Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
File: bqGhD32UTazB3sBBqqVZ1SK_uus.mft (raw, json)
Hash identifier: l5dM5T84gAg6XdsDSAiZ0x89krnTIt4RtIwpoL8Z+6k=
Subject key identifier: BD:EE:16:A8:87:B1:73:1D:79:63:62:24:93:8E:07:FA:CB:F5:E2:7D
Authority key identifier: 6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB
Certificate issuer: /CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb
Certificate serial: 0196C34B490070D573F7F8EC89BABBBA5556
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
Manifest number: 12AD
Signing time: Mon 12 May 2025 07:00:12 +0000
Manifest this update: Mon 12 May 2025 07:00:12 +0000
Manifest next update: Tue 13 May 2025 07:00:12 +0000
Files and hashes: 1: M9NbgULzUbUgy5QfFA80DfDkYIo.roa (hash: 9jvwTaiwGzjoN6t2OLikrXjXwIhCTFgXlEI2alktc+E=)
2: bqGhD32UTazB3sBBqqVZ1SK_uus.crl (hash: pL0q7HRkUMJYTnDQQF2LJ5yNPUMnhed+aP0vldx1js4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 07:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:4b:49:00:70:d5:73:f7:f8:ec:89:ba:bb:ba:55:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb
Validity
Not Before: May 12 07:00:12 2025 GMT
Not After : May 13 07:00:12 2025 GMT
Subject: CN=bdee16a887b1731d79636224938e07facbf5e27d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c4:af:ae:4b:e7:c2:67:d6:8a:a4:92:17:47:
54:55:d0:33:6a:c1:6a:7e:10:1c:60:cf:d0:32:6c:
9f:dd:e5:75:b3:bb:d8:71:b9:95:1b:dd:39:6e:cf:
e2:3e:61:83:7f:12:2c:5b:7a:78:3a:e8:8c:8a:c6:
9d:94:66:f3:15:63:32:73:22:2a:b3:b4:3f:20:32:
12:9e:e1:c4:ff:a8:70:13:cd:89:dc:52:18:17:62:
f7:99:7d:57:6f:00:08:f4:9c:7b:0b:be:1e:78:87:
e3:66:37:20:69:56:75:e3:b4:26:02:72:cb:17:cd:
5f:0c:91:5c:8d:2f:9d:cb:f7:1e:1b:ad:84:e9:0b:
c1:e6:1d:ce:49:7c:12:a5:4a:cf:eb:a5:a7:85:d2:
49:80:e5:87:6d:80:4d:38:40:ea:77:c5:bc:c7:d6:
88:84:c5:9f:22:db:f6:e3:ed:79:94:cf:dc:87:a7:
e6:fc:43:09:3f:f0:19:95:f1:ca:68:0e:72:f6:72:
79:d1:09:16:c8:78:1f:39:fd:05:d4:52:2f:3b:e4:
c3:12:25:83:03:30:6d:80:04:8b:ca:2f:86:f3:c1:
27:19:0e:d3:df:34:29:70:c9:7f:f8:7f:c8:9f:5a:
26:21:bc:ab:69:3a:73:cf:6b:41:5f:d7:b3:66:92:
56:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:EE:16:A8:87:B1:73:1D:79:63:62:24:93:8E:07:FA:CB:F5:E2:7D
X509v3 Authority Key Identifier:
keyid:6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:d2:60:04:2e:ea:a1:97:29:a6:a9:bf:eb:e6:61:d3:83:e4:
dc:ab:a1:12:a1:48:91:47:8b:91:da:b9:d4:08:39:1f:bf:d7:
01:4c:88:cf:e8:91:1a:3a:0d:55:ce:54:e5:9f:93:a0:21:35:
4a:15:15:d7:63:db:81:ab:44:2d:d9:9b:75:7b:40:40:c4:4f:
2b:92:ef:c0:e9:66:88:66:1a:75:bd:f1:31:ed:66:a2:0c:5f:
bd:0f:17:4a:cf:32:12:9e:89:e7:40:ee:c6:7f:1e:5e:cc:bc:
02:d3:0c:19:f4:dd:15:b0:22:61:6f:96:46:ce:90:74:52:1e:
75:e3:5f:dc:e2:73:23:d7:b0:4e:17:f6:6c:2d:19:d8:97:2b:
bb:cc:f1:e6:8c:87:75:02:8a:3e:a3:c7:62:73:e1:ce:fd:8b:
0b:d5:0e:d1:88:e9:bd:b9:3c:b6:cb:ff:35:dd:51:17:76:18:
06:ba:30:0f:62:24:3f:f9:47:f1:08:26:f1:0b:dd:c5:82:4b:
e8:18:c0:b5:35:bd:ca:dc:e1:1e:89:44:20:28:45:f9:77:15:
04:84:8a:b6:b1:58:68:9a:2d:f9:e1:01:fe:64:5a:44:20:03:
56:f4:a5:00:60:8b:17:60:db:34:b0:5b:37:6a:24:c0:c6:a1:
5f:4b:93:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbDS0kAcNVz9/jsibq7ulVWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlYTFhMTBmN2Q5NDRkYWNjMWRlYzA0MWFhYTU1OWQ1MjJi
ZmJhZWIwHhcNMjUwNTEyMDcwMDEyWhcNMjUwNTEzMDcwMDEyWjAzMTEwLwYDVQQD
EyhiZGVlMTZhODg3YjE3MzFkNzk2MzYyMjQ5MzhlMDdmYWNiZjVlMjdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArsSvrkvnwmfWiqSSF0dUVdAzasFq
fhAcYM/QMmyf3eV1s7vYcbmVG905bs/iPmGDfxIsW3p4OuiMisadlGbzFWMycyIq
s7Q/IDISnuHE/6hwE82J3FIYF2L3mX1XbwAI9Jx7C74eeIfjZjcgaVZ147QmAnLL
F81fDJFcjS+dy/ceG62E6QvB5h3OSXwSpUrP66WnhdJJgOWHbYBNOEDqd8W8x9aI
hMWfItv24+15lM/ch6fm/EMJP/AZlfHKaA5y9nJ50QkWyHgfOf0F1FIvO+TDEiWD
AzBtgASLyi+G88EnGQ7T3zQpcMl/+H/In1omIbyraTpzz2tBX9ezZpJW/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL3uFqiHsXMdeWNiJJOOB/rL9eJ9MB8GA1UdIwQY
MBaAFG6hoQ99lE2swd7AQaqlWdUiv7rrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnFHaEQzMlVUYXpCM3NCQnFxVloxU0tfdXVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC84NWUxMDQtNWU1Mi00MDQ4LWIxYjEt
YzUwOTY4Y2RhODZmLzEvYnFHaEQzMlVUYXpCM3NCQnFxVloxU0tfdXVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC84NWUxMDQtNWU1Mi00MDQ4LWIxYjEtYzUwOTY4Y2RhODZm
LzEvYnFHaEQzMlVUYXpCM3NCQnFxVloxU0tfdXVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbNJgBC7q
oZcppqm/6+Zh04Pk3KuhEqFIkUeLkdq51Ag5H7/XAUyIz+iRGjoNVc5U5Z+ToCE1
ShUV12PbgatELdmbdXtAQMRPK5LvwOlmiGYadb3xMe1mogxfvQ8XSs8yEp6J50Du
xn8eXsy8AtMMGfTdFbAiYW+WRs6QdFIedeNf3OJzI9ewThf2bC0Z2Jcru8zx5oyH
dQKKPqPHYnPhzv2LC9UO0Yjpvbk8tsv/Nd1RF3YYBrowD2IkP/lH8Qgm8QvdxYJL
6BjAtTW9ytzhHolEIChF+XcVBISKtrFYaJot+eEB/mRaRCADVvSlAGCLF2DbNLBb
N2okwMahX0uT8A==
-----END CERTIFICATE-----
Generated at Mon May 12 15:49:35 2025 by rpki-client