Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
File: bOLuhMz1bNwA_CyqWSknna4UiIo.mft (raw, json)
Hash identifier: rBXF8K4rh0XR2kd5DYUbkcDeafqdoz2gVoKYCWGxLB0=
Subject key identifier: ED:0E:25:B2:68:5D:A0:AC:6F:39:1C:1F:29:09:48:0C:6C:9A:20:EF
Authority key identifier: 6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
Certificate issuer: /CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Certificate serial: 019653B7B70955EACBB612B8F79A364B6A6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
Manifest number: 1040
Signing time: Sun 20 Apr 2025 15:01:10 +0000
Manifest this update: Sun 20 Apr 2025 15:01:10 +0000
Manifest next update: Mon 21 Apr 2025 15:01:10 +0000
Files and hashes: 1: bOLuhMz1bNwA_CyqWSknna4UiIo.crl (hash: dxOulLoR8GZgbJ9eie3oVrQbB9/LKxTqztPEnOJCY9c=)
2: cm9pm1Y4fh7VmcKkQuyOuu9QXgE.roa (hash: T9xnzREMcoc526+ebS5GUXWxlrjNz60+DOHB2xM8pA4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 15:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:b7:b7:09:55:ea:cb:b6:12:b8:f7:9a:36:4b:6a:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Validity
Not Before: Apr 20 15:01:10 2025 GMT
Not After : Apr 21 15:01:10 2025 GMT
Subject: CN=ed0e25b2685da0ac6f391c1f2909480c6c9a20ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:00:eb:7b:0e:01:65:d5:47:f2:5d:2f:e0:49:
d2:a3:e1:12:4b:4f:29:1e:3b:fa:85:32:ec:e4:f9:
ce:cf:70:31:98:58:d5:81:8b:0d:28:9a:4b:c7:5e:
b8:42:90:28:5d:45:44:ae:5a:dc:51:73:51:50:bc:
31:ae:c9:2b:16:9e:7f:27:a6:17:b4:3b:c2:b0:85:
c3:be:ed:5d:d5:5a:da:be:04:24:d5:dc:d4:8c:c5:
59:91:a5:66:40:3b:af:f1:a6:af:f6:de:27:7b:fe:
90:a6:46:65:35:df:83:48:43:1f:1c:35:5a:29:f5:
d8:03:5c:bd:a4:e2:d8:df:80:8e:89:8c:bc:68:5b:
65:1f:f0:47:3b:09:22:db:c9:1b:50:4d:b5:04:b9:
b3:60:7f:3e:35:e1:08:d7:63:0c:04:e1:f2:5d:74:
99:d0:4f:e0:23:56:2c:57:7e:82:52:81:5f:e8:84:
e2:25:0a:a7:3b:27:a3:8e:7c:c2:79:e2:6a:f2:c2:
40:d1:ef:ee:6b:7a:9e:b5:47:fc:cf:4e:df:b5:2b:
af:89:89:4f:f9:08:35:6d:21:ab:b0:72:38:6a:82:
2a:fa:76:71:51:50:22:bf:73:34:5e:eb:e2:6f:0c:
75:02:05:ec:f7:87:fc:a6:fb:f8:37:94:78:3f:c7:
37:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:0E:25:B2:68:5D:A0:AC:6F:39:1C:1F:29:09:48:0C:6C:9A:20:EF
X509v3 Authority Key Identifier:
keyid:6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:ca:d6:ed:6a:e3:7c:68:15:6c:30:9d:8f:c9:42:a4:08:52:
23:61:c1:24:20:61:fe:9d:b6:7b:ff:bf:fe:df:ba:34:08:6b:
50:55:03:94:d4:3c:6f:f9:45:f9:fb:e8:3e:1d:17:a3:6b:bf:
9c:dd:f9:82:fa:3e:26:fd:38:aa:65:2d:79:65:3b:7c:df:c0:
ac:4d:3e:4f:ac:ed:16:95:b0:46:3d:47:43:0d:ad:8a:d2:f2:
18:09:3a:d9:7b:df:0d:c2:79:f0:0d:7c:9c:fa:c1:da:4a:ff:
b2:77:b0:c8:46:84:23:92:cd:8b:9a:01:12:3b:66:6d:bb:50:
5c:43:66:13:4c:ee:30:67:ed:95:11:37:35:f4:74:cb:05:00:
8f:1a:14:2f:92:56:d8:d1:bf:2e:a7:17:38:29:f4:12:7f:0c:
cc:a4:ab:05:48:52:70:e6:f1:1e:69:7b:17:d0:92:a6:74:df:
a7:b1:44:67:16:3a:ca:14:b1:ac:2f:67:01:aa:88:c7:5a:d1:
b5:83:1a:c5:62:d8:d1:b9:c6:27:2c:6a:68:cc:ac:96:8e:83:
5d:96:88:b3:e2:6e:9a:b4:c7:93:bd:67:39:9c:0a:6c:94:8c:
b6:e5:0b:96:52:8a:7f:8f:99:fe:24:e2:cf:58:ce:9a:97:20:
e4:53:19:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 21:38:37 2025 by rpki-client