Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.mft
File: bxS5AO_2EKQYf2-9ReO4V9CJagA.mft (raw, json)
Hash identifier: VP8fmCzi5SxeZg+JN2lPWIxEdpAYBkYCyuGovUpiyfI=
Subject key identifier: E8:1B:65:DA:0D:E9:06:C1:DE:50:38:17:8A:9E:A3:AE:D7:75:55:52
Authority key identifier: 6F:14:B9:00:EF:F6:10:A4:18:7F:6F:BD:45:E3:B8:57:D0:89:6A:00
Certificate issuer: /CN=6f14b900eff610a4187f6fbd45e3b857d0896a00
Certificate serial: 0196586FC2A0F8193FC4C82B19A5F00938C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxS5AO_2EKQYf2-9ReO4V9CJagA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.mft
Manifest number: 10D2
Signing time: Mon 21 Apr 2025 13:00:41 +0000
Manifest this update: Mon 21 Apr 2025 13:00:41 +0000
Manifest next update: Tue 22 Apr 2025 13:00:41 +0000
Files and hashes: 1: SypHcS2TCeSzWsz9z2kBBl8vAYI.roa (hash: BOfV4yJp6FkVF9lKaxd4Gzr149eV94r4oonhHz+9iv4=)
2: bxS5AO_2EKQYf2-9ReO4V9CJagA.crl (hash: PFzaxgveNMJOkq/bnre8TRG8VxYg8rT5qNtrATZUfhM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bxS5AO_2EKQYf2-9ReO4V9CJagA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:6f:c2:a0:f8:19:3f:c4:c8:2b:19:a5:f0:09:38:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f14b900eff610a4187f6fbd45e3b857d0896a00
Validity
Not Before: Apr 21 13:00:41 2025 GMT
Not After : Apr 22 13:00:41 2025 GMT
Subject: CN=e81b65da0de906c1de5038178a9ea3aed7755552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:3b:2d:34:f0:31:9e:cd:6e:64:93:84:c8:a2:
ed:48:05:ac:08:51:6b:9b:4e:a4:c7:30:5a:4c:41:
aa:10:e2:e5:e3:4a:98:79:02:89:b8:ea:fc:0b:8b:
28:44:ab:6f:0e:81:92:ee:a4:9e:7f:18:36:e8:d0:
7e:c5:d0:28:86:8b:01:06:4c:42:8d:64:f9:20:69:
40:81:30:78:62:f2:e3:6a:53:f0:00:e7:96:e3:31:
af:98:69:48:94:67:27:81:22:c3:49:2f:9d:27:78:
18:53:c0:60:05:ca:3d:cc:fe:7a:8f:ef:e7:e6:64:
e4:b0:b5:20:24:80:f6:9c:65:3b:ee:27:6d:84:10:
0d:92:44:43:2b:25:e7:00:67:b6:f3:5b:ab:c4:82:
1d:35:25:59:a5:00:a2:b1:d2:3f:75:a0:46:f1:f8:
f3:0b:4c:5b:48:e1:41:43:3f:bd:ea:c8:48:24:79:
55:ef:81:2c:98:db:5c:b2:68:bf:3f:2b:b7:d5:f8:
0d:c0:79:c3:37:a5:56:92:bd:be:1a:0e:09:d9:41:
89:96:d2:34:f2:51:59:48:59:70:16:d6:1c:15:21:
5c:74:13:80:4e:bd:4e:80:1e:0f:fb:10:ec:d3:2e:
76:b2:ec:fe:83:bc:79:1e:fa:ec:cb:93:8f:2b:4b:
d4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:1B:65:DA:0D:E9:06:C1:DE:50:38:17:8A:9E:A3:AE:D7:75:55:52
X509v3 Authority Key Identifier:
keyid:6F:14:B9:00:EF:F6:10:A4:18:7F:6F:BD:45:E3:B8:57:D0:89:6A:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxS5AO_2EKQYf2-9ReO4V9CJagA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:9b:6a:ad:ee:53:56:24:ff:2c:f2:ba:91:ae:29:36:9a:09:
bb:c1:ed:5c:17:88:6a:3f:1f:ef:d5:41:69:02:bb:1e:1e:bd:
1f:60:4e:ad:b4:8a:57:b7:db:76:f0:23:90:b5:de:4b:ab:61:
6e:68:01:00:bd:14:fc:23:6a:c7:b4:38:19:82:9c:2f:ce:82:
9d:14:83:d7:5e:3a:a4:bb:57:90:e0:96:06:61:5d:d1:7a:65:
36:41:f9:ea:c2:59:d4:31:24:2c:94:d3:18:a8:2e:d5:70:35:
dd:9e:1a:46:58:49:65:fb:13:e4:6b:b6:33:0d:f0:02:9f:1e:
fa:27:44:dd:4b:36:f2:88:89:ca:a9:07:1e:00:a4:0f:da:45:
c3:03:64:da:5e:5c:a5:a6:aa:9b:63:a7:61:79:b9:9a:85:81:
26:ad:01:82:6f:c2:cc:2c:48:75:a2:a4:cc:fa:7a:39:73:63:
61:7f:75:44:3c:f3:38:9f:0a:99:1d:6d:a3:17:9c:d6:88:e7:
65:55:2e:10:3f:14:7c:b2:7c:6d:7c:7b:35:78:72:42:47:da:
2a:d6:a4:41:4d:94:ba:5f:b6:05:04:50:56:27:61:37:10:9b:
32:10:6d:b7:2e:11:83:2c:47:18:54:39:8a:05:7b:71:fe:14:
ce:96:eb:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:04:06 2025 by rpki-client