Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
File: BPD3XK7T8miFrGVjD_qu53pw69k.mft (raw, json)
Hash identifier: rYSdlllHiMWV1PQP6lSoaxeOooa8MbaWSNpY+UE5hCY=
Subject key identifier: E7:BD:78:A0:7B:D8:65:C5:A2:C2:92:06:78:EB:B9:11:D2:54:69:1F
Authority key identifier: 04:F0:F7:5C:AE:D3:F2:68:85:AC:65:63:0F:FA:AE:E7:7A:70:EB:D9
Certificate issuer: /CN=04f0f75caed3f26885ac65630ffaaee77a70ebd9
Certificate serial: 0196A7D4594AD653E2BC907B34EB30E2A7BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
Manifest number: 12C8
Signing time: Tue 06 May 2025 23:00:33 +0000
Manifest this update: Tue 06 May 2025 23:00:33 +0000
Manifest next update: Wed 07 May 2025 23:00:33 +0000
Files and hashes: 1: BPD3XK7T8miFrGVjD_qu53pw69k.crl (hash: TsrOt0r9M5E6Ob7ZL4/4X7vqlw9wb4rorK1NKO/f3Gs=)
2: ilRpOqqhCRrukRL5kvILbezdwjw.roa (hash: 09XWT+P0AZf+EnMM2PlCmZMY0UVdVh5S35frUm5Llew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 16:14:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a7:d4:59:4a:d6:53:e2:bc:90:7b:34:eb:30:e2:a7:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04f0f75caed3f26885ac65630ffaaee77a70ebd9
Validity
Not Before: May 6 23:00:33 2025 GMT
Not After : May 7 23:00:33 2025 GMT
Subject: CN=e7bd78a07bd865c5a2c2920678ebb911d254691f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:3a:68:95:02:b2:09:ef:b1:c4:65:cc:c8:28:
8b:95:b8:da:80:b6:1c:d6:19:65:ef:70:b0:49:e4:
6d:b6:9b:98:fc:c1:63:67:49:9c:4e:b7:0d:a5:6e:
df:a2:63:92:d6:0e:aa:0b:32:a6:90:36:73:68:8b:
f2:36:0d:a0:41:1e:ad:84:41:7c:fd:c4:09:04:64:
09:a3:3e:a2:08:dc:7a:89:ea:ee:d5:d4:03:d3:d6:
7b:72:3f:42:57:a9:e7:6f:c3:69:85:9a:f6:94:be:
82:17:d2:95:23:51:77:94:8b:9a:26:e5:35:55:00:
3a:2d:21:73:b9:b6:cf:0d:a3:25:b9:89:ce:9f:b0:
5b:47:74:84:0a:b0:4a:b9:0e:69:90:6e:3f:d1:4a:
40:07:22:7b:68:7e:ff:fb:85:e4:a8:24:f0:12:3a:
1c:6b:7d:3e:95:c2:40:18:57:5a:80:bc:61:60:15:
1d:7f:31:e4:db:01:48:9f:72:4f:23:ec:de:da:0c:
0f:cc:fb:8f:4f:a4:58:57:21:38:88:10:70:bf:cb:
81:32:3d:a2:a0:1e:9d:19:53:ee:15:93:be:bd:a9:
d7:70:04:bd:a6:6e:c1:4c:3b:f9:e4:ee:ef:5b:e0:
a8:c4:b2:a9:c4:00:2c:a9:5b:31:df:d6:3d:87:f8:
df:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:BD:78:A0:7B:D8:65:C5:A2:C2:92:06:78:EB:B9:11:D2:54:69:1F
X509v3 Authority Key Identifier:
keyid:04:F0:F7:5C:AE:D3:F2:68:85:AC:65:63:0F:FA:AE:E7:7A:70:EB:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:92:6b:8c:a3:81:0a:54:28:28:21:6b:e3:a2:c7:66:6b:f0:
52:a4:10:0b:96:8d:46:5b:75:bc:1f:db:a5:d9:b9:dc:d1:66:
31:cb:2c:93:0f:f9:9f:a7:1a:7b:f5:ce:67:6f:46:58:13:36:
a6:0f:fa:63:92:32:dd:b8:28:b1:4c:d0:05:cf:82:a4:f6:bb:
26:a2:c0:c3:8a:2b:45:74:7c:d9:d8:72:a4:ee:b5:31:2e:dc:
96:dd:a8:8d:43:16:e6:ff:7b:2e:0f:d5:86:fb:36:c6:6d:8f:
ef:f9:07:3c:44:31:f1:cf:ed:31:cb:4f:1a:91:ea:28:39:50:
19:c3:67:d9:53:2f:89:58:26:cb:13:d7:d2:30:ad:52:58:36:
33:ea:1f:23:a9:9d:cb:7a:07:a0:9a:63:0f:07:d6:67:64:f9:
05:6c:66:a1:64:d2:04:64:f9:96:e1:81:3e:1a:f7:53:76:57:
91:c9:16:5f:ca:ad:d8:dc:c2:cb:80:cb:61:b8:5c:d6:ab:eb:
a5:9c:1c:a9:53:4f:85:36:e2:97:31:9d:51:97:c0:8a:d8:a4:
c8:20:55:a0:51:93:40:17:ce:c9:6e:8a:5a:b2:bb:92:14:54:
66:7c:ec:8f:5f:73:8e:34:d1:3d:59:1e:3b:fc:1a:c1:50:27:
0e:1c:10:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 02:02:03 2025 by rpki-client