Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
File: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft (raw, json)
Hash identifier: SE/VLbGsshb89Q/mklw4BDEEOE7JKBaGcdB8D4nwHoQ=
Subject key identifier: 64:2E:70:C6:A2:4E:5A:FE:92:1B:12:D1:1F:5D:C6:2B:B9:17:5B:64
Authority key identifier: 6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
Certificate issuer: /CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Certificate serial: 0196CBAA184F131A9052E22C2FB6B5C78236
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
Manifest number: 02C8
Signing time: Tue 13 May 2025 22:00:44 +0000
Manifest this update: Tue 13 May 2025 22:00:44 +0000
Manifest next update: Wed 14 May 2025 22:00:44 +0000
Files and hashes: 1: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl (hash: ZNMoC6qRdjddrNB9vBoVzxSL1bs/JFm4H6HgAKjC/8c=)
2: xfuYQjKIwNsH8n8qNl-5nn5swlA.roa (hash: EURGAPm/xAIC/hIpJIK0VPaCfzGhmdAUIaI/It3KKIY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:aa:18:4f:13:1a:90:52:e2:2c:2f:b6:b5:c7:82:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Validity
Not Before: May 13 22:00:44 2025 GMT
Not After : May 14 22:00:44 2025 GMT
Subject: CN=642e70c6a24e5afe921b12d11f5dc62bb9175b64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e2:b3:a7:fe:63:8c:50:d4:bc:57:81:58:6d:
9d:85:b6:00:97:c8:61:3b:99:06:04:67:84:c7:b9:
10:50:bf:5b:62:b2:04:96:aa:5b:03:c3:ca:05:92:
bf:87:a2:c0:3a:34:de:dd:e6:bd:f1:66:65:1a:2e:
e1:e2:0d:92:da:5f:1d:3b:7b:e2:aa:98:d4:0b:e2:
dd:13:18:22:63:45:7a:0f:c0:dd:64:5a:dd:de:22:
c6:b5:5d:37:07:59:64:c3:cf:2a:a2:37:96:4c:95:
a0:80:a1:7b:bf:f6:fb:93:3d:e1:4f:92:2b:37:00:
2c:d6:6e:e0:79:1c:40:9a:4a:58:96:4e:4a:b7:8e:
55:97:a3:fb:42:5a:5d:15:36:ee:02:66:e7:5c:d5:
86:ec:aa:23:db:08:da:79:80:32:43:f2:a4:fb:9d:
40:64:8d:e6:2a:c6:2c:bf:6e:6a:12:88:28:f7:c6:
18:89:e2:06:25:4d:1d:12:7e:0f:7e:fe:39:87:c1:
61:b3:78:9e:db:56:c6:b8:d0:ff:60:62:d0:35:2d:
c9:70:ba:98:86:51:49:cf:dd:b4:b3:fa:46:a6:5e:
f8:de:db:a4:65:55:70:09:5e:50:b0:bc:2d:de:a6:
0b:ef:38:b1:8a:46:c9:f3:0f:7b:3b:5e:52:81:96:
8e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:2E:70:C6:A2:4E:5A:FE:92:1B:12:D1:1F:5D:C6:2B:B9:17:5B:64
X509v3 Authority Key Identifier:
keyid:6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:49:be:d4:2d:4f:05:1a:01:e6:46:8b:cf:d3:38:13:e5:b6:
36:8e:77:06:0a:09:76:c4:c8:c3:a5:da:6d:c5:36:f7:db:23:
b7:89:e1:a6:d0:83:74:ee:c3:ad:1b:8d:9a:88:ba:34:8e:8d:
1a:f4:4a:37:8c:71:1e:5a:d7:6e:48:48:37:18:4b:34:7b:a7:
09:24:d4:3f:b7:1d:cb:63:68:81:02:4d:23:06:3c:2a:39:25:
ee:3e:df:4e:52:a8:9a:b8:db:30:c8:dc:08:a2:1f:5f:b3:90:
06:59:ee:2c:0f:39:fa:f8:cc:79:6b:d6:b5:7a:8b:66:0d:36:
9a:f1:3b:75:96:03:65:07:4a:51:41:cb:47:e2:67:95:1b:2f:
66:2d:7f:5b:83:d2:52:6d:49:c6:ae:cc:1f:a6:3b:84:dc:94:
2c:32:3d:05:78:6d:0e:e4:83:cc:99:78:f0:59:87:9a:72:3c:
89:bf:69:37:8c:4e:89:ce:b7:d2:2c:fb:f2:2f:db:f6:b0:e3:
e1:c3:7a:a1:cd:72:e7:9d:4a:58:b4:de:1f:f0:f4:ed:ae:c1:
59:4d:74:87:be:ea:1d:b5:9b:10:94:6c:84:80:c7:0e:f6:07:
4f:d1:4c:41:f3:62:2b:fc:ee:45:e3:f3:12:1d:25:b4:63:6b:
ab:f7:e4:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 00:12:25 2025 by rpki-client