Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
File: bfhqH1cK4xUpAiqk9h79nsK5fQU.mft (raw, json)
Hash identifier: DZv64qClRZE/mivOMDmq9acoHnv/KP6FsLGNlplA6Pg=
Subject key identifier: 8E:A8:20:BD:B5:16:C3:A1:8A:28:D1:F7:14:79:C1:EB:50:98:F0:25
Authority key identifier: 6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
Certificate issuer: /CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Certificate serial: 0196D28764FD2981936475C4FFD05ADE2D8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
Manifest number: 13BA
Signing time: Thu 15 May 2025 06:00:10 +0000
Manifest this update: Thu 15 May 2025 06:00:10 +0000
Manifest next update: Fri 16 May 2025 06:00:10 +0000
Files and hashes: 1: BpLbGApyHXLB4qqgJyw3nGH9lH0.roa (hash: 4AoUx/2M994KEwtEdAKInOt11G1446xmTonI1qJPrOg=)
2: bfhqH1cK4xUpAiqk9h79nsK5fQU.crl (hash: fgeaYjZfDTyTrZvMs34tYY7FegHT0kMqnmdQ9iWaLrM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d2:87:64:fd:29:81:93:64:75:c4:ff:d0:5a:de:2d:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Validity
Not Before: May 15 06:00:10 2025 GMT
Not After : May 16 06:00:10 2025 GMT
Subject: CN=8ea820bdb516c3a18a28d1f71479c1eb5098f025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:f1:ba:21:2d:4f:e1:29:52:a4:35:fb:9a:47:
7e:e0:4d:9b:28:21:36:5d:12:4d:a8:0c:62:1b:51:
39:65:c2:88:d3:0a:9b:8a:6f:8c:7d:1a:3e:90:dc:
1f:ea:26:df:34:4f:b4:dd:4c:6d:9a:67:31:93:fa:
87:af:03:8a:26:1f:c8:44:4e:89:7a:0a:73:6e:71:
d1:49:6a:d2:19:e3:a4:d2:94:30:8e:60:b8:78:7d:
de:62:43:a2:a1:af:09:87:35:5b:21:28:45:db:5e:
a8:5a:0f:f2:bc:b0:b7:be:6a:08:8f:07:e0:f1:04:
52:03:1e:03:a4:f2:e7:d0:47:da:42:43:56:44:e5:
5d:25:f2:9f:2c:30:71:3e:49:00:4b:82:9f:ec:6e:
be:69:30:55:12:79:bf:2c:4e:21:ef:54:f5:14:06:
45:94:77:5f:dd:9c:92:0d:d5:0d:43:5b:62:60:59:
e2:2b:15:c8:89:e5:ca:d9:4c:8b:ea:e2:2a:19:c6:
26:f0:5f:90:a5:c6:c9:e1:b6:7b:9c:90:63:e6:49:
13:eb:6d:13:f3:0e:4e:6b:69:36:c7:77:9e:32:1d:
72:74:bc:d8:64:26:91:74:12:39:63:67:71:0d:ff:
ee:af:cd:6c:dd:b3:7e:fe:2a:56:2b:5f:d8:24:06:
61:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A8:20:BD:B5:16:C3:A1:8A:28:D1:F7:14:79:C1:EB:50:98:F0:25
X509v3 Authority Key Identifier:
keyid:6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:c0:68:8a:a5:91:a8:57:d3:23:9d:f5:7c:08:6a:6e:13:f8:
c2:a7:9f:f1:1b:d7:49:a4:e0:bb:c6:0f:b5:23:6d:6d:82:c5:
f6:3e:29:41:42:c3:68:d0:a7:81:5d:83:0d:b0:4a:d0:db:5d:
43:f7:58:0b:ed:47:14:c3:55:6c:31:cc:7c:85:58:96:7a:50:
16:cf:b9:ed:b5:c6:bd:fc:6a:21:be:1a:22:08:88:f8:cb:21:
7c:1b:3f:b7:b2:8d:cf:ef:47:bd:99:19:fe:83:6b:2e:70:8f:
03:b3:f8:cc:5c:58:d8:e7:24:8f:da:2d:de:a6:c9:18:2c:35:
ae:e0:40:d8:1f:32:e5:e8:ea:a1:d0:10:1c:75:01:86:20:73:
dd:93:5a:55:60:e2:fa:11:ec:be:b2:e7:00:45:d4:ac:2f:ad:
ee:74:23:c3:ed:5e:58:ea:94:72:8a:4e:93:81:25:12:17:a8:
b0:6c:72:ff:40:e4:42:e0:ac:8d:08:7c:0c:ce:b6:4e:31:87:
c6:09:17:71:92:a1:51:a7:04:cd:2a:19:38:c0:7e:86:7e:07:
e0:a0:a4:13:43:2d:52:b8:a8:d0:0a:da:01:b0:2c:e5:82:46:
9e:09:49:21:49:c3:49:9c:4d:f0:6f:41:64:9d:87:21:17:d2:
66:42:67:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 09:01:57 2025 by rpki-client