Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
File: bzHGTD5afeEED0Daj-3EfDj-Wfo.mft (raw, json)
Hash identifier: zhyp3DsGqfx7Khety89bdFeQay4+xbzG38IMC+PjrYw=
Subject key identifier: 1A:6A:5D:57:98:3D:2F:7E:00:4F:2D:F9:42:93:75:61:05:29:68:73
Authority key identifier: 6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA
Certificate issuer: /CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa
Certificate serial: 019748F9E1B29153ED36F37EE0CCB6DE2265
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
Manifest number: 0E28
Signing time: Sat 07 Jun 2025 06:00:25 +0000
Manifest this update: Sat 07 Jun 2025 06:00:25 +0000
Manifest next update: Sun 08 Jun 2025 06:00:25 +0000
Files and hashes: 1: V-ziE9ps9Cl1x9ik1a79A00SdKk.roa (hash: vAv5TpbiymJ0TO2JtzeVr/xllon/oJLZTZGZk+qEl8o=)
2: bzHGTD5afeEED0Daj-3EfDj-Wfo.crl (hash: gL5ycnA3Jx57U1GcQAGUEh9JO/DzC5uLYmt4MzOYWEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:f9:e1:b2:91:53:ed:36:f3:7e:e0:cc:b6:de:22:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa
Validity
Not Before: Jun 7 06:00:25 2025 GMT
Not After : Jun 8 06:00:25 2025 GMT
Subject: CN=1a6a5d57983d2f7e004f2df94293756105296873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:68:6a:d9:38:e6:69:07:95:69:e1:51:d2:78:
f4:6f:94:52:da:0a:1c:b5:b6:29:06:5d:7d:d9:55:
5c:ca:bd:52:90:c6:f5:36:5b:fc:4f:98:cd:c0:4c:
97:8a:45:bb:fc:61:05:fd:3f:59:4c:6b:01:67:45:
bd:34:27:2e:55:e0:de:b9:80:e2:6b:87:f7:5a:51:
eb:44:47:3c:92:89:42:2c:d8:b7:98:66:4b:e4:91:
a7:4e:bf:fe:07:0f:5b:a5:6c:1a:5b:9c:95:a2:16:
08:b0:d0:b9:0a:d0:9c:e6:dd:46:43:f3:b4:7c:6f:
dc:59:3b:a7:b6:01:2f:d4:ca:c4:3c:3c:9f:bc:fc:
a6:ae:a9:44:9d:b1:7f:63:86:e3:09:6a:bb:05:3e:
74:6d:9b:39:9a:75:df:69:da:aa:54:22:ad:7d:04:
19:01:fd:67:00:ea:3d:7c:1e:bd:06:ea:bb:ab:62:
a0:11:c8:33:e0:e6:d8:30:81:43:c4:26:70:60:b2:
1c:78:c6:43:0e:64:2e:1e:33:0f:97:29:0c:90:ed:
67:08:cf:f8:42:ae:69:11:93:cb:f0:89:83:4e:1f:
79:31:13:5e:8e:ff:6b:9c:2c:99:5a:71:c0:dc:da:
ca:47:90:83:27:68:9f:25:ed:4f:6c:4f:d4:37:58:
98:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:6A:5D:57:98:3D:2F:7E:00:4F:2D:F9:42:93:75:61:05:29:68:73
X509v3 Authority Key Identifier:
keyid:6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:cd:91:68:36:df:c3:a6:4f:bf:ed:83:ae:44:6e:0f:a9:d1:
d3:76:ff:00:68:86:0a:c9:d0:80:e9:02:7d:a8:b8:b8:83:80:
82:3a:e6:86:0d:88:a8:93:3d:8a:e4:a4:94:67:ef:ae:a6:b7:
4e:36:ac:86:a4:54:de:db:b1:b9:a7:92:0d:e2:c7:20:83:66:
cb:02:88:2f:06:f5:65:32:47:71:b7:82:0d:77:ff:76:6b:0a:
8a:53:4b:30:f1:ef:6b:44:6b:b2:a7:43:1b:9b:8c:8e:3c:0f:
3b:73:36:7b:b6:33:ee:9a:09:df:f0:da:10:b4:b1:2d:f3:90:
70:f9:dd:9e:f3:c6:40:45:06:66:2c:9f:35:88:f8:94:74:ca:
4a:15:3d:8b:d0:08:b3:ec:72:2e:63:51:db:aa:9b:ca:d8:f8:
b3:d9:8d:ed:ec:f6:45:3a:eb:06:98:6a:da:83:07:c8:e2:ca:
1a:a5:bc:d5:be:85:63:81:63:19:d7:76:f7:f1:c4:5a:b3:cb:
36:b6:1d:ca:09:45:80:d1:cf:d0:a7:02:13:9f:55:16:77:95:
ba:39:7e:cf:7f:aa:4a:02:e9:29:c5:48:e2:f7:38:9f:e1:9d:
cc:05:9f:c4:58:11:4b:97:73:36:e3:09:e7:e6:25:dc:2a:f0:
c4:bf:50:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdI+eGykVPtNvN+4My23iJlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMzFjNjRjM2U1YTdkZTEwNDBmNDBkYThmZWRjNDdjMzhm
ZTU5ZmEwHhcNMjUwNjA3MDYwMDI1WhcNMjUwNjA4MDYwMDI1WjAzMTEwLwYDVQQD
EygxYTZhNWQ1Nzk4M2QyZjdlMDA0ZjJkZjk0MjkzNzU2MTA1Mjk2ODczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2hq2TjmaQeVaeFR0nj0b5RS2goc
tbYpBl192VVcyr1SkMb1Nlv8T5jNwEyXikW7/GEF/T9ZTGsBZ0W9NCcuVeDeuYDi
a4f3WlHrREc8kolCLNi3mGZL5JGnTr/+Bw9bpWwaW5yVohYIsNC5CtCc5t1GQ/O0
fG/cWTuntgEv1MrEPDyfvPymrqlEnbF/Y4bjCWq7BT50bZs5mnXfadqqVCKtfQQZ
Af1nAOo9fB69Buq7q2KgEcgz4ObYMIFDxCZwYLIceMZDDmQuHjMPlykMkO1nCM/4
Qq5pEZPL8ImDTh95MRNejv9rnCyZWnHA3NrKR5CDJ2ifJe1PbE/UN1iYdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBpqXVeYPS9+AE8t+UKTdWEFKWhzMB8GA1UdIwQY
MBaAFG8xxkw+Wn3hBA9A2o/txHw4/ln6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnpIR1RENWFmZUVFRDBEYWotM0VmRGotV2ZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi84ZWQzODItMzA5Ny00MTNlLWI2YTIt
YjA4MGEzNDUxYzdmLzEvYnpIR1RENWFmZUVFRDBEYWotM0VmRGotV2ZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi84ZWQzODItMzA5Ny00MTNlLWI2YTItYjA4MGEzNDUxYzdm
LzEvYnpIR1RENWFmZUVFRDBEYWotM0VmRGotV2ZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcM2RaDbf
w6ZPv+2DrkRuD6nR03b/AGiGCsnQgOkCfai4uIOAgjrmhg2IqJM9iuSklGfvrqa3
TjashqRU3tuxuaeSDeLHIINmywKILwb1ZTJHcbeCDXf/dmsKilNLMPHva0RrsqdD
G5uMjjwPO3M2e7Yz7poJ3/DaELSxLfOQcPndnvPGQEUGZiyfNYj4lHTKShU9i9AI
s+xyLmNR26qbytj4s9mN7ez2RTrrBphq2oMHyOLKGqW81b6FY4FjGdd29/HEWrPL
NrYdyglFgNHP0KcCE59VFneVujl+z3+qSgLpKcVI4vc4n+GdzAWfxFgRS5dzNuMJ
5+Yl3CrwxL9QqA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:04:31 2025 by rpki-client