Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
File: bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft (raw, json)
Hash identifier: +0A89jiPBDnmHnhZJcOeOQLjRXDXFQpMHHSqdg0DGUE=
Subject key identifier: 74:C1:F5:87:07:93:96:E5:C6:AF:B5:5F:1A:BE:1C:C9:CF:A2:EC:2B
Authority key identifier: 6E:AF:16:DC:C5:50:CF:81:EC:F0:F8:19:52:17:9A:04:81:30:87:7A
Certificate issuer: /CN=6eaf16dcc550cf81ecf0f81952179a048130877a
Certificate serial: 0196B8232D36AB6E720136817DF505971A2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
Manifest number: 08F6
Signing time: Sat 10 May 2025 03:00:35 +0000
Manifest this update: Sat 10 May 2025 03:00:35 +0000
Manifest next update: Sun 11 May 2025 03:00:35 +0000
Files and hashes: 1: bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl (hash: cceCYhJfN6lPX3odTFvfj06Jb+Tfuf0Pmx0Ka3FAzyM=)
2: zFZRDLYL0fz0Tr9KOTbvt5Gi2T8.roa (hash: RoOpJgCK2e2T8+E3U8CF6Ztsr6QUn+lDcl3mIBxfJ0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 03:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:23:2d:36:ab:6e:72:01:36:81:7d:f5:05:97:1a:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eaf16dcc550cf81ecf0f81952179a048130877a
Validity
Not Before: May 10 03:00:35 2025 GMT
Not After : May 11 03:00:35 2025 GMT
Subject: CN=74c1f587079396e5c6afb55f1abe1cc9cfa2ec2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:af:3d:39:c8:b3:13:07:3b:2a:0d:c2:b6:e3:
93:33:26:a0:67:14:64:78:bc:8b:e0:56:dd:70:cd:
77:3d:e2:7f:16:65:75:8e:b7:9c:3d:14:64:b9:76:
b5:58:8d:8b:63:1c:96:72:7c:98:ce:42:8a:dd:1c:
02:d6:e8:62:80:f2:a8:fd:64:82:49:7a:72:5f:23:
18:54:52:5e:56:4e:a4:2d:9e:81:eb:92:54:ae:70:
64:cf:74:eb:ae:46:b0:9a:fb:91:c5:b2:9a:cd:2b:
fe:4d:25:20:cb:ed:87:36:49:10:1f:24:91:13:f3:
1c:49:ae:2e:e0:ac:f2:4c:2b:c8:6f:e7:da:74:cb:
50:06:0f:d1:61:e7:8b:e1:f8:2c:91:63:13:64:0e:
06:ae:8a:ac:22:b0:96:bc:7b:51:67:06:22:14:62:
e6:05:a2:f0:10:8c:25:24:a9:7f:60:52:1f:b3:63:
ab:f6:c5:88:fd:fb:ac:93:ea:4f:d8:5b:56:8c:19:
e1:3a:14:96:a8:69:e0:6a:a7:8f:64:7e:76:41:34:
cc:11:ca:3b:47:2f:fb:81:19:30:f3:f9:f0:77:07:
e7:1b:20:7b:78:78:81:77:27:8e:08:f2:22:6c:07:
c7:88:4f:54:27:22:4d:2f:78:7e:07:20:a9:47:b4:
f3:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:C1:F5:87:07:93:96:E5:C6:AF:B5:5F:1A:BE:1C:C9:CF:A2:EC:2B
X509v3 Authority Key Identifier:
keyid:6E:AF:16:DC:C5:50:CF:81:EC:F0:F8:19:52:17:9A:04:81:30:87:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:62:25:e3:e8:28:0c:b6:54:56:37:c4:c3:08:20:59:5e:b5:
14:aa:5c:f7:46:5d:2c:39:50:91:42:a5:4d:b9:13:56:ea:d5:
24:86:5c:bd:77:b1:3f:8d:96:b7:1b:9a:f9:9c:c5:26:8a:ee:
d5:86:bf:42:0e:e3:7a:44:d2:fb:b4:b1:dd:61:09:9f:ee:ee:
48:8f:bc:e4:bf:85:9a:42:df:2a:9c:f2:c0:08:66:87:85:53:
cf:8c:88:5b:f1:3b:e1:c3:67:67:bd:1d:de:c1:e5:a1:25:48:
99:b8:6a:e5:1c:e5:4f:dd:39:e0:63:41:bc:83:82:9d:2d:f1:
98:8f:dd:2a:a2:48:38:32:92:ea:cd:28:42:95:9d:82:c8:82:
dd:c0:a5:b2:61:56:41:8e:fd:06:2f:d5:c6:d4:92:1c:a6:fb:
b6:76:a1:41:35:84:86:8c:b2:a8:47:34:35:68:0c:aa:42:b1:
37:86:bb:3a:a2:d6:4b:8d:57:46:c8:5b:dc:4d:27:24:86:85:
28:7a:fd:b5:e1:5c:7c:17:21:8e:f9:4b:5c:4f:04:ce:c2:28:
4d:64:16:74:08:70:ce:db:ed:86:4f:7c:76:a6:c9:31:66:c0:
8d:47:fc:23:47:c6:f0:1d:e0:5c:d5:c9:d1:38:db:49:ac:8a:
2b:7d:09:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 13:21:02 2025 by rpki-client