Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
File: BaO2FkB7l-JhFjNId8aqkoqq7rI.mft (raw, json)
Hash identifier: wGGKOzGWy0N+D3iThnrAQDmipKiVDqUwFkVUyRBkwdQ=
Subject key identifier: 6C:E7:A8:C2:BF:37:1C:03:8E:D0:F6:8F:E8:33:E5:6F:B9:3A:D5:69
Authority key identifier: 05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
Certificate issuer: /CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Certificate serial: 0196C0B89C7B93607C27FAEABC5F608F2301
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
Manifest number: 0924
Signing time: Sun 11 May 2025 19:00:46 +0000
Manifest this update: Sun 11 May 2025 19:00:46 +0000
Manifest next update: Mon 12 May 2025 19:00:46 +0000
Files and hashes: 1: BaO2FkB7l-JhFjNId8aqkoqq7rI.crl (hash: cS8dKXBaiT/r/qWzaXgPm0pndxQDxmK0TRiDYq5a9yI=)
2: bDkAt0CCYnB2xqRfpALpEK1gmgo.roa (hash: HzyjrIASJdGjjHtk6b54LHkaX+3Gt8eRcO+z/aYxOaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:b8:9c:7b:93:60:7c:27:fa:ea:bc:5f:60:8f:23:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Validity
Not Before: May 11 19:00:46 2025 GMT
Not After : May 12 19:00:46 2025 GMT
Subject: CN=6ce7a8c2bf371c038ed0f68fe833e56fb93ad569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d7:d6:8b:03:fe:45:3c:38:c9:1d:ab:72:dc:
eb:07:7d:e1:fe:ca:35:7f:71:bd:a8:aa:d2:6a:c0:
a2:40:83:8f:2b:a9:11:cf:03:c7:46:fc:26:29:75:
d7:e8:10:17:cd:a8:60:7c:13:bc:ca:c3:6b:db:08:
cd:18:ca:fa:34:8a:a8:8e:57:d2:c6:97:70:b4:15:
77:ec:13:40:7b:10:61:0e:3e:b6:ab:c3:56:70:26:
73:2f:69:ce:a2:90:2c:69:a3:20:c5:51:ac:87:32:
55:51:cf:3f:f1:11:89:38:6a:30:17:7e:18:62:ac:
49:14:bc:b7:45:45:46:e8:f1:8d:6b:68:21:d5:47:
25:09:49:e9:02:54:cd:ee:56:4d:a6:ce:81:88:64:
99:4f:e5:18:dc:5a:4f:6d:75:7a:80:36:c9:dd:5c:
cb:79:8c:8b:28:5a:dd:aa:a0:c3:fd:8e:4e:b3:54:
b2:cb:cb:65:dd:f2:bf:c0:93:85:fa:51:2c:e4:ae:
df:32:db:ee:61:88:cf:d0:e5:c4:0b:d6:68:45:6a:
d1:be:bb:55:ae:18:37:35:82:6d:fc:ba:7c:32:58:
52:14:99:2d:34:ef:0d:84:a2:c9:c0:cc:73:3e:b1:
64:8c:b8:2e:03:a0:30:52:e2:78:f8:1d:f9:de:91:
5a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:E7:A8:C2:BF:37:1C:03:8E:D0:F6:8F:E8:33:E5:6F:B9:3A:D5:69
X509v3 Authority Key Identifier:
keyid:05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:6f:13:f6:aa:5f:a8:17:86:93:a1:ac:c8:26:7a:b4:ed:65:
60:d6:6d:9e:f0:3c:48:e8:6c:55:31:60:cf:08:9d:36:bb:c8:
c0:af:c8:c4:92:bf:5a:52:3e:f2:96:e2:d9:17:6c:ba:44:de:
32:c0:93:45:05:2b:65:f8:79:8f:f0:f8:37:d5:6e:dd:61:fe:
a3:80:89:e1:e3:93:9a:1d:5c:45:8b:9b:f7:6e:7a:b0:00:89:
93:b4:38:d3:91:11:45:25:68:e7:f0:f9:0d:44:be:44:aa:ce:
f2:7d:be:63:19:26:8d:7a:76:da:a7:8f:ed:de:97:c8:df:3e:
58:57:58:5e:d3:df:52:6f:0b:42:5c:da:23:11:7b:99:55:b1:
a9:04:3b:c4:e4:91:4e:20:30:c7:f2:9d:17:16:85:85:08:97:
10:70:a6:1b:5e:29:2a:c5:b3:3b:91:8d:92:68:4a:6c:e2:07:
dd:a1:95:42:c0:ec:e1:76:7e:e0:6c:a0:57:58:45:14:be:ce:
57:d5:ee:34:11:20:0c:87:92:8d:9d:49:40:9c:30:c1:5c:49:
e9:06:33:52:51:09:37:93:b4:e6:50:b4:64:36:19:66:82:9e:
e9:88:2d:e7:74:60:e2:99:46:df:46:02:34:3c:43:86:e8:2a:
58:80:73:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 01:25:59 2025 by rpki-client