Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.mft
File: bxS5AO_2EKQYf2-9ReO4V9CJagA.mft (raw, json)
Hash identifier: 3419qRC2b6IvKnlMri4hdLFv4WpfHg7yv6+LKRK1w8s=
Subject key identifier: 8D:24:74:DD:32:85:CF:4A:D1:7F:8F:04:E6:A7:0C:61:42:DB:17:AE
Authority key identifier: 6F:14:B9:00:EF:F6:10:A4:18:7F:6F:BD:45:E3:B8:57:D0:89:6A:00
Certificate issuer: /CN=6f14b900eff610a4187f6fbd45e3b857d0896a00
Certificate serial: 0197518F94727C80226BFCFD4A76BB835954
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxS5AO_2EKQYf2-9ReO4V9CJagA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.mft
Manifest number: 1153
Signing time: Sun 08 Jun 2025 22:00:53 +0000
Manifest this update: Sun 08 Jun 2025 22:00:53 +0000
Manifest next update: Mon 09 Jun 2025 22:00:53 +0000
Files and hashes: 1: SypHcS2TCeSzWsz9z2kBBl8vAYI.roa (hash: BOfV4yJp6FkVF9lKaxd4Gzr149eV94r4oonhHz+9iv4=)
2: bxS5AO_2EKQYf2-9ReO4V9CJagA.crl (hash: kK5OrnDHT7uC12IeAFudeJb2e0sq3N4rpnZp2MsCBx8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bxS5AO_2EKQYf2-9ReO4V9CJagA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:8f:94:72:7c:80:22:6b:fc:fd:4a:76:bb:83:59:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f14b900eff610a4187f6fbd45e3b857d0896a00
Validity
Not Before: Jun 8 22:00:53 2025 GMT
Not After : Jun 9 22:00:53 2025 GMT
Subject: CN=8d2474dd3285cf4ad17f8f04e6a70c6142db17ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:60:de:e2:22:67:2d:c6:f8:9d:ca:39:31:33:
ff:e8:9d:5d:54:18:51:ef:f9:e2:e7:f5:95:6e:67:
3f:b5:6d:b1:9a:18:6c:02:c9:81:67:aa:08:cb:69:
06:e0:0a:9f:17:27:d4:76:a8:62:69:48:10:f5:76:
8d:3b:b6:a6:fc:fa:e8:40:61:eb:66:0a:f2:af:0c:
37:40:19:3e:d5:90:7f:9c:9e:43:66:55:f1:3c:03:
a7:f4:17:38:d6:e8:bd:2a:62:6d:90:25:29:ef:50:
ed:07:93:92:4b:af:52:6e:c6:dd:fd:c9:29:8a:8e:
b4:f5:ef:7d:aa:3a:65:1b:05:8c:7d:6f:f0:05:6d:
9a:21:e4:00:b6:46:8e:00:7d:26:c8:6d:57:20:e0:
67:56:61:ca:bb:2e:a5:de:08:46:ae:8d:69:17:04:
c0:96:96:da:a9:b2:2b:4f:b2:03:55:a4:cf:65:ea:
ea:be:f6:31:90:dd:2d:69:59:85:94:41:7a:d9:3c:
2d:f9:48:9b:2f:01:fa:53:eb:a9:0b:25:bc:d3:ae:
12:52:1e:9d:52:de:14:31:88:b6:d2:a4:4f:0c:c5:
82:bf:73:5e:fa:f1:40:1a:68:5d:41:be:01:09:10:
56:d4:8f:24:94:2f:b5:49:23:4a:13:f8:0b:ad:ef:
b0:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:24:74:DD:32:85:CF:4A:D1:7F:8F:04:E6:A7:0C:61:42:DB:17:AE
X509v3 Authority Key Identifier:
keyid:6F:14:B9:00:EF:F6:10:A4:18:7F:6F:BD:45:E3:B8:57:D0:89:6A:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxS5AO_2EKQYf2-9ReO4V9CJagA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:a9:5f:e9:bd:42:b9:03:b1:94:6e:81:91:5a:01:54:5c:df:
7d:17:4d:db:54:f6:0b:88:1e:f3:a9:1b:1b:88:b8:22:02:67:
34:0b:f1:0a:3b:f0:55:86:38:cc:7f:ef:e9:c8:9f:13:d6:5a:
6e:6a:bd:68:73:0c:82:2d:1f:6c:04:d5:9f:4b:06:ee:3f:ea:
bf:4d:5f:65:1b:f8:5a:ac:88:6e:02:79:be:bc:f1:0f:61:68:
ad:af:21:ad:26:5a:1a:7d:78:88:20:3e:48:8c:71:10:fc:9a:
35:65:18:91:1d:1f:19:2b:24:10:df:f5:8c:93:39:b2:e7:c3:
4f:9c:6a:b4:eb:24:a0:a2:08:3e:c2:31:aa:00:4b:e0:a7:62:
02:78:9c:52:a8:b3:ab:da:4d:e5:68:54:84:90:a3:ba:12:98:
0d:ee:5f:ac:82:11:5c:d0:fe:bd:4e:43:c7:2e:ca:a2:33:55:
11:36:79:c2:cf:0b:ff:34:d2:ad:29:3c:a7:f9:6f:db:71:7c:
da:bc:ba:db:16:23:7c:1b:ba:ae:d7:be:99:a1:dc:a5:03:0a:
f4:96:2d:27:9c:91:19:54:4b:ea:49:34:af:f3:26:ce:46:19:
0d:f2:c9:ca:50:6b:3d:25:23:4a:72:39:3c:40:df:16:36:cf:
9b:34:20:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 00:18:49 2025 by rpki-client