Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
File: BmVsWtlzg3LVTAN-OX81vpqpJNs.mft (raw, json)
Hash identifier: mDBRvTKgyM1N2ehXwGvC20HwUZ75bmX24Oih8Kd4DNk=
Subject key identifier: 98:EF:75:A7:40:65:62:CC:DD:0D:AB:B0:52:7F:85:1B:17:D9:21:63
Authority key identifier: 06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
Certificate issuer: /CN=06656c5ad9738372d54c037e397f35be9aa924db
Certificate serial: 0196C94DB35ECBCC44D21967C70EC4056D51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
Manifest number: 0108
Signing time: Tue 13 May 2025 11:00:34 +0000
Manifest this update: Tue 13 May 2025 11:00:34 +0000
Manifest next update: Wed 14 May 2025 11:00:34 +0000
Files and hashes: 1: BOJlFcCNxlleMHUbR9TjmHCDeZc.roa (hash: ujITDNQNM0fpryFmlYjLZ0Q/wbil/+me/IAh88EFBg8=)
2: BmVsWtlzg3LVTAN-OX81vpqpJNs.crl (hash: XivJad1yodu+0dvypiJkmTaxev7ACNFPvM9Q5SprVtg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 11:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:4d:b3:5e:cb:cc:44:d2:19:67:c7:0e:c4:05:6d:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06656c5ad9738372d54c037e397f35be9aa924db
Validity
Not Before: May 13 11:00:34 2025 GMT
Not After : May 14 11:00:34 2025 GMT
Subject: CN=98ef75a7406562ccdd0dabb0527f851b17d92163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:52:55:b5:88:f8:16:ea:b0:37:68:cb:a5:ae:
b7:a6:56:6d:28:4c:3d:85:cd:38:bc:cf:5e:dd:07:
43:cf:fd:46:96:b7:00:22:31:4d:d7:05:31:6c:8a:
f3:ff:8a:28:6a:58:45:f1:d6:0e:9d:ff:2a:71:75:
30:0e:db:67:05:0c:2e:34:f7:23:5d:e7:d1:b3:6e:
de:36:6a:8b:04:f0:8e:d4:cb:e6:7e:d9:bb:88:1d:
7d:5e:79:c5:69:5e:25:d0:91:e8:39:d1:b7:46:f7:
94:1d:22:4b:40:98:b5:ac:3d:f4:2c:13:a6:08:6f:
3c:ab:f8:b1:71:49:16:8f:f0:ea:fe:2e:56:c1:ec:
dd:fa:96:89:34:32:b0:44:11:95:5d:8a:1e:57:ee:
c3:85:ad:c8:be:a6:06:0d:d8:c9:08:d6:fa:fa:ed:
6c:fe:26:99:bc:a3:4a:e1:de:65:a1:99:06:8c:1c:
6e:b9:ac:93:0b:9b:05:78:5d:02:cc:46:91:9e:c2:
2c:b5:b9:33:28:d8:50:a5:df:c1:32:e1:a8:7b:13:
b8:2a:4c:9f:1b:fc:77:ff:94:11:27:ae:f9:6e:db:
01:3c:f0:43:ef:19:a5:9f:ed:b6:7c:66:c2:bc:26:
ef:6d:2a:20:b1:5c:bd:1f:d4:d0:f6:47:30:d9:bd:
4d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:EF:75:A7:40:65:62:CC:DD:0D:AB:B0:52:7F:85:1B:17:D9:21:63
X509v3 Authority Key Identifier:
keyid:06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:1b:c9:dd:c9:86:26:00:47:cf:50:d6:ef:d7:c4:a0:64:6d:
cc:09:fb:a4:4f:4f:1f:d8:d1:eb:ff:e8:e5:07:b2:75:a0:38:
54:22:47:07:ae:86:5f:d6:2d:3a:43:34:6b:ba:33:80:f8:8c:
80:82:4c:b9:06:78:85:0c:8e:6a:bf:19:69:f4:65:71:ca:c1:
f2:2a:8b:4c:63:f7:47:af:fa:c8:e4:47:a2:78:c7:00:d1:32:
17:77:b4:5e:e6:80:a3:9a:8c:b7:f7:e8:af:f8:6f:cf:c5:58:
d2:88:4e:5e:dd:e4:8a:99:70:4e:1d:8a:f9:b1:37:99:85:55:
4b:17:40:89:61:b8:f5:65:e9:cc:e3:d6:64:76:78:35:40:60:
b0:e8:f3:89:ee:ea:d6:37:e2:6c:80:48:d1:56:07:28:77:60:
ce:f5:bc:7e:3d:ee:ce:47:3c:ee:9c:a7:50:35:dd:0d:25:17:
81:b6:26:4f:88:ac:80:f2:70:5b:4b:f2:a8:ee:88:f6:33:b6:
8f:e8:59:87:7b:14:f9:0e:3a:cb:fd:51:9c:a7:be:e7:53:ea:
65:68:55:cf:18:0b:74:24:7d:92:3e:19:90:a1:d5:fc:86:26:
d9:1f:8a:d9:14:1c:b3:3c:60:b4:0c:7b:bc:60:42:53:f7:9d:
79:55:8d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 20:34:47 2025 by rpki-client