Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft
File: bchbZ4jkUMBUE0row2V0iyP3Qmc.mft (raw, json)
Hash identifier: 6zfMHZWOOV5bgYkg6PSxR2gR/Fs4NkETAeUDSkqawrg=
Subject key identifier: CD:B1:E8:65:E7:58:F4:B5:19:DB:33:D8:06:1A:D6:A0:92:A5:81:B1
Authority key identifier: 6D:C8:5B:67:88:E4:50:C0:54:13:4A:E8:C3:65:74:8B:23:F7:42:67
Certificate issuer: /CN=6dc85b6788e450c054134ae8c365748b23f74267
Certificate serial: 0196556ECFDD2E0529C7759C6A8C10A1A795
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft
Manifest number: 0678
Signing time: Sun 20 Apr 2025 23:00:47 +0000
Manifest this update: Sun 20 Apr 2025 23:00:47 +0000
Manifest next update: Mon 21 Apr 2025 23:00:47 +0000
Files and hashes: 1: HuuruuJUnyizGG7iC01ujDUd5zE.roa (hash: zJUuXbnFQXiP5Cz81qdrVSNYrr0dHAG+T0ZkZ/sUgdY=)
2: bchbZ4jkUMBUE0row2V0iyP3Qmc.crl (hash: Pqn8PwnhEGIx4fnBuTG96WsLvTBTDU0rbRMwwnZ8+0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:6e:cf:dd:2e:05:29:c7:75:9c:6a:8c:10:a1:a7:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dc85b6788e450c054134ae8c365748b23f74267
Validity
Not Before: Apr 20 23:00:47 2025 GMT
Not After : Apr 21 23:00:47 2025 GMT
Subject: CN=cdb1e865e758f4b519db33d8061ad6a092a581b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6c:ea:ea:22:cd:16:10:fc:75:c7:f6:6d:2f:
de:62:3d:c4:b1:12:1a:f5:f3:99:8c:26:fe:44:1f:
d7:34:f6:94:05:de:4d:76:46:98:46:98:0b:48:de:
3f:0b:67:59:c7:4e:b2:3d:e7:df:24:df:ae:fc:94:
68:63:c2:12:a9:f2:d6:c2:3e:24:8e:b0:d2:dd:53:
c6:03:cd:23:a2:85:c4:2b:16:4a:cb:90:10:16:ab:
d7:6d:1d:77:1c:2b:d3:7b:3c:c1:c6:ff:dc:e6:ea:
dd:6a:d1:5b:48:5a:ef:a2:c5:e8:99:81:b9:24:b9:
f4:ec:b2:af:a1:76:ec:4c:ec:4f:90:0c:c8:7a:66:
2b:0c:47:de:b1:2e:56:8f:4f:71:4e:4b:2a:21:77:
a4:90:56:0c:78:3f:ea:2c:17:93:e3:fe:1f:10:b3:
ff:c7:04:b7:96:d5:8c:61:25:80:70:01:7f:18:69:
1f:65:12:3b:64:98:a5:dc:f0:a3:e9:65:fc:0a:70:
65:ab:b7:22:9a:67:86:41:98:ce:cb:33:30:00:c3:
cd:73:3d:ce:2f:51:85:ad:56:ba:ba:b6:07:cc:ed:
43:89:cd:e6:38:ac:71:07:b7:b6:96:ad:5a:71:50:
ca:7a:ed:55:29:7c:e0:22:6a:07:06:00:19:12:0a:
10:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:B1:E8:65:E7:58:F4:B5:19:DB:33:D8:06:1A:D6:A0:92:A5:81:B1
X509v3 Authority Key Identifier:
keyid:6D:C8:5B:67:88:E4:50:C0:54:13:4A:E8:C3:65:74:8B:23:F7:42:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:6d:ed:01:6f:78:44:d4:08:d3:65:4c:01:c4:20:e6:b6:de:
47:d2:8c:3e:d5:a9:7b:58:fd:13:29:c7:07:58:11:1a:5c:18:
d3:a7:60:b9:bc:c2:a6:6d:45:f1:89:cc:77:be:9c:61:77:7e:
da:6f:b9:c5:a3:36:48:51:d7:b7:8e:8f:8b:51:5b:84:78:04:
32:4d:83:f0:2b:73:80:07:22:1e:47:e5:db:7b:e1:fa:29:a3:
f5:ad:98:8d:cb:e0:fb:3c:cd:d4:9d:49:4e:1a:e6:26:f6:23:
8b:68:2a:91:f5:89:5e:66:28:9a:6a:ab:16:89:d1:2c:1d:f3:
01:b7:db:cb:5e:95:8a:d8:96:f8:df:1c:a9:5b:f9:23:dc:c4:
30:dd:38:77:e1:12:3a:4a:b6:df:a3:ec:79:83:f0:02:25:10:
52:58:a2:56:fe:9f:8c:c9:69:62:34:20:c2:7f:1f:11:25:4b:
9e:52:83:cc:92:5a:46:2f:15:9d:dc:92:6f:62:d6:f6:20:11:
f9:76:ff:b1:a1:d2:ea:30:43:65:46:d9:c3:55:c6:4f:ee:77:
3c:bf:2d:dd:f0:22:38:51:46:44:d6:a4:ae:bc:8b:18:aa:d6:
c8:45:46:84:25:ad:90:4c:5d:e0:76:c6:59:9e:c8:e0:32:91:
e0:29:be:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVbs/dLgUpx3WcaowQoaeVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkYzg1YjY3ODhlNDUwYzA1NDEzNGFlOGMzNjU3NDhiMjNm
NzQyNjcwHhcNMjUwNDIwMjMwMDQ3WhcNMjUwNDIxMjMwMDQ3WjAzMTEwLwYDVQQD
EyhjZGIxZTg2NWU3NThmNGI1MTlkYjMzZDgwNjFhZDZhMDkyYTU4MWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmzq6iLNFhD8dcf2bS/eYj3EsRIa
9fOZjCb+RB/XNPaUBd5NdkaYRpgLSN4/C2dZx06yPeffJN+u/JRoY8ISqfLWwj4k
jrDS3VPGA80jooXEKxZKy5AQFqvXbR13HCvTezzBxv/c5urdatFbSFrvosXomYG5
JLn07LKvoXbsTOxPkAzIemYrDEfesS5Wj09xTksqIXekkFYMeD/qLBeT4/4fELP/
xwS3ltWMYSWAcAF/GGkfZRI7ZJil3PCj6WX8CnBlq7cimmeGQZjOyzMwAMPNcz3O
L1GFrVa6urYHzO1Dic3mOKxxB7e2lq1acVDKeu1VKXzgImoHBgAZEgoQnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM2x6GXnWPS1Gdsz2AYa1qCSpYGxMB8GA1UdIwQY
MBaAFG3IW2eI5FDAVBNK6MNldIsj90JnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmNoYlo0amtVTUJVRTByb3cyVjBpeVAzUW1jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9lYmYxNjktYmUxNy00Y2U5LTkyNzUt
MDgxNzg2YWIwNzQ4LzEvYmNoYlo0amtVTUJVRTByb3cyVjBpeVAzUW1jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS9lYmYxNjktYmUxNy00Y2U5LTkyNzUtMDgxNzg2YWIwNzQ4
LzEvYmNoYlo0amtVTUJVRTByb3cyVjBpeVAzUW1jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA23tAW94
RNQI02VMAcQg5rbeR9KMPtWpe1j9EynHB1gRGlwY06dgubzCpm1F8YnMd76cYXd+
2m+5xaM2SFHXt46Pi1FbhHgEMk2D8CtzgAciHkfl23vh+imj9a2Yjcvg+zzN1J1J
ThrmJvYji2gqkfWJXmYommqrFonRLB3zAbfby16VitiW+N8cqVv5I9zEMN04d+ES
Okq236PseYPwAiUQUliiVv6fjMlpYjQgwn8fESVLnlKDzJJaRi8VndySb2LW9iAR
+Xb/saHS6jBDZUbZw1XGT+53PL8t3fAiOFFGRNakrryLGKrWyEVGhCWtkExd4HbG
WZ7I4DKR4Cm+VQ==
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:55:53 2025 by rpki-client