Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
File: bdLO01LwH3613HYZ7XFMa2pceR4.mft (raw, json)
Hash identifier: Q251pGNDe5RDQpVEWlhWo2BIW/68/YLBcqaFM35grQA=
Subject key identifier: BF:41:0D:23:6B:F5:A7:D7:74:BF:FA:B3:9F:F8:59:CE:47:D2:1E:82
Authority key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
Certificate issuer: /CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Certificate serial: 0196BD498BB97459EB42E8FEF5E214DCA5B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
Manifest number: 0131
Signing time: Sun 11 May 2025 03:00:35 +0000
Manifest this update: Sun 11 May 2025 03:00:35 +0000
Manifest next update: Mon 12 May 2025 03:00:35 +0000
Files and hashes: 1: bdLO01LwH3613HYZ7XFMa2pceR4.crl (hash: o/88Jz5csJdbNmn4M6UlrXzLZVZT5KvFZCpiXD9xYus=)
2: ldaG2ZtwFXa0D8MT2zJfF9j3gsg.roa (hash: Iho31engw2p2ICkoCri0OTvpMAFdFfQ9ZJ+brUIBG2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 03:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:49:8b:b9:74:59:eb:42:e8:fe:f5:e2:14:dc:a5:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Validity
Not Before: May 11 03:00:35 2025 GMT
Not After : May 12 03:00:35 2025 GMT
Subject: CN=bf410d236bf5a7d774bffab39ff859ce47d21e82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e9:d5:47:15:f1:cf:01:96:b0:ad:3e:2f:f4:
37:f1:c5:50:45:db:80:9d:74:c1:47:53:78:43:a2:
13:2b:a7:36:dc:63:06:2a:41:58:1d:f0:c7:12:bd:
d8:51:8c:80:17:15:6a:7c:a7:54:53:2a:fb:f2:b1:
27:57:dd:e5:36:1d:14:ef:bb:1a:46:4b:cf:7b:86:
d7:bb:84:78:3d:59:9e:9e:2e:99:9a:1f:b1:1c:dd:
7b:b8:09:a8:bf:ca:9b:99:c2:36:c0:5d:30:1a:f4:
d1:86:d0:b5:84:49:83:89:41:65:72:4f:e1:fc:35:
48:f3:2b:02:91:6c:cc:f5:7f:18:f0:3b:61:8b:bd:
f6:de:d7:e7:de:90:d4:85:01:b7:16:6a:7f:9e:d2:
45:8a:af:f4:43:95:71:ec:73:ac:a7:32:14:2f:d5:
eb:57:5c:b4:e8:3e:97:e7:9b:78:f7:7d:72:e8:0e:
76:c9:0a:d7:e8:44:59:d5:de:7b:ea:e0:17:04:68:
05:c7:3a:0b:b8:ba:05:3b:4b:03:28:4a:d7:e2:82:
ff:32:a3:9c:19:de:59:12:16:77:3d:29:c3:28:a1:
37:a8:3a:ce:8f:33:79:e9:cd:98:a4:5d:bb:82:f6:
17:fc:a2:2a:f3:ee:cb:1c:2f:69:e1:a1:14:61:36:
03:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:41:0D:23:6B:F5:A7:D7:74:BF:FA:B3:9F:F8:59:CE:47:D2:1E:82
X509v3 Authority Key Identifier:
keyid:6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:35:93:6d:73:60:ba:07:d3:23:ec:33:ed:d4:b5:34:67:2b:
dc:8c:3d:ce:5c:a1:22:ad:14:70:8f:25:ce:af:e2:10:4d:7f:
2f:c9:2f:1d:55:5c:e1:e8:85:19:a4:d4:f5:94:49:c8:43:f7:
d8:57:79:38:11:7b:cf:7e:70:22:1d:81:bb:de:a8:1a:16:14:
6c:1e:df:bc:aa:8c:0a:ed:1b:e7:a5:cd:fc:77:cc:5a:be:00:
a8:fb:26:61:c2:64:00:bd:95:88:57:20:f2:51:13:54:a9:f7:
e4:b5:e2:88:40:eb:9c:58:83:99:ea:16:7d:ca:85:ee:05:46:
b9:a0:7b:ac:ed:a4:4e:cf:70:d4:07:50:10:19:4d:fc:f2:4b:
d4:0f:59:6f:23:cc:ae:51:4b:b0:fa:c3:de:da:2c:f2:fd:da:
1a:e7:d5:07:9b:0b:4c:99:f0:7c:94:c8:d0:3a:b0:f9:e2:2d:
62:b1:4a:d3:ec:fd:26:52:ef:32:86:03:55:3d:b7:19:1e:5c:
93:bd:69:88:15:a7:65:91:9c:34:39:4c:9e:3b:3e:f5:86:a7:
c2:12:2c:59:f6:0b:3e:68:0a:6f:34:3d:c4:87:e0:77:f2:a1:
4c:bd:5a:db:fd:90:78:6a:20:41:1b:57:8b:8b:44:44:07:5f:
d9:10:7b:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 12:58:32 2025 by rpki-client