Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
File: kBewvZCCfeCNJP72G8xEhiAkv34.mft (raw, json)
Hash identifier: MggNVMKby+PQQNOU5rUVAl2vFIwyjf/7OEp6bqmOZXc=
Subject key identifier: 28:B5:EB:0A:1E:B3:D5:FB:D7:AD:FB:ED:B9:06:B2:76:DA:AA:33:B4
Authority key identifier: 90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
Certificate issuer: /CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Certificate serial: 0196BA7F76D5501C9B0D33C39FCAE684F021
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
Manifest number: 0BC7
Signing time: Sat 10 May 2025 14:00:37 +0000
Manifest this update: Sat 10 May 2025 14:00:37 +0000
Manifest next update: Sun 11 May 2025 14:00:37 +0000
Files and hashes: 1: GDngKunQly0rXAZJTM9K6ouZldE.roa (hash: srWtclzCrCIl56nGBNOU8VqqYjtRTWRgnKIo2g1oYz4=)
2: kBewvZCCfeCNJP72G8xEhiAkv34.crl (hash: LvpndcjiDflWgR3ewSwL8A44ilXzMkpmSNNX1/Tyln0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:7f:76:d5:50:1c:9b:0d:33:c3:9f:ca:e6:84:f0:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Validity
Not Before: May 10 14:00:37 2025 GMT
Not After : May 11 14:00:37 2025 GMT
Subject: CN=28b5eb0a1eb3d5fbd7adfbedb906b276daaa33b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:94:f6:e1:19:5f:b0:e8:4d:cd:16:db:b0:b4:
a1:97:6d:69:9d:54:4d:98:b2:fa:af:88:63:f2:8a:
43:d8:79:9b:0d:7e:66:b1:fe:a0:3c:62:c7:b8:ef:
8f:ae:8a:7d:ff:c3:e7:00:c2:2a:86:4a:62:38:39:
3e:bf:33:3b:af:7a:5d:12:56:35:c6:b3:41:b7:e0:
6d:61:4a:0d:33:c3:1a:42:45:12:7d:66:cb:8b:47:
ad:74:fa:0a:bd:88:d9:58:27:84:14:54:06:4f:8a:
f1:50:bd:8a:a5:cb:12:20:d2:42:6c:88:ee:ce:d3:
83:df:8f:a3:c4:f6:84:47:54:fa:5d:6d:63:10:16:
47:dd:1e:cd:98:d7:66:ea:f4:cb:86:b6:f2:4b:e3:
ec:a5:6f:e0:1d:f5:57:b1:b3:87:29:0b:84:db:65:
d0:89:09:31:73:74:3e:e4:f5:b0:4a:2d:29:d2:12:
5d:80:82:b6:23:b5:fc:d8:8f:51:47:af:d3:fa:ed:
90:2e:d3:89:04:56:21:0a:aa:50:d8:da:22:0d:60:
c3:b1:6c:10:99:84:d9:29:cc:73:d5:db:ff:48:98:
4c:4b:6f:67:04:0b:a9:4b:81:de:32:0a:7d:f6:ab:
d4:ed:d2:d6:ed:38:5a:6e:6c:fd:b0:7b:19:89:c8:
39:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:B5:EB:0A:1E:B3:D5:FB:D7:AD:FB:ED:B9:06:B2:76:DA:AA:33:B4
X509v3 Authority Key Identifier:
keyid:90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:e1:ef:a6:a7:36:27:d8:e1:80:8e:8c:4a:60:4d:14:bb:eb:
53:5d:5b:f2:01:69:b9:d7:9b:e6:88:e4:44:82:ce:94:bf:58:
ec:77:a6:ab:0f:c9:15:a2:e4:52:8e:65:f8:74:f5:a5:12:01:
d4:30:2e:7d:8d:23:2f:37:ca:19:9b:68:10:9e:7f:ff:b9:9b:
92:2a:a4:d5:09:ef:35:6a:d9:3a:fb:40:98:8f:2e:fc:da:d5:
71:ef:da:f0:26:c7:f2:2f:01:87:30:1e:3d:81:2a:52:31:1b:
d4:73:d4:b0:2f:91:e2:61:92:18:e3:91:73:1b:b2:52:d5:4b:
8e:8c:15:6f:44:c0:e8:cc:64:b4:7b:f4:48:ce:7e:21:f1:66:
46:d3:3f:5d:cf:b6:a0:bd:35:9d:32:cc:a0:f3:56:5c:5b:a1:
8e:29:fa:81:e3:1f:81:d1:10:28:d5:7c:38:33:a0:cc:96:ac:
89:3a:7f:62:85:64:93:b0:2b:e3:85:4c:bd:93:35:f0:b6:45:
7c:53:10:ac:6b:a4:8c:bf:61:d7:de:cd:37:f6:dd:52:13:bb:
c0:0d:4c:80:de:d3:35:39:7c:5b:19:ea:3e:71:15:7c:27:fe:
89:14:dd:7d:c2:b5:1d:13:35:53:4e:6a:ce:9f:f5:65:63:db:
26:22:1d:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 22:00:08 2025 by rpki-client