Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
File: BSAFu2w9aGW4nBDzOwuZS3Svljs.mft (raw, json)
Hash identifier: x+MuFzNoRqUfxX6hJDMtIVFoI+w66p5bCnfiosbxazc=
Subject key identifier: 57:06:DA:4E:B6:75:25:8F:06:0F:06:6F:00:FD:DD:DB:E7:DC:BE:3C
Authority key identifier: 05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
Certificate issuer: /CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Certificate serial: 0196A42E73685E3A5C24663C11F3FF7C36A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
Manifest number: 1529
Signing time: Tue 06 May 2025 06:00:29 +0000
Manifest this update: Tue 06 May 2025 06:00:29 +0000
Manifest next update: Wed 07 May 2025 06:00:29 +0000
Files and hashes: 1: BSAFu2w9aGW4nBDzOwuZS3Svljs.crl (hash: 87mdxAQeX20NUXfiNY5P+E+wxbHMxYDtR1iwAR1LBIg=)
2: ir1RS50i8n6-S2GFn7ZgzEJxgqk.roa (hash: c+oT6rdCWtyUihO7r4CT9JSZ34sdZ4eqqblxSm+cQz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:2e:73:68:5e:3a:5c:24:66:3c:11:f3:ff:7c:36:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Validity
Not Before: May 6 06:00:29 2025 GMT
Not After : May 7 06:00:29 2025 GMT
Subject: CN=5706da4eb675258f060f066f00fddddbe7dcbe3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ec:31:b4:bf:f5:b6:4e:f6:f1:21:58:7e:42:
01:d3:ff:e8:33:11:df:ba:1d:36:cd:ce:f7:5d:34:
7f:b7:de:2a:6a:df:a2:91:7d:fd:36:e4:50:cb:e5:
a7:d9:e6:af:50:63:c2:0c:ce:11:96:a0:c7:3b:19:
53:b8:61:32:ca:3a:b8:26:b6:7f:6f:28:94:10:04:
c2:f0:90:0e:3a:2f:e7:92:ba:dc:45:49:36:71:f6:
76:e7:45:be:13:75:81:ea:48:c7:bb:d4:8c:e9:35:
a9:dd:fc:1c:34:97:26:40:8b:56:ae:98:03:a2:07:
97:0d:14:ac:06:34:bf:bd:ba:20:dc:63:7c:21:4f:
84:83:24:74:c7:35:52:b3:ae:f4:53:40:f1:a4:13:
07:58:07:c5:73:a5:d4:1d:95:b8:5a:09:cb:26:99:
60:1d:4a:fa:50:c3:20:6e:61:d1:8b:11:d0:9f:35:
a4:2b:d0:87:b1:99:1e:2e:d9:50:38:87:89:a2:e8:
13:2a:ed:49:20:05:3f:bc:d9:33:a0:03:34:cd:a5:
06:6a:9a:b5:be:71:e2:8f:1f:03:b1:75:6b:ab:94:
22:f9:8e:aa:2a:d1:4f:d0:eb:5c:98:a3:da:87:b9:
c0:07:5d:80:a2:2d:be:41:98:c6:d5:b4:d0:e6:66:
49:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:06:DA:4E:B6:75:25:8F:06:0F:06:6F:00:FD:DD:DB:E7:DC:BE:3C
X509v3 Authority Key Identifier:
keyid:05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:d9:50:be:c4:65:73:c6:d4:b5:27:10:61:58:3c:90:79:60:
18:05:54:7d:55:cd:1e:9d:57:08:94:8e:dc:fa:70:f7:df:93:
60:be:a4:4c:20:a2:80:25:2f:95:ef:76:e8:eb:af:62:88:46:
fa:ee:94:b1:66:13:9e:8a:58:34:92:81:94:57:9d:18:e9:b0:
3d:32:87:c0:2a:06:c1:f7:ed:52:2a:90:7f:f7:fe:9a:e0:e2:
1c:47:41:2a:b1:68:9e:c1:73:7f:ab:b9:09:76:05:51:d4:fb:
c2:d6:ec:00:50:3b:42:41:76:40:ad:4b:2f:aa:d0:16:43:db:
cf:03:c1:e6:cf:45:f9:1d:e0:8a:48:25:fb:61:2f:d3:4c:5b:
95:ef:d5:50:99:56:27:c2:a5:69:23:10:5b:4e:d6:51:2b:a6:
d3:a6:a1:f7:7a:42:5c:71:c0:9d:4a:98:a3:98:e0:f5:d4:87:
21:99:5c:89:3a:cc:01:5a:5b:2c:96:6d:72:1d:3f:d1:3f:e7:
a0:2e:2c:2c:d5:86:ec:45:7e:02:b2:29:89:27:89:ef:9a:40:
03:fc:14:0d:06:4d:98:5b:dd:6b:09:88:6d:aa:40:c5:d3:90:
c1:09:ab:2c:c5:a7:6e:45:e4:af:5a:aa:d8:1b:a7:38:50:7a:
7b:27:f5:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 11:01:07 2025 by rpki-client