Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft
File: BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft (raw, json)
Hash identifier: WP+IPIXd3KAZzrQDFdOXMh1sBGBR9qRC92RoKm9ZwLg=
Subject key identifier: FB:E2:C2:11:56:A1:82:00:88:9B:EA:5F:2C:A0:93:23:26:C8:74:8C
Authority key identifier: 06:C3:B8:B5:F3:7E:21:06:82:50:57:1F:4D:B8:3B:47:14:46:8A:2C
Certificate issuer: /CN=06c3b8b5f37e21068250571f4db83b4714468a2c
Certificate serial: 0196D9D379E677F5965E4BAECB115528E155
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft
Manifest number: 1543
Signing time: Fri 16 May 2025 16:00:37 +0000
Manifest this update: Fri 16 May 2025 16:00:37 +0000
Manifest next update: Sat 17 May 2025 16:00:37 +0000
Files and hashes: 1: BsO4tfN-IQaCUFcfTbg7RxRGiiw.crl (hash: JUi/hoGbtoaXkDOicIsGxmbmOTFnKCzU1MOIMoIQu3U=)
2: pa3jfF65O1LeusJmZP9_Hq2CHUA.roa (hash: DB5zR9clFk0B3PVw7uwrAY7t9bq1MxHbsRq/+LHkr9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 16:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d9:d3:79:e6:77:f5:96:5e:4b:ae:cb:11:55:28:e1:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c3b8b5f37e21068250571f4db83b4714468a2c
Validity
Not Before: May 16 16:00:37 2025 GMT
Not After : May 17 16:00:37 2025 GMT
Subject: CN=fbe2c21156a18200889bea5f2ca0932326c8748c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0c:46:06:e3:83:37:e5:3e:7c:3e:d0:73:ea:
ec:1e:6a:9e:64:cf:02:83:a0:11:28:88:1d:01:96:
75:c5:db:55:42:18:ae:54:a7:eb:10:c1:9b:67:50:
00:00:23:e3:b6:b0:18:b6:26:75:f0:79:1f:e9:2d:
fa:89:1a:af:5c:28:86:85:44:2c:94:8e:26:4c:80:
be:1b:0b:1a:7d:e0:74:06:d1:8c:26:04:05:c1:56:
9c:56:4b:61:ae:82:05:85:e0:5b:e3:0a:4f:17:26:
e3:04:33:b3:ad:50:5d:c8:f2:a1:40:cd:1e:b2:5c:
45:ab:f1:a5:0a:ba:5d:23:47:71:33:2a:48:9a:7e:
cc:76:12:37:3c:4e:b9:34:cb:46:30:b7:05:91:38:
f4:83:3c:7d:00:9e:02:17:6c:9b:32:69:30:49:a5:
9a:6b:50:a0:82:29:69:5e:2e:71:0a:c3:69:c8:b3:
d2:a1:4d:b6:1c:d3:40:ae:b4:8e:28:1d:b6:91:ca:
2f:96:75:1d:e9:9e:cd:f1:e9:6e:1f:56:df:76:38:
96:ae:45:80:cf:76:ca:c4:a0:0a:17:f3:1c:13:6f:
fe:4d:06:d2:1c:bd:3b:5b:16:6f:87:d3:dd:82:f4:
22:f1:39:62:00:f3:d4:3c:2f:46:65:26:09:bb:e5:
89:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:E2:C2:11:56:A1:82:00:88:9B:EA:5F:2C:A0:93:23:26:C8:74:8C
X509v3 Authority Key Identifier:
keyid:06:C3:B8:B5:F3:7E:21:06:82:50:57:1F:4D:B8:3B:47:14:46:8A:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:0d:02:1a:27:08:6c:f1:79:aa:19:2e:27:b3:5d:93:c1:14:
fe:08:8e:a2:6f:d4:3f:8b:c8:f3:58:7a:49:20:37:fc:09:93:
11:a6:df:46:62:06:50:7e:2d:70:a1:0d:93:2e:28:f5:7b:e0:
5d:09:62:92:e6:1d:02:d6:a2:80:cc:f6:11:49:8b:ba:02:81:
a1:d2:17:d5:02:01:7c:10:16:53:2d:81:8b:87:df:f3:e6:07:
dc:c6:c1:84:4f:d6:96:6d:20:5a:15:de:db:d3:72:cb:f6:43:
c5:2f:bb:52:5a:bf:9b:3b:2f:0d:fd:d4:19:7d:52:07:2c:dd:
d3:b7:d0:f2:29:47:df:29:fb:2e:9c:38:fb:28:d2:4c:6b:13:
0f:2c:33:e3:d9:6a:f5:45:d2:b4:e3:51:4b:80:f5:ec:31:d3:
54:11:ff:8c:14:62:6f:46:fe:48:31:00:9f:7f:0f:c9:60:02:
aa:f9:c1:4f:1f:87:f6:77:0b:1c:5c:1f:5f:94:f6:73:7f:49:
8b:30:a3:e4:86:73:84:50:f1:e6:78:61:69:e2:3b:13:d2:a4:
15:13:af:ce:6c:20:eb:da:a3:8a:9b:a2:9c:b1:80:2e:e2:e1:
d5:dd:72:a3:8c:a8:23:75:5c:c9:51:9d:ba:05:be:7c:23:c8:
6f:49:68:8b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbZ03nmd/WWXkuuyxFVKOFVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2YzNiOGI1ZjM3ZTIxMDY4MjUwNTcxZjRkYjgzYjQ3MTQ0
NjhhMmMwHhcNMjUwNTE2MTYwMDM3WhcNMjUwNTE3MTYwMDM3WjAzMTEwLwYDVQQD
EyhmYmUyYzIxMTU2YTE4MjAwODg5YmVhNWYyY2EwOTMyMzI2Yzg3NDhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjwxGBuODN+U+fD7Qc+rsHmqeZM8C
g6ARKIgdAZZ1xdtVQhiuVKfrEMGbZ1AAACPjtrAYtiZ18Hkf6S36iRqvXCiGhUQs
lI4mTIC+GwsafeB0BtGMJgQFwVacVkthroIFheBb4wpPFybjBDOzrVBdyPKhQM0e
slxFq/GlCrpdI0dxMypImn7MdhI3PE65NMtGMLcFkTj0gzx9AJ4CF2ybMmkwSaWa
a1CggilpXi5xCsNpyLPSoU22HNNArrSOKB22kcovlnUd6Z7N8eluH1bfdjiWrkWA
z3bKxKAKF/McE2/+TQbSHL07WxZvh9PdgvQi8TliAPPUPC9GZSYJu+WJtQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPviwhFWoYIAiJvqXyygkyMmyHSMMB8GA1UdIwQY
MBaAFAbDuLXzfiEGglBXH024O0cURoosMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnNPNHRmTi1JUWFDVUZjZlRiZzdSeFJHaWl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9lMjQzZDAtMTlmZS00ZGEzLWEyMGEt
ZTZlZmZkM2NlZjMyLzEvQnNPNHRmTi1JUWFDVUZjZlRiZzdSeFJHaWl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9lMjQzZDAtMTlmZS00ZGEzLWEyMGEtZTZlZmZkM2NlZjMy
LzEvQnNPNHRmTi1JUWFDVUZjZlRiZzdSeFJHaWl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATg0CGicI
bPF5qhkuJ7Ndk8EU/giOom/UP4vI81h6SSA3/AmTEabfRmIGUH4tcKENky4o9Xvg
XQlikuYdAtaigMz2EUmLugKBodIX1QIBfBAWUy2Bi4ff8+YH3MbBhE/Wlm0gWhXe
29Nyy/ZDxS+7Ulq/mzsvDf3UGX1SByzd07fQ8ilH3yn7Lpw4+yjSTGsTDywz49lq
9UXStONRS4D17DHTVBH/jBRib0b+SDEAn38PyWACqvnBTx+H9ncLHFwfX5T2c39J
izCj5IZzhFDx5nhhaeI7E9KkFROvzmwg69qjipuinLGALuLh1d1yo4yoI3VcyVGd
ugW+fCPIb0loiw==
-----END CERTIFICATE-----
Generated at Sat May 17 02:26:58 2025 by rpki-client