Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/51d6dd-6ce8-466d-a2d4-dc17e53caccb/1/bXoBv9NLsT37elNXId7EAc2TEtk.mft
File: bXoBv9NLsT37elNXId7EAc2TEtk.mft (raw, json)
Hash identifier: vhcitRCv4X/A2g7HKLwqbO4BrBeHGZrvSTr73ZyvskE=
Subject key identifier: 85:FB:C5:25:6E:C9:F4:2C:B7:F3:CB:9A:AD:E7:2B:C3:85:DC:1C:E9
Authority key identifier: 6D:7A:01:BF:D3:4B:B1:3D:FB:7A:53:57:21:DE:C4:01:CD:93:12:D9
Certificate issuer: /CN=6d7a01bfd34bb13dfb7a535721dec401cd9312d9
Certificate serial: 01964DEBA455EB6BF2D399AC2A6217693510
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXoBv9NLsT37elNXId7EAc2TEtk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/51d6dd-6ce8-466d-a2d4-dc17e53caccb/1/bXoBv9NLsT37elNXId7EAc2TEtk.mft
Manifest number: 0DFB
Signing time: Sat 19 Apr 2025 12:00:10 +0000
Manifest this update: Sat 19 Apr 2025 12:00:10 +0000
Manifest next update: Sun 20 Apr 2025 12:00:10 +0000
Files and hashes: 1: J1daZ0b9QqDyeaqVSA6rdJN33m0.roa (hash: m2mGCz+ed0huZCoFC3yQqfv0T01L6xVokVoZSaSYXMo=)
2: bXoBv9NLsT37elNXId7EAc2TEtk.crl (hash: RH3F6F8x2/kLgfx82zvLvrhGNlh+MvcRN16E650xgI8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/51d6dd-6ce8-466d-a2d4-dc17e53caccb/1/bXoBv9NLsT37elNXId7EAc2TEtk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/51d6dd-6ce8-466d-a2d4-dc17e53caccb/1/bXoBv9NLsT37elNXId7EAc2TEtk.mft
rsync://rpki.ripe.net/repository/DEFAULT/bXoBv9NLsT37elNXId7EAc2TEtk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:eb:a4:55:eb:6b:f2:d3:99:ac:2a:62:17:69:35:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d7a01bfd34bb13dfb7a535721dec401cd9312d9
Validity
Not Before: Apr 19 12:00:10 2025 GMT
Not After : Apr 20 12:00:10 2025 GMT
Subject: CN=85fbc5256ec9f42cb7f3cb9aade72bc385dc1ce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c4:f2:41:6d:65:9f:e0:f2:1e:2a:c9:e0:e5:
b2:80:c1:49:32:7d:80:1e:50:69:4d:cc:e1:ec:75:
50:f9:55:88:a0:8f:ff:9a:93:8a:86:7a:81:73:75:
31:1f:3a:51:3d:a1:82:d6:ba:11:37:a8:8f:9c:21:
75:09:21:98:f6:85:04:2f:fb:0f:10:b8:f4:47:4b:
2b:1d:09:82:72:78:4f:47:86:2c:82:c6:c4:df:ac:
c7:b7:b0:8e:28:70:30:93:17:61:ee:ae:6f:88:44:
64:62:5b:ef:96:ae:bb:32:e2:6f:a3:1e:03:3b:a3:
bc:09:1e:9f:95:40:c0:fc:cc:ee:f3:1d:4a:3e:b3:
36:0f:a3:34:5f:b3:35:a8:eb:02:7c:fb:87:59:06:
93:1e:4f:2c:90:34:25:a7:a9:48:be:5b:4f:df:80:
b8:01:4e:cc:78:71:78:a5:21:b5:d7:14:5a:74:91:
ed:1a:0e:f4:be:11:52:3f:c8:56:bf:2d:8d:55:32:
92:1b:e4:b7:03:2c:cc:e3:09:ed:4d:dd:bb:f6:9f:
cf:8b:91:88:5b:78:36:de:ed:93:b3:43:95:1c:49:
c8:da:a4:41:37:27:c8:da:42:22:88:e4:3f:eb:73:
4a:45:8c:2c:df:a1:ba:00:84:79:3c:30:6e:53:9b:
ed:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:FB:C5:25:6E:C9:F4:2C:B7:F3:CB:9A:AD:E7:2B:C3:85:DC:1C:E9
X509v3 Authority Key Identifier:
keyid:6D:7A:01:BF:D3:4B:B1:3D:FB:7A:53:57:21:DE:C4:01:CD:93:12:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXoBv9NLsT37elNXId7EAc2TEtk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/51d6dd-6ce8-466d-a2d4-dc17e53caccb/1/bXoBv9NLsT37elNXId7EAc2TEtk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/51d6dd-6ce8-466d-a2d4-dc17e53caccb/1/bXoBv9NLsT37elNXId7EAc2TEtk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:e1:4f:81:a0:a9:8d:48:b9:bc:17:0d:88:c1:8a:e9:3e:4c:
df:89:30:9c:d2:d3:91:74:a6:34:10:da:3d:ed:bc:82:e0:1e:
2a:26:a9:be:4a:4f:4d:1c:61:37:91:da:f2:54:1e:49:da:a3:
f5:b6:25:93:28:35:90:bb:13:b6:ec:8a:49:70:92:39:63:a2:
20:b7:f7:18:55:11:e2:88:ca:6a:27:74:c6:a2:63:f2:97:08:
c5:06:cd:76:c4:43:99:a5:d3:6e:a9:98:4e:41:5f:7b:e9:d8:
65:0f:2c:24:84:f7:3d:ba:ad:1d:3c:ab:d1:15:2e:56:e7:1d:
be:8b:d9:a9:27:a0:f7:0b:5e:93:61:78:32:68:4c:62:d4:bf:
8b:75:d8:9b:6e:cb:c3:27:bd:87:71:c5:39:29:82:05:29:e3:
4a:d1:5b:68:c7:ef:ff:23:18:73:91:6c:54:b1:7b:be:af:4e:
83:fd:d0:9f:7e:ff:d7:a8:5a:c3:08:72:c7:31:d0:45:f4:a9:
00:2e:5f:d2:a0:f7:dd:50:e3:10:72:40:fd:6c:74:94:96:34:
de:ea:4e:a8:a3:cb:57:6f:5c:be:09:6b:6e:55:46:c2:85:fc:
48:a5:1c:b8:d6:40:8d:30:3c:b6:c9:37:d4:83:4a:7c:b7:24:
14:f7:5e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:16:07 2025 by rpki-client