Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
File: bzOv1B6gEvsoA8cnRSPI7D8mExE.mft (raw, json)
Hash identifier: OiHKpFHuge4OeN4aG3LYde4aIg84CIhbeqy9cEM2EA8=
Subject key identifier: 12:C3:61:45:2D:0B:82:81:E8:B1:54:A2:7F:38:91:46:C5:6C:99:AF
Authority key identifier: 6F:33:AF:D4:1E:A0:12:FB:28:03:C7:27:45:23:C8:EC:3F:26:13:11
Certificate issuer: /CN=6f33afd41ea012fb2803c7274523c8ec3f261311
Certificate serial: 0196466978D73D5D798A63D22897063EF012
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
Manifest number: 14F6
Signing time: Fri 18 Apr 2025 01:00:39 +0000
Manifest this update: Fri 18 Apr 2025 01:00:39 +0000
Manifest next update: Sat 19 Apr 2025 01:00:39 +0000
Files and hashes: 1: bzOv1B6gEvsoA8cnRSPI7D8mExE.crl (hash: d1m3zOQC3S3T1c24HObi0jYe8SS0ynEWHuJBZfiRysc=)
2: v8tpm7-4VwDQ4BW9MfFdtqRUZ9c.roa (hash: Xcaj7PWNKHBPkwnwanmCNYJ/FSFogXNO8sh3nrmk3Ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:46:69:78:d7:3d:5d:79:8a:63:d2:28:97:06:3e:f0:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f33afd41ea012fb2803c7274523c8ec3f261311
Validity
Not Before: Apr 18 01:00:39 2025 GMT
Not After : Apr 19 01:00:39 2025 GMT
Subject: CN=12c361452d0b8281e8b154a27f389146c56c99af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0b:73:15:ce:2c:75:ff:7c:c0:dc:a8:e4:54:
4d:d9:1a:3f:20:b2:92:32:8c:cd:80:b4:a2:fb:58:
af:96:6e:9f:2d:23:c9:5d:63:a4:40:09:c4:bb:4b:
ea:7b:24:cc:73:ca:48:3f:1f:fa:a1:6c:d9:4e:bf:
49:c3:bf:9a:cc:b5:fa:0c:ec:21:f9:80:85:bb:c8:
80:10:a5:e8:e8:4b:70:8c:48:38:ec:97:ed:fa:2a:
cf:51:5b:67:1b:84:47:3c:9d:7b:27:f3:19:f3:bd:
f1:94:05:bb:7f:10:5c:ff:81:84:79:b3:2b:c0:0e:
ab:b4:f5:60:df:d5:4a:dd:74:53:d4:29:2c:b2:c5:
a7:4a:eb:e4:04:c4:1e:03:94:48:d4:ee:4e:a6:a2:
23:25:67:61:4c:f5:a9:4f:6e:4c:c5:4f:54:12:e2:
a5:8a:08:cd:29:e7:97:34:23:0e:18:db:86:95:e9:
08:50:94:a3:9a:7a:b6:58:65:c4:42:11:7f:62:f8:
e3:80:3d:62:9f:b8:d2:0e:c1:03:16:93:a0:06:9c:
ab:5e:a5:5b:57:d3:72:46:6f:f3:d5:32:cf:95:b6:
e3:94:a4:06:92:9f:11:7e:d2:fe:28:99:b9:7f:53:
d3:7d:ae:22:db:94:79:8d:e4:89:ba:49:b8:0b:a9:
1c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:C3:61:45:2D:0B:82:81:E8:B1:54:A2:7F:38:91:46:C5:6C:99:AF
X509v3 Authority Key Identifier:
keyid:6F:33:AF:D4:1E:A0:12:FB:28:03:C7:27:45:23:C8:EC:3F:26:13:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:b8:b1:15:be:07:49:c9:3b:bd:37:47:5b:c6:84:cf:ee:e5:
23:79:da:d9:61:ba:c0:9a:93:f4:d3:22:37:4d:fb:7b:58:b2:
be:2c:ac:12:28:ca:1a:ba:dc:58:e8:66:8b:1d:e7:62:8c:62:
be:7f:b1:ef:69:72:4b:8b:42:bd:71:fa:be:52:f8:5f:01:f2:
5b:72:5d:38:6d:c4:c9:a2:7e:e9:8c:9f:1e:a6:b0:01:0a:c7:
18:39:21:bc:aa:8e:aa:d5:cd:9d:50:f5:1e:0e:29:e2:68:31:
6d:d8:64:fc:9c:5f:f0:3e:ba:e4:0f:f3:8d:8a:c4:15:43:11:
aa:9e:cd:74:86:1a:da:c9:ac:a9:41:04:c4:c8:62:e5:80:96:
a0:cd:66:ac:b9:64:2d:f8:3c:fd:b1:40:c6:b4:1c:71:10:54:
11:90:91:d0:8e:49:58:51:80:01:2e:64:f3:5b:62:9d:03:2e:
c5:ae:e3:e1:dd:63:18:30:5c:2b:d3:10:1c:6f:16:07:b5:70:
d1:30:73:a4:01:8a:70:88:b1:5b:ec:17:01:7f:cd:ba:31:91:
56:0a:9d:a8:c2:72:8a:99:dd:f9:3d:b4:f5:a9:b1:cb:83:b4:
ad:2d:88:b5:35:25:13:66:0b:09:0c:83:a6:79:5c:78:95:eb:
00:7a:73:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZGaXjXPV15imPSKJcGPvASMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMzNhZmQ0MWVhMDEyZmIyODAzYzcyNzQ1MjNjOGVjM2Yy
NjEzMTEwHhcNMjUwNDE4MDEwMDM5WhcNMjUwNDE5MDEwMDM5WjAzMTEwLwYDVQQD
EygxMmMzNjE0NTJkMGI4MjgxZThiMTU0YTI3ZjM4OTE0NmM1NmM5OWFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0wtzFc4sdf98wNyo5FRN2Ro/ILKS
MozNgLSi+1ivlm6fLSPJXWOkQAnEu0vqeyTMc8pIPx/6oWzZTr9Jw7+azLX6DOwh
+YCFu8iAEKXo6EtwjEg47Jft+irPUVtnG4RHPJ17J/MZ873xlAW7fxBc/4GEebMr
wA6rtPVg39VK3XRT1CksssWnSuvkBMQeA5RI1O5OpqIjJWdhTPWpT25MxU9UEuKl
igjNKeeXNCMOGNuGlekIUJSjmnq2WGXEQhF/YvjjgD1in7jSDsEDFpOgBpyrXqVb
V9NyRm/z1TLPlbbjlKQGkp8RftL+KJm5f1PTfa4i25R5jeSJukm4C6kc5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBLDYUUtC4KB6LFUon84kUbFbJmvMB8GA1UdIwQY
MBaAFG8zr9QeoBL7KAPHJ0UjyOw/JhMRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnpPdjFCNmdFdnNvQThjblJTUEk3RDhtRXhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS85ZWFmN2YtYWIwMC00MmIyLTljZTIt
YjM1ODA5OTRhM2IxLzEvYnpPdjFCNmdFdnNvQThjblJTUEk3RDhtRXhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS85ZWFmN2YtYWIwMC00MmIyLTljZTItYjM1ODA5OTRhM2Ix
LzEvYnpPdjFCNmdFdnNvQThjblJTUEk3RDhtRXhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf7ixFb4H
Sck7vTdHW8aEz+7lI3na2WG6wJqT9NMiN037e1iyviysEijKGrrcWOhmix3nYoxi
vn+x72lyS4tCvXH6vlL4XwHyW3JdOG3EyaJ+6YyfHqawAQrHGDkhvKqOqtXNnVD1
Hg4p4mgxbdhk/Jxf8D665A/zjYrEFUMRqp7NdIYa2smsqUEExMhi5YCWoM1mrLlk
Lfg8/bFAxrQccRBUEZCR0I5JWFGAAS5k81tinQMuxa7j4d1jGDBcK9MQHG8WB7Vw
0TBzpAGKcIixW+wXAX/NujGRVgqdqMJyipnd+T209amxy4O0rS2ItTUlE2YLCQyD
pnlceJXrAHpzQA==
-----END CERTIFICATE-----
Generated at Fri Apr 18 06:48:19 2025 by rpki-client