Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.mft
File: bYQL-PLqRGpH22xjOQZmfGPtiG4.mft (raw, json)
Hash identifier: 8qQnisgVxhhQgEitwbVpWxs4lL85ROJYaqcadlgo6aM=
Subject key identifier: 88:25:95:B2:4E:66:1B:38:36:B8:2D:8D:72:0D:5F:F0:41:01:CA:32
Authority key identifier: 6D:84:0B:F8:F2:EA:44:6A:47:DB:6C:63:39:06:66:7C:63:ED:88:6E
Certificate issuer: /CN=6d840bf8f2ea446a47db6c633906667c63ed886e
Certificate serial: 0196BAED26ABED4415B2A6C16F2DB79D61B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bYQL-PLqRGpH22xjOQZmfGPtiG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.mft
Manifest number: 0F88
Signing time: Sat 10 May 2025 16:00:26 +0000
Manifest this update: Sat 10 May 2025 16:00:26 +0000
Manifest next update: Sun 11 May 2025 16:00:26 +0000
Files and hashes: 1: 9fXYfiecb8LKHLBc5hFULaPgfkc.roa (hash: 4n+9kukj7OWGzO7qg1Ocfcd3L1gAsSFqFZg+KnIOuRA=)
2: bYQL-PLqRGpH22xjOQZmfGPtiG4.crl (hash: 8zB+4Qg8K7P+O0OCC7/KaAOqo0jyW4y0b7otw2/5MTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bYQL-PLqRGpH22xjOQZmfGPtiG4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 16:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:ed:26:ab:ed:44:15:b2:a6:c1:6f:2d:b7:9d:61:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d840bf8f2ea446a47db6c633906667c63ed886e
Validity
Not Before: May 10 16:00:26 2025 GMT
Not After : May 11 16:00:26 2025 GMT
Subject: CN=882595b24e661b3836b82d8d720d5ff04101ca32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e3:21:16:56:64:46:4b:c5:43:34:7b:ab:fb:
67:17:12:4f:13:a4:79:79:d4:14:04:9d:28:95:26:
2d:37:2a:60:70:c4:5c:bc:ed:05:fb:8e:11:fa:d8:
36:61:ab:ad:23:3c:9d:61:55:4c:43:60:92:88:27:
51:57:13:07:fc:34:bf:a2:36:fc:2e:e9:63:a4:6e:
0e:4e:87:cd:ef:c9:b2:7b:71:2c:07:11:6c:68:f9:
e8:18:1a:7e:41:b5:2b:ab:40:36:56:95:29:98:01:
8f:85:7a:a3:ad:45:af:3d:b0:9d:f5:7a:0b:9a:00:
ac:7f:eb:9f:e3:64:1e:94:90:30:f5:1e:ff:03:31:
04:63:86:b0:78:b7:65:dc:c6:04:52:ff:5d:23:f5:
1e:fd:de:44:4c:b0:5b:17:bc:5c:7b:48:89:ac:28:
c6:40:3a:00:2f:88:0d:ac:d7:23:d0:22:e9:58:49:
99:8f:1d:41:a8:b8:d3:fe:ec:d1:b5:cf:55:dc:b1:
21:54:c8:7b:89:9b:5b:c4:e8:b1:ed:df:69:8d:b0:
d2:62:6e:dc:51:03:ae:6b:e9:ec:bd:5d:ad:62:42:
43:2c:86:95:24:19:a4:7d:2c:fb:34:96:f0:b6:1a:
11:8b:98:0d:f1:c2:e4:1e:42:95:cb:ad:09:b0:8c:
ef:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:25:95:B2:4E:66:1B:38:36:B8:2D:8D:72:0D:5F:F0:41:01:CA:32
X509v3 Authority Key Identifier:
keyid:6D:84:0B:F8:F2:EA:44:6A:47:DB:6C:63:39:06:66:7C:63:ED:88:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bYQL-PLqRGpH22xjOQZmfGPtiG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:40:ba:6c:7d:ce:37:26:6a:db:17:5f:5b:0d:bf:b5:00:9b:
ff:76:1d:df:fc:5c:a8:27:02:aa:34:1c:50:bf:85:23:94:e3:
93:8a:a5:85:e6:72:e0:2a:1e:42:0f:85:ba:20:64:a3:a5:a1:
51:bc:52:32:5b:3a:ac:82:7b:d3:1b:cb:10:83:7b:fa:95:e0:
fc:76:a7:b7:5c:8d:d7:e9:74:dd:e0:52:53:0c:98:6f:a0:06:
75:27:7f:69:9e:e4:46:31:08:50:2d:15:d5:d7:3a:79:8c:b4:
bb:c4:4e:42:bc:6b:1d:fd:af:3a:41:a9:04:f5:68:34:d2:b7:
ff:1a:93:7a:b6:6d:1f:81:ba:02:ed:48:49:09:d1:4c:6a:1c:
60:94:98:5f:7e:59:b5:f5:33:b3:13:00:8d:bf:9e:03:03:c9:
15:18:01:b0:e4:b7:e9:f6:9a:44:ec:be:bc:bf:a3:25:55:5a:
bb:97:4c:d4:ed:33:84:a4:ea:cf:d3:28:1d:62:9d:2b:3b:ff:
5d:66:84:46:1d:4b:a1:d2:ef:0e:d4:c4:a1:69:9a:df:27:5b:
73:60:1b:24:3e:70:aa:71:a9:bd:8c:7a:ab:f4:50:9b:60:37:
3d:be:35:d6:7c:11:93:0d:15:a0:25:c8:26:0f:c9:a1:74:e4:
db:21:6a:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 02:27:36 2025 by rpki-client