Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
File: BmNp4nBctDPbBlirZm0ItnsVUdw.mft (raw, json)
Hash identifier: cGHNz/yjBGK2yjkNxBFDrY99LxZhY4J55saFqFtxC8M=
Subject key identifier: 48:29:F2:7A:D3:C5:01:87:1F:5D:47:02:6F:7D:40:99:3A:91:1D:78
Authority key identifier: 06:63:69:E2:70:5C:B4:33:DB:06:58:AB:66:6D:08:B6:7B:15:51:DC
Certificate issuer: /CN=066369e2705cb433db0658ab666d08b67b1551dc
Certificate serial: 01969E2CA20FEB10744B0A0D45048EBDE387
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
Manifest number: 1449
Signing time: Mon 05 May 2025 02:00:47 +0000
Manifest this update: Mon 05 May 2025 02:00:47 +0000
Manifest next update: Tue 06 May 2025 02:00:47 +0000
Files and hashes: 1: BmNp4nBctDPbBlirZm0ItnsVUdw.crl (hash: 1yB8ss5hWDGUm6m2tr0zo95MvCeGeWI86Ncdl9xEYYI=)
2: jCf5g0MNk7dChvixSvofxX26UqQ.roa (hash: EtFQAu+QfH/I3yhnfzxyM188HrZPVxzTPSpuxFHhJDw=)
3: osJ9_DR-TYLXPhwmG2ma04NJTWc.roa (hash: J9O9DuXjiOjoHZT0sNnMyGnclsGi579GC3bqlBQWEYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:2c:a2:0f:eb:10:74:4b:0a:0d:45:04:8e:bd:e3:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=066369e2705cb433db0658ab666d08b67b1551dc
Validity
Not Before: May 5 02:00:47 2025 GMT
Not After : May 6 02:00:47 2025 GMT
Subject: CN=4829f27ad3c501871f5d47026f7d40993a911d78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a1:8b:b3:f2:d6:b5:44:f9:1d:eb:e9:6b:f9:
dc:bc:13:e8:15:63:f8:35:04:7a:70:b7:22:03:bf:
c8:8d:df:62:2b:7b:92:b3:2f:c1:2e:97:ec:7d:3f:
cd:22:3f:26:05:bf:98:1b:4a:45:86:14:cf:91:09:
59:b2:73:cc:99:c6:9a:71:08:81:44:e3:a7:7e:bb:
58:a9:9d:29:93:84:a5:14:64:07:ae:7f:a7:86:0e:
f3:3c:09:eb:0f:a9:82:5a:b3:34:48:9c:16:d3:39:
40:4a:ce:a3:54:76:f9:a5:cb:3e:45:e5:bb:ae:99:
64:35:f7:8f:f9:0f:b6:60:6e:52:df:7f:c0:09:88:
52:b6:52:55:dd:49:ec:e2:03:16:35:64:96:13:97:
4a:dc:0f:ce:b1:63:0c:0b:af:9c:3b:cb:9c:10:2a:
ff:9d:71:aa:07:03:35:b9:ff:27:c9:6e:e2:a0:bb:
18:85:a2:0a:62:0d:9b:dd:20:8c:af:bc:38:12:43:
95:7e:11:47:c8:b4:51:e8:37:2c:4d:de:20:04:22:
3b:76:24:50:74:e9:47:a2:a2:32:56:30:f3:da:3d:
70:90:8a:02:c5:b4:2e:e6:26:f8:17:9f:9f:65:c6:
06:60:ec:68:97:10:49:ad:66:73:46:24:1b:71:07:
0a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:29:F2:7A:D3:C5:01:87:1F:5D:47:02:6F:7D:40:99:3A:91:1D:78
X509v3 Authority Key Identifier:
keyid:06:63:69:E2:70:5C:B4:33:DB:06:58:AB:66:6D:08:B6:7B:15:51:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:ba:dd:e9:12:ca:d0:31:a0:6d:ff:29:f1:82:85:e1:ab:30:
44:f2:94:c3:88:da:ff:9f:bb:3a:fb:1d:a7:2b:9f:36:3b:58:
65:9c:f2:1c:99:f1:3f:fa:35:0a:67:56:26:fb:17:25:43:f0:
f2:3f:cf:25:31:a9:55:3c:ef:0c:f6:84:90:ca:f3:95:e8:13:
9a:0e:04:5a:e6:32:6f:af:79:25:c3:76:84:e1:4f:f7:a1:2b:
42:56:94:76:02:8e:ad:ca:c0:a9:b0:b8:10:7a:d5:8f:44:bb:
84:bd:92:52:f3:5d:e1:96:46:34:22:06:ad:c3:06:5e:91:f4:
fa:4a:f3:4e:59:48:05:b9:c8:77:7a:5e:bb:b8:a1:ee:fe:24:
70:13:a4:97:a0:eb:34:e6:0c:8e:d0:32:3b:74:a4:44:db:a2:
66:a2:6c:e4:0a:84:c5:29:d4:a5:d2:52:ca:1a:22:39:d3:17:
9a:04:b8:75:0a:1e:53:04:c0:a9:d7:18:a4:d5:ec:52:91:6e:
07:2b:85:bc:99:87:9e:c0:ed:8a:03:8f:b5:b8:95:8d:53:c3:
42:81:b3:6f:3d:0e:cb:5f:b3:0c:56:d9:de:28:26:00:d3:02:
55:56:25:82:2a:f4:3b:39:ec:7f:6c:4c:f2:8a:f5:73:90:3f:
71:5a:7e:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 10:17:02 2025 by rpki-client