Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
File: bHOgSn0Ost9H2vDDn7p142XIhT0.mft (raw, json)
Hash identifier: 4OlnkhYw09WLZkh6Nko9uFB706bQRuX8sGhYeEJSdTU=
Subject key identifier: 93:E4:89:D8:51:3B:AD:6D:E5:8D:6A:B0:0C:22:6B:16:85:6F:97:70
Authority key identifier: 6C:73:A0:4A:7D:0E:B2:DF:47:DA:F0:C3:9F:BA:75:E3:65:C8:85:3D
Certificate issuer: /CN=6c73a04a7d0eb2df47daf0c39fba75e365c8853d
Certificate serial: 0196C3F04F76D40CF75BF7744638A1578BB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
Manifest number: 0F09
Signing time: Mon 12 May 2025 10:00:27 +0000
Manifest this update: Mon 12 May 2025 10:00:27 +0000
Manifest next update: Tue 13 May 2025 10:00:27 +0000
Files and hashes: 1: 1g8u0Gir8yCyVBvzcuA27ZsMTcA.roa (hash: hLEqWjYzmOf232eRZFufaSm1niRcj5QeYBzcD6/dycc=)
2: bHOgSn0Ost9H2vDDn7p142XIhT0.crl (hash: waiv4FPZQS3/YwcawMAg1tlfPz4aSjPAjiDKsTOtfi8=)
3: uSLH-6azWyM6_toWim6PNb4arp4.roa (hash: imwU+Zb8TWocoYkIF0ZGoxJDK+doen6jZopoR2zFVWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:f0:4f:76:d4:0c:f7:5b:f7:74:46:38:a1:57:8b:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c73a04a7d0eb2df47daf0c39fba75e365c8853d
Validity
Not Before: May 12 10:00:27 2025 GMT
Not After : May 13 10:00:27 2025 GMT
Subject: CN=93e489d8513bad6de58d6ab00c226b16856f9770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:02:c8:4c:a0:a0:97:4f:6d:b8:f1:86:f0:85:
a6:a2:25:7b:24:f7:41:16:0b:03:d8:9f:63:f0:be:
de:22:ac:7b:f9:c6:d1:ee:1c:0a:2d:f6:99:31:6b:
53:d9:64:dd:00:31:15:fd:05:14:b8:92:8f:e0:2f:
ef:c1:60:23:bf:b2:c6:3f:b0:19:32:c7:44:71:67:
19:86:50:3f:16:51:81:ba:7e:30:60:12:bb:95:7a:
36:6a:b2:ed:d7:c9:39:49:bb:88:e9:58:28:04:ef:
4c:3f:31:2d:69:1d:23:b6:19:15:69:f6:fa:ff:f9:
fb:cd:b6:95:b2:ce:32:2d:03:6b:c1:98:e0:1d:ea:
40:8b:80:f1:fe:89:28:cf:7a:e8:92:39:d1:49:73:
6c:9d:70:78:8a:3d:f8:06:a2:6e:4b:ab:da:f5:5d:
f4:8a:61:03:77:f0:83:22:e3:0e:57:ff:cc:c5:e2:
07:9c:0c:a4:5e:7d:27:7d:a9:7b:b1:9f:f9:58:05:
e8:8d:ba:6f:1e:b1:c0:16:bf:c6:2d:db:60:0b:d4:
d5:31:16:98:6d:4b:8d:c3:6c:69:98:de:4b:75:98:
c3:37:7b:06:10:26:25:50:ed:1e:36:7c:1f:31:45:
da:ba:26:86:74:37:3f:da:9b:9d:8e:75:e5:5d:42:
df:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:E4:89:D8:51:3B:AD:6D:E5:8D:6A:B0:0C:22:6B:16:85:6F:97:70
X509v3 Authority Key Identifier:
keyid:6C:73:A0:4A:7D:0E:B2:DF:47:DA:F0:C3:9F:BA:75:E3:65:C8:85:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:9b:47:d9:1e:b4:70:0f:2d:d9:02:2d:24:4a:70:33:e0:ad:
54:9e:1f:12:32:6f:9e:65:42:73:7a:b7:8c:e2:f8:02:fe:45:
25:03:01:c4:ab:81:6a:2f:23:0b:b1:52:05:21:d0:26:78:70:
70:bc:34:cf:ed:a4:ad:e9:ac:6d:8c:6e:d7:fd:a0:d2:b7:ed:
c4:1a:45:c9:a2:ad:f5:4a:90:dd:af:d1:6d:ba:00:20:6e:cf:
f0:79:3c:c1:18:ba:3d:04:f8:63:18:17:d7:10:b7:ca:2c:7f:
84:41:d7:b5:94:4a:b6:3a:a2:e6:f8:d9:8c:91:72:a5:ff:c0:
3b:5f:90:9c:0e:63:d9:a4:3f:59:79:36:12:d4:e3:67:59:fd:
e0:03:6e:ba:52:ce:da:83:d6:f0:b4:bd:0d:fe:bf:ea:03:c7:
49:75:f2:07:96:58:89:bd:66:ae:af:53:5c:fd:4e:7b:ca:16:
c6:10:3b:af:6b:32:2e:52:55:b2:33:df:2b:b2:e3:4d:3c:39:
d1:e6:73:0c:09:e0:62:c3:22:fa:39:08:be:cc:81:92:c2:62:
63:cd:66:04:11:d0:4c:f9:c3:18:3d:dc:63:fd:55:20:2a:fa:
eb:57:8e:ae:f3:fc:8d:11:a5:2b:c5:ce:37:5e:46:24:b2:3e:
48:ca:b6:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 20:35:41 2025 by rpki-client