Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
File: BfWa7cKCluKRck95N954jichZAg.mft (raw, json)
Hash identifier: 5wGZPEPgiNVMdl4hStLokca19hoRSAL9v3UAaOxklkk=
Subject key identifier: 4D:8E:9C:2A:FC:A2:75:A8:2E:41:24:BD:9C:B8:37:C2:5B:1D:B6:B5
Authority key identifier: 05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
Certificate issuer: /CN=05f59aedc28296e291724f7937de788e27216408
Certificate serial: 01974C69C8191D497F93AFB1480FD8E35282
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
Manifest number: 149B
Signing time: Sat 07 Jun 2025 22:01:30 +0000
Manifest this update: Sat 07 Jun 2025 22:01:30 +0000
Manifest next update: Sun 08 Jun 2025 22:01:30 +0000
Files and hashes: 1: BfWa7cKCluKRck95N954jichZAg.crl (hash: wae/9NNqGsy+Ta7LfLSRzhnx5+zP+T/35Wit97dyLOM=)
2: u4-8TJgeQH4fa-D9xZl4ZB3jNoQ.roa (hash: tT+Wu4e7mtchTUuSJdCNjA8Yykw8lNY7Bv1xK7SFPsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:c8:19:1d:49:7f:93:af:b1:48:0f:d8:e3:52:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f59aedc28296e291724f7937de788e27216408
Validity
Not Before: Jun 7 22:01:30 2025 GMT
Not After : Jun 8 22:01:30 2025 GMT
Subject: CN=4d8e9c2afca275a82e4124bd9cb837c25b1db6b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:11:0d:8f:21:45:0a:b2:68:c1:e4:69:e0:a6:
43:59:6d:b9:4f:c8:30:d3:76:33:0e:90:9b:0a:6c:
27:46:b6:2a:d8:44:2a:db:e0:f4:0a:20:10:c1:59:
41:d4:bd:6e:16:32:78:07:79:4a:ab:72:82:c9:82:
e0:9b:00:24:3b:10:25:bd:e8:0a:e2:1a:6f:8f:ce:
7d:c9:42:ea:91:6c:d4:9a:0b:f0:5d:f1:44:99:2e:
11:73:25:83:9c:62:07:a2:90:ce:44:4b:e5:31:e2:
48:c2:58:88:1b:de:7d:27:07:fc:78:42:e4:48:36:
3a:c2:d5:d6:5d:2d:af:29:fd:73:13:ea:18:5d:9c:
70:7b:8b:83:3c:ca:cf:de:89:08:25:51:47:88:e0:
1d:0b:ef:20:31:e0:68:60:58:85:0c:c8:78:a6:98:
32:2b:5b:d4:65:19:8c:86:5a:9c:f9:59:37:e0:d4:
98:15:cb:ab:3f:9a:c6:12:97:88:2f:05:31:7c:90:
7b:41:73:8d:d2:53:31:62:f4:a8:a3:4a:e7:d2:2a:
ab:8d:53:dd:25:f7:30:4e:00:78:b6:5a:86:ec:e3:
59:b9:f5:ca:d9:5a:70:4c:13:1e:ba:0d:a4:d2:a8:
f9:e2:f7:f9:63:9b:9e:09:38:87:85:49:37:4b:40:
61:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:8E:9C:2A:FC:A2:75:A8:2E:41:24:BD:9C:B8:37:C2:5B:1D:B6:B5
X509v3 Authority Key Identifier:
keyid:05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:8d:aa:e2:5e:a2:a8:80:65:37:65:aa:a3:f2:60:66:ad:ef:
42:74:31:ae:6b:89:c0:fb:c4:8b:9b:f3:2b:19:b8:16:ff:e5:
ba:e2:23:64:35:df:6c:1e:86:30:a6:f3:e1:e4:d2:07:72:a1:
2a:7c:c0:20:ce:80:14:fc:68:49:0e:3d:a1:31:cb:af:9d:48:
8a:a5:7d:4e:74:a7:15:ae:37:48:e7:c1:a1:3f:fe:9f:0c:7e:
bf:d6:a9:b4:af:13:65:33:21:88:30:58:05:b2:5b:5d:e7:c7:
51:e7:c1:14:43:06:d2:45:a5:6a:bb:e7:78:36:98:6c:84:d0:
42:15:59:49:c8:ab:0e:f2:02:b4:9a:4c:f3:b5:dc:63:07:f8:
71:49:7f:b3:e9:f1:98:6c:7d:f4:6c:35:03:8e:88:b2:01:99:
65:7b:9f:3a:6e:fe:2b:35:fa:ce:68:32:18:f0:45:b2:14:94:
a3:c2:84:56:93:28:ae:f0:f7:06:cc:4a:f4:40:08:d8:40:40:
59:a9:ca:b9:9c:af:41:a2:f1:ab:bc:a6:10:81:52:84:e5:f6:
7c:dd:54:66:d9:df:15:c0:b6:6d:4f:7f:1b:b6:2f:a4:36:b3:
07:9c:62:7d:93:a3:86:91:10:cf:8d:c9:15:52:40:9d:e0:3b:
f5:e5:fd:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:09:55 2025 by rpki-client