Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
File: bfHIcky70DS6t6Da3wq0uZ_2b_8.mft (raw, json)
Hash identifier: mqFcVK2LfzK/mrhFcquP2W+n/2f9mfG6DarshKD4EQc=
Subject key identifier: 30:E7:1C:3D:AF:14:09:1A:47:9C:67:05:AB:D4:56:EE:9C:09:B9:0F
Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Certificate serial: 0196B7109E8DE83180E884C254A66142A9CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
Manifest number: 1532
Signing time: Fri 09 May 2025 22:00:41 +0000
Manifest this update: Fri 09 May 2025 22:00:41 +0000
Manifest next update: Sat 10 May 2025 22:00:41 +0000
Files and hashes: 1: 3gASlQlN9UdPtrWqrdLITdzt5Ew.roa (hash: ramhN8+V67WDz+dJge66wgSFRzcM7UnMyKgsybDZiQA=)
2: bfHIcky70DS6t6Da3wq0uZ_2b_8.crl (hash: fihA9SOR/rTCzvsG6MPuE82MB4QsBLlMmGv6Z3SXuEU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 17:53:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:10:9e:8d:e8:31:80:e8:84:c2:54:a6:61:42:a9:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Validity
Not Before: May 9 22:00:41 2025 GMT
Not After : May 10 22:00:41 2025 GMT
Subject: CN=30e71c3daf14091a479c6705abd456ee9c09b90f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:80:d1:35:28:17:60:f6:24:fc:5a:42:b5:5e:
e0:c5:10:52:c7:66:73:06:0c:3a:62:30:da:d2:3b:
ec:a1:b0:19:11:d9:48:44:43:07:37:c7:53:4b:be:
28:e3:ce:25:d9:87:72:81:99:07:21:cd:1b:31:00:
6b:9c:04:8c:2b:58:6c:61:8e:d7:da:59:42:77:c2:
f4:e7:88:46:84:eb:36:46:8b:43:28:2a:3b:7c:f1:
3d:11:71:0c:2b:c8:31:00:19:86:91:72:d6:58:b9:
a9:a7:b9:a5:12:1b:e8:28:4f:cd:32:d5:bf:43:54:
d5:90:7b:b8:53:5e:7c:2d:da:e4:96:e9:e2:1b:c7:
98:d0:4b:f5:13:3b:bf:05:45:a5:48:fe:ab:7b:59:
0c:27:16:93:11:bf:6f:5f:02:a0:95:b1:85:42:f5:
bc:14:ea:30:14:df:53:03:65:de:e5:f8:7d:69:e3:
1b:31:40:3a:73:36:38:3c:4f:2f:57:90:5b:e5:6c:
51:52:d9:13:f2:b6:a1:fc:25:b3:5c:f0:fc:6f:2a:
d0:74:70:07:9e:2a:f3:5f:5f:24:c7:4b:99:9a:dc:
e4:15:1c:dd:c6:03:f4:c2:e6:22:0e:48:6d:a0:da:
a7:f9:93:1f:33:63:c5:cc:68:b3:95:56:bb:ac:3d:
42:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:E7:1C:3D:AF:14:09:1A:47:9C:67:05:AB:D4:56:EE:9C:09:B9:0F
X509v3 Authority Key Identifier:
keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:bd:57:08:6c:e0:ab:e2:03:21:56:78:04:67:bd:ef:c1:14:
3f:00:f0:a9:96:a8:33:79:67:47:85:b0:a8:5a:ca:1a:75:ce:
46:a2:5a:df:77:43:e7:a9:ff:52:13:60:01:c0:a6:86:c2:73:
45:e0:10:8b:6c:51:7d:22:95:58:a0:84:73:60:f6:a1:98:cf:
b7:21:70:a6:33:40:a2:95:22:2c:0f:26:3c:e9:c9:83:f6:d1:
92:87:57:bc:08:d4:c5:07:aa:49:79:10:bf:4f:03:9b:31:5a:
bc:85:4c:30:df:48:7e:23:49:fa:4d:e9:90:1d:36:85:ea:d8:
36:bc:0b:c6:52:8c:b8:d0:05:0d:8b:1f:fe:08:e2:c0:95:06:
39:11:de:27:77:de:24:11:b9:29:1b:34:f2:1e:03:0f:df:eb:
c8:19:62:55:33:35:e4:a6:25:91:76:9b:02:b7:41:fc:ad:f3:
97:78:6f:07:2f:12:c9:ab:c6:39:1f:72:b5:06:7d:5d:25:c4:
0a:8b:cf:1a:06:13:65:9e:0d:2a:03:ed:38:29:36:30:ca:13:
c9:48:54:89:94:1a:10:c2:48:1b:db:ca:a5:6c:2b:a9:34:fe:
5e:b1:b0:f9:df:7e:07:18:9c:24:be:2c:22:f6:72:94:f3:73:
5d:b8:60:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa3EJ6N6DGA6ITCVKZhQqnKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZjFjODcyNGNiYmQwMzRiYWI3YTBkYWRmMGFiNGI5OWZm
NjZmZmYwHhcNMjUwNTA5MjIwMDQxWhcNMjUwNTEwMjIwMDQxWjAzMTEwLwYDVQQD
EygzMGU3MWMzZGFmMTQwOTFhNDc5YzY3MDVhYmQ0NTZlZTljMDliOTBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmYDRNSgXYPYk/FpCtV7gxRBSx2Zz
Bgw6YjDa0jvsobAZEdlIREMHN8dTS74o484l2YdygZkHIc0bMQBrnASMK1hsYY7X
2llCd8L054hGhOs2RotDKCo7fPE9EXEMK8gxABmGkXLWWLmpp7mlEhvoKE/NMtW/
Q1TVkHu4U158LdrkluniG8eY0Ev1Ezu/BUWlSP6re1kMJxaTEb9vXwKglbGFQvW8
FOowFN9TA2Xe5fh9aeMbMUA6czY4PE8vV5Bb5WxRUtkT8rah/CWzXPD8byrQdHAH
nirzX18kx0uZmtzkFRzdxgP0wuYiDkhtoNqn+ZMfM2PFzGizlVa7rD1CDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDDnHD2vFAkaR5xnBavUVu6cCbkPMB8GA1UdIwQY
MBaAFG3xyHJMu9A0ureg2t8KtLmf9m//MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9lMDc4MWYtNmU2NC00NmFhLThhZjAt
ZjkyNGQ2ZjZhNTk1LzEvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9lMDc4MWYtNmU2NC00NmFhLThhZjAtZjkyNGQ2ZjZhNTk1
LzEvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFb1XCGzg
q+IDIVZ4BGe978EUPwDwqZaoM3lnR4WwqFrKGnXORqJa33dD56n/UhNgAcCmhsJz
ReAQi2xRfSKVWKCEc2D2oZjPtyFwpjNAopUiLA8mPOnJg/bRkodXvAjUxQeqSXkQ
v08DmzFavIVMMN9IfiNJ+k3pkB02herYNrwLxlKMuNAFDYsf/gjiwJUGORHeJ3fe
JBG5KRs08h4DD9/ryBliVTM15KYlkXabArdB/K3zl3hvBy8SyavGOR9ytQZ9XSXE
CovPGgYTZZ4NKgPtOCk2MMoTyUhUiZQaEMJIG9vKpWwrqTT+XrGw+d9+BxicJL4s
IvZylPNzXbhgtQ==
-----END CERTIFICATE-----
Generated at Sat May 10 03:22:28 2025 by rpki-client