c8:45:74:d4:c4:7b:
a9:1b:d1:d8:ce:b5:26:4d:2c:5f:42:8f:77:61:ed:76:6d:8f:
7b:4c:f0:3c:fa:0d:0e:ea:ad:55:45:f8:e6:d2:47:e1:38:72:
ad:c5:2f:f0:70:76:d5:d6:20:43:c1:7f:3f:15:ef:94:85:76:
49:be:a1:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:04 2025 by rpki-client