Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft
File: bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft (raw, json)
Hash identifier: vRmDnKe/o1aLdZlOSn+hn0ezIYvjb85seml1AfsV9zE=
Subject key identifier: 89:92:5A:DF:52:9F:5B:DE:FA:99:BD:81:87:15:DC:DD:C4:BA:60:E0
Authority key identifier: 6C:95:FD:CA:36:7B:CE:19:E2:F2:53:B7:8F:36:08:FF:34:14:28:C9
Certificate issuer: /CN=6c95fdca367bce19e2f253b78f3608ff341428c9
Certificate serial: 0196C4276FCB7674C449DBDE5CB3E6721E11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJX9yjZ7zhni8lO3jzYI_zQUKMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft
Manifest number: 0102
Signing time: Mon 12 May 2025 11:00:40 +0000
Manifest this update: Mon 12 May 2025 11:00:40 +0000
Manifest next update: Tue 13 May 2025 11:00:40 +0000
Files and hashes: 1: Lf1xzTXAc6SiNDJtIVl8iWMf5b4.roa (hash: Mlu5t33KkThbOioHblpilqA5fDGAJvYvW4onNzjvD5s=)
2: bJX9yjZ7zhni8lO3jzYI_zQUKMk.crl (hash: pHBEUmBgZ7s/MJKGdXQIpqH5BwsDXhexkCaAqTCiN8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJX9yjZ7zhni8lO3jzYI_zQUKMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 11:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:27:6f:cb:76:74:c4:49:db:de:5c:b3:e6:72:1e:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c95fdca367bce19e2f253b78f3608ff341428c9
Validity
Not Before: May 12 11:00:40 2025 GMT
Not After : May 13 11:00:40 2025 GMT
Subject: CN=89925adf529f5bdefa99bd818715dcddc4ba60e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ec:e9:a0:1d:fe:19:57:20:50:92:8a:b5:73:
fa:09:e5:51:bf:02:6f:76:52:d9:87:79:b6:e8:61:
24:77:bf:ec:a8:8b:ae:35:14:29:5e:97:a4:42:97:
41:2e:70:47:46:28:9f:ca:60:ce:0b:16:21:a6:f1:
d5:87:a6:23:65:1d:6b:16:c1:59:64:8d:e0:f9:82:
0b:86:18:6e:d3:e3:34:26:b1:07:42:5e:c7:b6:c1:
fc:05:f9:7b:f3:29:73:a2:cf:ff:ce:b3:c5:fc:bf:
47:6a:99:b3:5a:04:a9:34:0a:c4:a6:c8:30:96:33:
ed:ed:98:e4:7b:e4:7b:21:59:30:e8:09:c3:5c:ad:
de:12:13:43:09:98:91:ec:d7:45:76:20:f7:26:4c:
c9:cc:a1:a8:7f:87:e5:c7:bf:04:de:e1:3e:f3:ba:
33:cc:f9:55:3b:b5:03:42:14:be:1d:0d:c4:b5:20:
9a:ae:d2:a7:c2:9b:74:49:12:28:22:0a:00:f2:23:
a4:6a:30:23:99:f3:e6:99:02:cd:b3:ce:e4:62:31:
b0:4b:85:86:e0:64:40:03:75:3c:c6:4f:d5:8b:e0:
10:e7:0a:17:f7:d0:15:57:70:57:27:35:a8:df:c7:
05:2c:77:f5:8b:c5:b5:26:a8:e8:53:f2:a5:57:37:
49:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:92:5A:DF:52:9F:5B:DE:FA:99:BD:81:87:15:DC:DD:C4:BA:60:E0
X509v3 Authority Key Identifier:
keyid:6C:95:FD:CA:36:7B:CE:19:E2:F2:53:B7:8F:36:08:FF:34:14:28:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJX9yjZ7zhni8lO3jzYI_zQUKMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:a7:6c:f7:88:c6:8d:01:41:9d:c8:59:40:d9:60:de:10:3d:
aa:3f:56:1c:ac:34:2a:e9:4a:ae:18:3a:cf:11:fc:2b:35:ca:
9b:6e:ec:19:fd:9d:11:0c:ca:c1:53:7f:21:07:92:f1:43:8e:
78:70:d5:1d:4e:65:cd:f1:29:6f:38:ef:91:0f:dd:ca:ef:27:
b8:52:ac:f4:48:7e:9d:9c:ee:59:2e:13:f3:fe:4b:c4:31:80:
10:20:be:ba:f5:e7:0f:61:db:f7:10:00:30:43:c2:14:ea:db:
fd:ee:19:92:18:fd:51:19:13:d7:9c:63:65:01:e7:15:37:1d:
f9:46:be:81:39:a9:d4:fd:14:1e:81:b0:72:ab:2b:a7:d8:9f:
7b:f9:fc:7d:af:43:92:b9:6c:c9:80:0f:a1:9e:b1:65:a3:b3:
b0:89:07:2f:08:66:1a:99:2a:77:f4:a4:bb:7b:36:fc:ce:ca:
df:77:56:a2:a8:d6:e6:f2:c9:fa:a5:b9:b9:90:d0:b4:93:42:
e7:9c:72:8c:88:48:f5:8e:be:eb:ff:35:aa:55:2d:78:04:2d:
c3:69:fc:72:a1:b1:20:cf:64:bf:3f:7e:7e:3d:60:e7:94:e0:
2a:00:bf:8b:0d:aa:81:5c:16:bc:5a:ea:7a:48:d9:47:9b:c4:
48:54:c5:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 19:24:49 2025 by rpki-client