Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
File: BDqcNdnhovTTSnVPom0gNleEchg.mft (raw, json)
Hash identifier: UMmL7b3qI6HuBp/BRtH3T2D9rD3C2I2jvf5S7Tcw6HY=
Subject key identifier: 30:E8:DB:66:66:8D:16:2F:1E:6F:E7:CC:A6:60:1D:D6:F9:29:53:C3
Authority key identifier: 04:3A:9C:35:D9:E1:A2:F4:D3:4A:75:4F:A2:6D:20:36:57:84:72:18
Certificate issuer: /CN=043a9c35d9e1a2f4d34a754fa26d203657847218
Certificate serial: 0196C427B9930CC453D7A78169C02DBEC87E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
Manifest number: 1370
Signing time: Mon 12 May 2025 11:00:59 +0000
Manifest this update: Mon 12 May 2025 11:00:59 +0000
Manifest next update: Tue 13 May 2025 11:00:59 +0000
Files and hashes: 1: BDqcNdnhovTTSnVPom0gNleEchg.crl (hash: /1Jvz+CNUMOq1J1srZj3ynyVzoKRapl+zYG/oXr+gAc=)
2: dXeaBJl10vB-B0zSVkLwNY_iIs4.roa (hash: F86Ia5myX5pjFnoQkxccwMDKgx5XnQXJd15fpxB0f8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 11:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:27:b9:93:0c:c4:53:d7:a7:81:69:c0:2d:be:c8:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=043a9c35d9e1a2f4d34a754fa26d203657847218
Validity
Not Before: May 12 11:00:59 2025 GMT
Not After : May 13 11:00:59 2025 GMT
Subject: CN=30e8db66668d162f1e6fe7cca6601dd6f92953c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cc:bb:77:c2:76:3c:eb:1c:35:cd:98:60:a2:
08:38:78:2b:57:58:98:a3:fe:d4:4a:c2:60:23:f3:
dc:f7:b3:46:d4:a7:59:7e:93:ad:83:0a:bf:80:ff:
4b:e5:2a:c4:6f:dc:47:d6:2b:4e:28:67:4d:50:81:
c8:f9:a5:cb:0a:5e:39:ca:52:34:59:48:91:b5:2f:
85:41:df:2d:36:7e:ce:18:c5:03:23:34:5e:d7:cf:
1d:0f:91:8b:4f:1b:d2:7e:1b:6f:5f:25:db:fe:e6:
4c:c8:28:b6:99:6c:12:70:2c:a9:85:68:b1:d1:ef:
b4:0f:19:38:46:17:51:e4:37:92:3b:2b:79:f8:49:
75:b5:4d:d0:88:52:7b:4b:83:4e:10:10:f5:69:f3:
26:bb:f9:ef:fd:97:6a:f8:bb:23:22:97:92:8c:3c:
8e:d9:ec:eb:07:14:cb:64:68:f6:eb:02:38:8b:47:
68:0e:99:ae:a9:f4:8e:d0:4a:9c:1d:ce:a6:9a:81:
fc:41:22:d1:31:62:9c:af:ce:0e:90:70:17:0f:cf:
6e:89:f8:53:a8:3d:41:69:ab:10:28:b4:04:a0:f4:
4d:bf:8b:8d:ba:e5:2e:bf:49:08:0b:2c:7a:ba:e5:
ed:a9:96:6d:d1:cb:80:6d:73:0a:fd:0a:6c:9f:be:
a0:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:E8:DB:66:66:8D:16:2F:1E:6F:E7:CC:A6:60:1D:D6:F9:29:53:C3
X509v3 Authority Key Identifier:
keyid:04:3A:9C:35:D9:E1:A2:F4:D3:4A:75:4F:A2:6D:20:36:57:84:72:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:f9:5a:13:55:34:c0:e0:d3:b8:12:6a:61:8f:47:fa:c9:55:
f4:54:6b:1a:75:6f:75:ba:c1:d4:b9:d8:47:62:81:eb:00:8d:
2c:7d:82:35:3a:c8:af:56:47:fd:02:c4:22:71:50:e0:de:b8:
f4:0b:e1:d7:e7:04:f9:c6:fd:ee:3c:99:a0:95:43:4a:63:c2:
48:f6:2d:36:6d:bb:dd:42:c7:be:94:07:c0:51:53:35:cc:27:
14:c8:ec:d2:40:cd:1c:74:69:bd:b6:c5:a5:db:42:37:96:b3:
c1:b0:f1:52:6c:36:34:1c:c2:d0:29:f4:75:0b:8f:8e:c1:c0:
5e:e3:15:9a:15:8c:92:19:cf:ad:c0:e4:93:08:fd:5e:8f:ff:
b8:66:c3:9a:22:7e:f5:c7:b1:a7:6a:ba:ba:75:74:63:23:76:
6b:c3:e3:f4:1d:3e:a3:d3:49:e0:45:54:06:3b:7e:49:9d:c5:
bd:56:53:19:00:b4:3c:d4:c4:38:46:ca:08:71:86:af:32:f8:
e8:b2:ec:8e:fb:72:1c:0d:ef:92:93:57:3c:94:8a:5f:1f:89:
8d:59:fc:27:8a:5f:da:b2:a8:a2:a4:ae:16:5b:94:bf:54:69:
0f:23:52:14:ad:12:c6:43:ee:c3:aa:c3:2e:44:30:b3:b9:dd:
f5:21:7e:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbEJ7mTDMRT16eBacAtvsh+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0M2E5YzM1ZDllMWEyZjRkMzRhNzU0ZmEyNmQyMDM2NTc4
NDcyMTgwHhcNMjUwNTEyMTEwMDU5WhcNMjUwNTEzMTEwMDU5WjAzMTEwLwYDVQQD
EygzMGU4ZGI2NjY2OGQxNjJmMWU2ZmU3Y2NhNjYwMWRkNmY5Mjk1M2MzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcy7d8J2POscNc2YYKIIOHgrV1iY
o/7USsJgI/Pc97NG1KdZfpOtgwq/gP9L5SrEb9xH1itOKGdNUIHI+aXLCl45ylI0
WUiRtS+FQd8tNn7OGMUDIzRe188dD5GLTxvSfhtvXyXb/uZMyCi2mWwScCyphWix
0e+0Dxk4RhdR5DeSOyt5+El1tU3QiFJ7S4NOEBD1afMmu/nv/Zdq+LsjIpeSjDyO
2ezrBxTLZGj26wI4i0doDpmuqfSO0EqcHc6mmoH8QSLRMWKcr84OkHAXD89uifhT
qD1BaasQKLQEoPRNv4uNuuUuv0kICyx6uuXtqZZt0cuAbXMK/Qpsn76gbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDDo22ZmjRYvHm/nzKZgHdb5KVPDMB8GA1UdIwQY
MBaAFAQ6nDXZ4aL000p1T6JtIDZXhHIYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQkRxY05kbmhvdlRUU25WUG9tMGdObGVFY2hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8zYjEwNGEtYzAzOS00MmMyLTlmZjEt
ODVjYmQyMDY4ZThmLzEvQkRxY05kbmhvdlRUU25WUG9tMGdObGVFY2hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC8zYjEwNGEtYzAzOS00MmMyLTlmZjEtODVjYmQyMDY4ZThm
LzEvQkRxY05kbmhvdlRUU25WUG9tMGdObGVFY2hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnvlaE1U0
wODTuBJqYY9H+slV9FRrGnVvdbrB1LnYR2KB6wCNLH2CNTrIr1ZH/QLEInFQ4N64
9Avh1+cE+cb97jyZoJVDSmPCSPYtNm273ULHvpQHwFFTNcwnFMjs0kDNHHRpvbbF
pdtCN5azwbDxUmw2NBzC0Cn0dQuPjsHAXuMVmhWMkhnPrcDkkwj9Xo//uGbDmiJ+
9cexp2q6unV0YyN2a8Pj9B0+o9NJ4EVUBjt+SZ3FvVZTGQC0PNTEOEbKCHGGrzL4
6LLsjvtyHA3vkpNXPJSKXx+JjVn8J4pf2rKooqSuFluUv1RpDyNSFK0SxkPuw6rD
LkQws7nd9SF+og==
-----END CERTIFICATE-----
Generated at Mon May 12 17:06:54 2025 by rpki-client