Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
File: BFYL6jkur2kgircF70Bc94aEF2s.mft (raw, json)
Hash identifier: csquTlY2EdAKzzl9dYn8re4F0/Zf49isAcXNoWqxwRM=
Subject key identifier: 16:22:B9:55:0C:C6:A9:9C:20:96:97:AD:DD:F1:1B:23:14:0A:CA:AC
Authority key identifier: 04:56:0B:EA:39:2E:AF:69:20:8A:B7:05:EF:40:5C:F7:86:84:17:6B
Certificate issuer: /CN=04560bea392eaf69208ab705ef405cf78684176b
Certificate serial: 0196A0BF58609715DC413F46365EB1B0035A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
Manifest number: 1527
Signing time: Mon 05 May 2025 14:00:16 +0000
Manifest this update: Mon 05 May 2025 14:00:16 +0000
Manifest next update: Tue 06 May 2025 14:00:16 +0000
Files and hashes: 1: BFYL6jkur2kgircF70Bc94aEF2s.crl (hash: huBZ0C0Q/iBs9bTQOZHyPkrWZQrAqdsm3KRZtn3+7ds=)
2: lfnWEOvFiyPQ4V6fSENJIUzxTlo.roa (hash: haGiRVIYQql14DyAfU+5XwsD5ECg69Kir2HoWSWwiFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 14:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:bf:58:60:97:15:dc:41:3f:46:36:5e:b1:b0:03:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04560bea392eaf69208ab705ef405cf78684176b
Validity
Not Before: May 5 14:00:16 2025 GMT
Not After : May 6 14:00:16 2025 GMT
Subject: CN=1622b9550cc6a99c209697adddf11b23140acaac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d8:28:5f:9a:d3:6b:c4:f8:06:47:68:27:ac:
b7:66:2f:ac:d9:a8:02:4c:8e:02:89:b1:83:aa:91:
8b:5a:b5:03:97:29:99:de:5e:f9:ec:b3:b8:4e:6c:
d1:16:56:05:fd:a4:96:0e:50:5e:f4:28:3c:a3:15:
a7:f4:03:cc:5e:23:f5:79:fd:d3:06:fa:83:8c:bf:
bb:d4:fe:36:59:c0:c1:a2:96:81:dc:10:ae:85:7d:
a9:a8:64:84:a4:f0:50:10:80:98:2b:ce:0e:be:5b:
8c:27:9d:ae:70:c6:0a:87:00:7a:e1:32:93:bc:d1:
d2:8b:d7:77:e3:8a:94:f5:2e:94:e9:28:bd:ae:96:
7b:03:f4:33:51:5e:e1:de:46:54:ea:87:12:64:46:
37:cb:05:01:8b:55:3f:ca:7f:80:05:53:11:35:ae:
37:ae:92:a1:e2:73:93:e8:42:ff:be:cf:2f:d6:b3:
e1:30:20:b1:79:56:76:aa:86:f1:4e:b8:04:29:29:
2c:80:22:39:1d:1c:ea:c0:31:8f:70:26:52:a7:37:
b4:88:18:c7:80:0a:6f:14:78:e4:77:6f:5b:85:bd:
58:91:4f:3b:20:a5:8d:87:f0:96:e7:f9:e7:b7:c2:
06:ee:45:02:b0:0e:a1:83:6a:24:96:7b:fb:f6:88:
6b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:22:B9:55:0C:C6:A9:9C:20:96:97:AD:DD:F1:1B:23:14:0A:CA:AC
X509v3 Authority Key Identifier:
keyid:04:56:0B:EA:39:2E:AF:69:20:8A:B7:05:EF:40:5C:F7:86:84:17:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:d2:17:52:b5:73:68:93:fc:de:03:ba:d3:24:f1:71:c5:88:
e4:77:93:61:14:85:95:7d:c9:2b:51:bc:5d:92:a0:3c:54:12:
14:78:e5:55:d9:e7:f3:c3:e9:d0:09:95:05:0f:96:36:19:99:
fd:e7:98:9a:8b:d0:61:5d:48:43:d5:a3:31:e4:ca:ba:7b:83:
87:f6:ef:77:a1:cc:88:72:b3:02:47:49:2e:ec:e5:ac:75:00:
fb:ec:f4:23:48:1e:80:8b:9f:90:3d:36:d3:0f:31:17:1a:4e:
42:54:41:03:e9:2e:99:b3:10:f0:f9:16:a4:42:6e:b8:69:e3:
8f:ff:77:55:ed:ec:35:98:20:bc:fe:7d:14:ba:4c:0f:eb:b9:
cb:da:1b:6e:28:a3:09:95:48:91:0f:bb:97:60:c9:84:f7:b8:
a4:a1:20:b0:29:fb:a9:22:ab:59:7b:ba:ed:4f:d8:28:c2:6f:
e3:af:15:e6:a6:d2:23:d5:dd:13:0d:a6:21:50:63:17:e6:f0:
2c:b1:14:a2:18:aa:77:b5:f6:05:5f:67:10:46:33:eb:89:94:
a8:09:b0:d2:a0:47:62:48:e3:c7:bc:8b:2e:b4:d7:d2:e6:b6:
fe:09:28:aa:86:03:61:36:3e:18:33:8f:32:db:d2:c3:35:70:
b0:a7:ef:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 23:57:29 2025 by rpki-client