Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
File: bZOet0q7zSInwhkqoqN-bcuJjlM.mft (raw, json)
Hash identifier: PYW0IX+ROpQnT0yVM/x+FZlTHYPoV9+2E3CdvjNwRyc=
Subject key identifier: 4C:67:C4:0D:E2:CF:76:B2:C4:5F:7A:BF:88:44:1F:4D:7B:33:4A:E7
Authority key identifier: 6D:93:9E:B7:4A:BB:CD:22:27:C2:19:2A:A2:A3:7E:6D:CB:89:8E:53
Certificate issuer: /CN=6d939eb74abbcd2227c2192aa2a37e6dcb898e53
Certificate serial: 01964E59EA867787E682D33684A96217DBF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 14:00:37 +0000
Manifest this update: Sat 19 Apr 2025 14:00:37 +0000
Manifest next update: Sun 20 Apr 2025 14:00:37 +0000
Files and hashes: 1: O1oreHXoGfE0x_DduepnzXbv1jQ.roa (hash: YJRrGXYLhqb/8S1lAURaXg16hfYVh9EAfo6ckQiEqy0=)
2: bZOet0q7zSInwhkqoqN-bcuJjlM.crl (hash: kB1sfX4RFe5DRJytCLHEDAesJIeEG68oUQ76tdzkYB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:59:ea:86:77:87:e6:82:d3:36:84:a9:62:17:db:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d939eb74abbcd2227c2192aa2a37e6dcb898e53
Validity
Not Before: Apr 19 14:00:37 2025 GMT
Not After : Apr 20 14:00:37 2025 GMT
Subject: CN=4c67c40de2cf76b2c45f7abf88441f4d7b334ae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:62:6a:b2:3b:08:fe:13:a3:73:7e:52:59:45:
1a:5b:07:c2:92:0f:fb:57:c4:9a:a2:bb:64:e8:e2:
65:5d:4b:69:d1:b6:37:3c:5b:bc:59:ad:cc:de:9d:
5c:84:38:bc:4f:02:a7:ca:fe:fa:07:6e:13:33:36:
c3:01:72:37:ed:67:bf:38:6e:25:1d:11:2c:46:01:
71:e1:46:4f:b4:64:51:8c:21:15:28:ea:4a:e0:40:
0f:29:6f:4b:b5:84:e7:b1:3c:1a:15:85:f0:dd:a2:
7d:ae:ca:30:74:1e:ae:7b:7f:9b:dd:ca:07:85:10:
a7:08:ca:74:a7:95:37:e5:67:a8:74:3a:3b:5e:f5:
5f:8e:5c:1c:a2:3f:6b:ae:e1:6c:bd:d8:df:00:a5:
ce:ea:35:48:db:94:20:7f:32:b1:a0:48:a4:10:e2:
af:03:11:4a:08:bc:d1:14:52:87:d5:cb:cd:9e:0f:
29:cf:40:68:6d:2c:d4:cb:d6:1b:57:ce:6e:2d:a0:
e5:b0:e9:10:95:8a:af:10:92:b2:c2:2d:64:ce:b9:
c6:b5:38:b1:ca:e8:aa:e9:f1:47:ba:c5:94:b9:03:
1b:fb:3c:ff:9c:69:10:ed:17:80:ce:cd:41:cc:fd:
d4:30:54:04:28:77:02:35:cc:2f:78:ca:28:5f:e9:
bc:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:67:C4:0D:E2:CF:76:B2:C4:5F:7A:BF:88:44:1F:4D:7B:33:4A:E7
X509v3 Authority Key Identifier:
keyid:6D:93:9E:B7:4A:BB:CD:22:27:C2:19:2A:A2:A3:7E:6D:CB:89:8E:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:de:e7:ec:4d:eb:71:06:f2:99:b3:0b:e6:c3:f1:60:e1:41:
86:06:f3:a0:eb:b3:23:c9:40:80:5d:e2:36:eb:58:f6:29:e0:
d6:5c:86:e0:bd:cc:90:78:39:f3:21:2d:95:4b:86:d6:ff:a5:
8a:9d:c0:a6:60:d9:7b:23:53:77:04:73:93:be:fd:27:a7:1b:
f6:c3:ef:42:c0:76:d6:b6:f0:c7:18:75:6f:87:43:a3:0f:b9:
cc:d3:58:f4:e4:2d:f7:4a:b4:81:61:8c:49:01:b6:74:ad:07:
05:55:13:e5:a8:5d:ef:02:8c:00:db:64:d5:c4:ef:da:d5:f8:
74:c8:02:ec:48:3a:3a:87:cd:c7:b4:83:bb:61:a7:d7:8b:fa:
58:f7:ed:f8:d9:e5:5d:fe:ff:12:ce:7a:94:8c:9d:5d:ad:62:
41:d2:e0:83:ed:0b:bc:c9:72:9b:1c:42:88:f2:0a:f8:d8:7d:
e6:1b:8b:7a:52:95:31:20:7b:01:1a:41:f4:7c:50:c4:0a:f3:
2f:71:84:0f:8e:ef:27:fb:44:64:cb:a4:fb:ad:0c:a1:3e:06:
3e:03:f4:41:04:2f:f1:02:55:60:c0:4f:54:e7:54:d3:9e:86:
2c:2d:f5:0c:c0:f1:39:0b:78:66:01:89:5e:3b:38:cb:e9:66:
76:38:9a:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:09:10 2025 by rpki-client