Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
File: bf7PoOZpJZXPvqUmYHbo5T79lGE.mft (raw, json)
Hash identifier: sUKl8WxN8akWtDAc0WE3bFbFhRY/aLMVO++O8pc2LC0=
Subject key identifier: 91:CA:5A:29:EF:51:8C:89:F8:1C:52:30:B9:90:F7:8B:03:C8:A1:E6
Authority key identifier: 6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
Certificate issuer: /CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Certificate serial: 01964DB4C9566990C39B1ABF3D798FCDE2E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
Manifest number: 0D94
Signing time: Sat 19 Apr 2025 11:00:15 +0000
Manifest this update: Sat 19 Apr 2025 11:00:15 +0000
Manifest next update: Sun 20 Apr 2025 11:00:15 +0000
Files and hashes: 1: 8JVtNiH742v8cd9f6HB8HsLnHqc.roa (hash: en+F0ICvUKwr0qrq9ILAxUcATJZUAoxaoEpiR8+7A9M=)
2: GzE_PF4lRurN113fXZhaZRzDRYM.roa (hash: b8RRWDnlm3gv9H+fLurnrwDRk5Rn7Ig722jB2SuqPOg=)
3: O1rsJf608w55c6uzax6qELf-V10.roa (hash: eTLBCFWFUORcPgLfQZK3GxMskhs+vxERoSr/SRYqzwQ=)
4: W0ytEpzp3PGLQgQDEe1kmGvhrx8.roa (hash: Rx2fPbh4hFdhpWyNIm7FiwaS49uoStv5r5BjlCfRWrA=)
5: bf7PoOZpJZXPvqUmYHbo5T79lGE.crl (hash: ChMGnaeXhcjTqJutV6QI22/wX2BrVlxzjHe9pivABe8=)
6: qfLtpL022R2vNSfmfA6qR_jq_6k.roa (hash: 99hvsDHWBX451/OxAu/FvLR5vG5KLyjpmEGTCKGnQ6c=)
7: s5XW1sPa3LVHkVbaHF8KM4lyi3k.roa (hash: kYlioc7r4tkKKuXQwZeSGnhgTGO7wN8mLbsZJSv0XnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:b4:c9:56:69:90:c3:9b:1a:bf:3d:79:8f:cd:e2:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Validity
Not Before: Apr 19 11:00:15 2025 GMT
Not After : Apr 20 11:00:15 2025 GMT
Subject: CN=91ca5a29ef518c89f81c5230b990f78b03c8a1e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:dd:4d:4e:18:06:03:0f:f7:75:d7:b7:28:be:
a7:b0:78:4b:17:83:73:13:ef:d6:f6:c6:0d:2a:a6:
d4:40:07:ce:c0:9e:76:1a:08:5f:de:94:ef:c2:a7:
ba:d7:59:cc:1a:2a:e5:e9:11:08:c4:01:f4:27:b5:
05:3e:2f:a3:44:cf:0b:8b:38:90:fe:03:73:2d:42:
65:e8:cb:40:e1:57:5a:d9:9b:e1:12:73:78:4d:e9:
38:96:c4:40:8b:a0:62:ce:14:17:76:f7:86:90:b0:
08:6e:12:c2:f4:a5:a0:f4:f4:52:87:2c:3e:3d:68:
b1:3b:38:f4:65:7e:09:74:8b:e7:30:ac:68:e2:a5:
37:c4:8d:98:dc:f5:4a:98:7e:dc:ec:78:4a:15:db:
38:39:89:c7:b1:dc:e8:27:11:23:e4:0e:2f:fb:47:
da:ac:d8:3a:7b:10:98:a3:d2:63:45:f5:9b:93:5e:
b6:e5:db:a5:1f:52:bf:0f:53:92:f9:5a:93:be:93:
40:f9:a0:93:97:3f:54:a0:af:00:29:29:8f:1a:57:
54:54:6e:79:ef:a4:24:4d:26:e3:9a:e3:38:53:b4:
7f:16:41:6d:5e:a4:1c:58:d5:72:65:72:1f:b5:9a:
60:d2:b0:ff:d6:53:68:d5:05:69:18:30:ba:b3:e2:
5c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:CA:5A:29:EF:51:8C:89:F8:1C:52:30:B9:90:F7:8B:03:C8:A1:E6
X509v3 Authority Key Identifier:
keyid:6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:83:a6:48:09:45:66:01:2a:83:93:c8:04:2e:43:f2:41:c6:
59:70:18:d0:2d:aa:6d:64:e3:b6:4b:5c:e7:09:d2:09:98:9c:
0b:43:82:96:41:21:49:d8:46:18:c8:8a:87:25:5e:df:a8:03:
bf:db:04:62:9c:14:45:b6:5e:51:3d:5d:6f:31:79:de:bb:65:
c0:a6:83:eb:2e:d6:e8:33:87:96:db:90:a8:ed:48:36:bf:5f:
bb:40:3a:8d:24:da:7f:7e:52:50:08:8f:7f:18:5f:ab:44:ff:
c9:2a:c5:7f:39:16:61:d6:11:97:b4:a8:2e:db:1d:98:b6:fe:
df:0b:97:2d:81:16:93:7b:e3:46:17:ae:7d:d5:77:f9:af:71:
6e:8d:d2:9f:30:f9:c4:ad:8c:2c:95:ae:ea:95:dd:99:6b:ed:
84:a0:a0:4d:a6:85:eb:38:44:c3:f5:8b:6c:85:cf:51:3a:92:
c0:b0:70:45:45:9e:5a:c2:0b:6c:3c:c8:b6:a1:a5:0c:f3:f5:
c1:ad:bc:70:81:24:3a:e6:6a:f3:d6:29:44:32:19:bd:75:dd:
75:3c:e2:45:8d:de:2d:25:46:97:c1:d0:cd:19:84:ba:39:f0:
fe:68:f4:dd:bb:e1:76:8e:54:51:c0:2e:46:4c:7b:79:d7:82:
13:ed:90:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:42:05 2025 by rpki-client