Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
File: bzOv1B6gEvsoA8cnRSPI7D8mExE.mft (raw, json)
Hash identifier: p4PcOw6QkEiOo6uNNaU2Uawl0FTL2ihcuyIYSFn1Mug=
Subject key identifier: C9:3C:7D:51:40:1E:DD:C9:A1:3E:FE:B2:53:F3:FB:06:21:3C:E5:19
Authority key identifier: 6F:33:AF:D4:1E:A0:12:FB:28:03:C7:27:45:23:C8:EC:3F:26:13:11
Certificate issuer: /CN=6f33afd41ea012fb2803c7274523c8ec3f261311
Certificate serial: 01974B1F593B35D13AC44FBA48E2CF380492
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 16:00:34 +0000
Manifest this update: Sat 07 Jun 2025 16:00:34 +0000
Manifest next update: Sun 08 Jun 2025 16:00:34 +0000
Files and hashes: 1: bzOv1B6gEvsoA8cnRSPI7D8mExE.crl (hash: LUje1RdGsD67yYSEUGNCSbwJtVN4p6lNCVKJ/5Z6hyo=)
2: v8tpm7-4VwDQ4BW9MfFdtqRUZ9c.roa (hash: Xcaj7PWNKHBPkwnwanmCNYJ/FSFogXNO8sh3nrmk3Ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 16:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:59:3b:35:d1:3a:c4:4f:ba:48:e2:cf:38:04:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f33afd41ea012fb2803c7274523c8ec3f261311
Validity
Not Before: Jun 7 16:00:34 2025 GMT
Not After : Jun 8 16:00:34 2025 GMT
Subject: CN=c93c7d51401eddc9a13efeb253f3fb06213ce519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b7:1c:78:21:b5:bb:76:6e:63:aa:68:76:05:
8b:11:7d:60:8f:be:09:5b:a7:33:d7:05:5d:8f:1c:
74:c2:47:64:1f:6a:c7:79:ae:b5:71:0f:f4:c9:d4:
e9:d3:02:13:c6:59:44:22:09:60:d2:01:45:76:47:
49:5c:5b:1f:63:ee:90:25:7c:7a:ff:7e:4b:ab:35:
a0:cd:5f:55:79:de:91:ac:47:af:80:c7:3a:96:dd:
fe:e4:05:eb:fb:14:95:8e:c8:f7:a9:41:54:75:04:
6e:d1:f6:66:52:84:85:5e:81:e7:fb:73:00:37:68:
36:12:65:1d:56:93:25:88:db:f6:a1:38:db:89:db:
cc:02:f3:6d:57:50:c8:73:f1:6e:e4:e2:ba:e3:35:
f1:5b:b2:27:09:da:94:19:75:40:69:a0:cb:51:db:
60:aa:27:71:1c:c4:ac:7b:7e:36:09:91:26:b2:4b:
d6:4c:03:63:20:fc:f2:c7:8a:cf:22:7c:02:bb:4a:
12:6a:75:3c:7d:51:2a:71:35:42:5b:36:eb:8e:28:
39:08:3f:a3:01:41:84:c4:15:0e:ea:a0:ef:41:e8:
28:b4:3e:2e:c2:f4:a8:38:8f:c3:e5:1d:60:d6:2e:
c2:93:e5:47:2a:f1:a0:b4:58:c0:23:55:07:60:b1:
40:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:3C:7D:51:40:1E:DD:C9:A1:3E:FE:B2:53:F3:FB:06:21:3C:E5:19
X509v3 Authority Key Identifier:
keyid:6F:33:AF:D4:1E:A0:12:FB:28:03:C7:27:45:23:C8:EC:3F:26:13:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:a5:dd:a6:ba:b2:69:44:d9:9c:e3:11:0d:be:00:d7:df:5a:
46:0f:4d:1b:3e:2d:d6:51:6e:f3:af:22:5d:79:f7:98:9c:e2:
89:90:29:79:d0:ac:4b:04:94:d4:9a:f1:c6:af:74:2b:4b:db:
da:22:da:96:b5:9c:0b:db:f7:a7:40:fe:86:37:42:cd:1e:8e:
c3:09:d5:08:0b:a9:1c:fe:97:cd:e6:5c:f3:1f:e7:5d:38:ec:
b0:bf:60:60:5f:02:88:dc:f6:99:ce:06:50:f5:e9:43:f7:92:
eb:5d:42:99:1f:35:cf:fa:a6:98:79:57:f6:74:4f:07:e9:ee:
57:20:97:18:f2:f9:0d:ce:16:44:14:6d:b7:43:57:db:b9:2d:
6d:97:26:3f:53:6f:55:2e:08:67:0c:5d:97:88:c8:ee:26:61:
42:8f:0c:92:cf:6b:9a:7b:d9:06:84:26:19:0b:8b:31:53:df:
ae:9d:44:61:ae:13:ff:f6:92:3a:25:05:ca:c6:c3:2d:d9:0d:
61:48:43:e1:c5:89:d6:1a:bc:be:a5:ed:06:5c:02:02:f6:89:
1a:7f:d0:0a:37:95:e4:cb:c8:a7:ac:ae:a9:c8:c5:e9:20:4e:
8f:f7:2e:1f:34:34:0c:51:d9:cb:2a:78:2b:8e:97:d7:4e:9e:
51:a3:10:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:25:38 2025 by rpki-client