Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
File: bG9jkROWOM74MYEUEyzPJuFn06Q.mft (raw, json)
Hash identifier: pO3MDMzFehH92S9LJhV7xkNldsNgY1cRGdy+qj/ZsLE=
Subject key identifier: 95:0C:F7:49:10:25:14:EE:99:71:23:E4:05:0D:6E:66:D0:71:88:03
Authority key identifier: 6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
Certificate issuer: /CN=6c6f6391139638cef8318114132ccf26e167d3a4
Certificate serial: 0196C7282B9F28E8ED264454F0F34DD8D952
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
Manifest number: 1212
Signing time: Tue 13 May 2025 01:00:20 +0000
Manifest this update: Tue 13 May 2025 01:00:20 +0000
Manifest next update: Wed 14 May 2025 01:00:20 +0000
Files and hashes: 1: _HGowDUCSG2pcAysO4ogxA6yosc.roa (hash: UPTC6ZbpFxK2iqUZ6z67RcYvcbR0/gldSq3kNUHLLJI=)
2: bG9jkROWOM74MYEUEyzPJuFn06Q.crl (hash: +N1Ckz+E0sKVW6xrjyiDfJGYZ1n1LD0eMC8eTvmdYjQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:28:2b:9f:28:e8:ed:26:44:54:f0:f3:4d:d8:d9:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c6f6391139638cef8318114132ccf26e167d3a4
Validity
Not Before: May 13 01:00:20 2025 GMT
Not After : May 14 01:00:20 2025 GMT
Subject: CN=950cf749102514ee997123e4050d6e66d0718803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:94:81:c4:c6:c9:fa:4c:38:e7:73:b8:4f:39:
fb:21:a0:4d:5c:b1:45:5b:81:20:e7:2b:19:2e:20:
3b:15:ee:be:72:d5:dc:bb:de:62:2e:5a:4f:12:cb:
7e:0f:2c:9a:15:74:2b:54:cd:dd:de:fb:5e:c4:bc:
22:ce:bf:fd:32:e0:2e:6f:43:cc:f0:16:95:ed:9e:
fe:60:81:fd:66:0f:20:59:a8:27:2a:9b:e4:88:b3:
cf:9a:6b:b1:fe:45:bf:13:ba:5e:a9:2d:30:4d:5e:
e0:22:3e:37:98:7a:1c:60:50:07:2f:80:0d:fe:bc:
14:d8:75:1f:6d:2c:2b:ca:4c:6e:52:78:17:61:b8:
13:99:53:92:12:92:f7:3d:b8:87:47:57:e5:6c:71:
c5:90:8a:62:a0:47:f1:96:8b:d6:d5:50:10:c9:17:
d4:5d:11:98:4f:d4:af:1a:ed:b7:49:b4:41:15:37:
82:31:62:76:da:de:b7:c9:e2:c6:03:94:04:22:a8:
dc:e1:5f:3e:1e:ba:87:ce:3c:2e:30:54:cc:50:b5:
a4:d5:94:d5:d7:e0:f3:b3:59:da:d0:2c:5c:c5:3a:
a8:b8:b8:23:2a:cd:6f:10:e4:85:77:50:c6:29:28:
03:aa:59:67:06:34:5a:1c:f9:bb:8e:7f:0e:ec:8c:
50:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:0C:F7:49:10:25:14:EE:99:71:23:E4:05:0D:6E:66:D0:71:88:03
X509v3 Authority Key Identifier:
keyid:6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:dc:6e:dd:16:95:0b:ba:85:83:ed:fe:47:d5:70:bf:ac:90:
86:63:af:bb:a4:07:63:0c:5f:e5:33:11:33:c4:50:cd:81:44:
19:20:c2:f0:3c:6d:c8:87:48:85:79:9e:0a:e5:0d:73:3b:6d:
2b:a7:03:7d:1c:3c:88:c8:bd:e9:60:2b:20:6c:bb:37:f4:6d:
cc:a6:14:ca:5c:54:eb:36:37:91:3b:25:be:cc:35:78:86:9d:
24:67:49:8d:69:a1:8e:3a:f1:9e:61:12:2a:45:99:5c:95:7b:
4f:96:ff:7a:5a:63:f4:2a:82:7c:bc:11:97:84:18:96:bb:82:
f8:91:e4:85:ec:24:52:f5:05:85:fe:e6:81:30:0a:59:aa:a1:
af:75:89:d0:75:3f:ad:3a:bb:80:31:ee:59:c3:09:00:06:82:
ec:c6:8c:58:76:7f:74:4f:4a:30:57:f3:45:74:65:fa:08:3c:
3b:ca:68:2e:9f:29:f7:7c:90:6d:91:b3:4c:fd:3b:9f:a8:63:
04:31:3b:1d:93:01:a4:ec:7c:63:9a:6e:7c:21:88:3e:c7:d6:
09:2b:06:e0:15:5a:f9:3e:54:08:c6:21:87:34:41:5a:00:46:
41:7e:09:6f:76:3e:48:17:cf:b8:71:2a:2f:8d:b3:88:3b:39:
63:b6:82:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 07:21:06 2025 by rpki-client