Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
File: bzHGTD5afeEED0Daj-3EfDj-Wfo.mft (raw, json)
Hash identifier: K0Rn1Jw4y37m2qjVrnmdswnMOaniGn95jM2QyVLamr0=
Subject key identifier: 92:B5:A9:7C:77:19:3B:A3:CF:66:A1:35:20:A1:C2:7C:51:50:3A:9B
Authority key identifier: 6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA
Certificate issuer: /CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa
Certificate serial: 0197BAEBA8FADA4B93E0BFD0DFB0E7CA4A6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
Manifest number: 0E63
Signing time: Sun 29 Jun 2025 09:01:35 +0000
Manifest this update: Sun 29 Jun 2025 09:01:35 +0000
Manifest next update: Mon 30 Jun 2025 09:01:35 +0000
Files and hashes: 1: V-ziE9ps9Cl1x9ik1a79A00SdKk.roa (hash: vAv5TpbiymJ0TO2JtzeVr/xllon/oJLZTZGZk+qEl8o=)
2: bzHGTD5afeEED0Daj-3EfDj-Wfo.crl (hash: P9v2XtmvTmFoG9Ih1Zpi28wXZhBeIGNNptmWIVExijQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 07:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:eb:a8:fa:da:4b:93:e0:bf:d0:df:b0:e7:ca:4a:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa
Validity
Not Before: Jun 29 09:01:35 2025 GMT
Not After : Jun 30 09:01:35 2025 GMT
Subject: CN=92b5a97c77193ba3cf66a13520a1c27c51503a9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4a:e4:76:e6:f0:56:9a:b3:96:70:f2:4f:ae:
5c:22:ae:2e:41:a1:6c:27:bb:4c:3f:75:2b:a8:27:
ac:6d:b7:bc:50:8e:00:a0:87:3f:b7:c2:ee:50:28:
1b:e5:c4:33:c4:9b:cd:5b:51:7c:9e:89:2e:fd:15:
dc:aa:eb:dd:cd:f8:64:e8:20:83:f6:c1:c1:a7:03:
d0:ad:bd:ec:2e:85:ed:ee:6f:ef:1d:71:b9:47:50:
cd:5a:6e:1b:eb:9c:26:39:7e:4c:eb:7d:5f:4e:8c:
b0:81:d3:14:ee:7e:46:31:06:c6:4e:d9:19:01:66:
c5:7d:79:85:5b:32:89:0d:87:a0:eb:7e:a3:7f:31:
d5:45:80:e5:53:b5:cd:ad:9f:f1:02:12:05:31:28:
46:16:4e:60:d1:e5:b5:76:c6:8f:72:3d:70:d3:c4:
f1:14:d6:14:82:2f:0b:a5:d6:18:51:3d:64:b1:67:
01:0c:43:2f:a9:52:22:cf:a3:9d:af:f7:81:a4:47:
f9:cb:66:4a:18:f5:16:f1:9f:81:d9:6c:52:6a:5b:
61:b4:9d:e3:e7:26:a9:be:69:b1:1e:09:26:b2:4c:
d5:9e:70:a5:6c:b9:0a:a1:b7:9b:ba:f4:bb:17:e6:
00:d4:0a:f2:0a:52:43:ec:53:9d:67:5a:64:36:c4:
06:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:B5:A9:7C:77:19:3B:A3:CF:66:A1:35:20:A1:C2:7C:51:50:3A:9B
X509v3 Authority Key Identifier:
keyid:6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:c5:1f:be:ec:e4:b0:b4:aa:40:14:77:60:84:03:86:a9:8c:
8c:4e:a1:71:38:6b:15:63:f2:06:0e:85:cb:6f:19:0b:8c:e3:
fa:cd:1c:0c:c1:16:08:a3:d7:7a:d7:50:a1:b3:68:2b:3d:ab:
29:8a:66:bd:16:a9:6b:66:3c:9e:c1:b7:92:90:e7:8d:25:40:
f5:aa:a5:d7:b8:63:e5:04:8d:8a:6f:5b:14:61:1a:20:ea:e9:
15:2f:d6:4b:7f:9c:1c:8e:ca:ec:e3:3c:a7:3e:53:d9:8a:d5:
cc:8e:fb:26:07:66:0c:e5:69:fc:69:b6:a9:0a:67:c9:17:f4:
63:ff:8e:d2:89:fc:08:ca:f7:74:55:3e:10:e4:d5:77:54:03:
54:b3:7e:c3:c4:ca:fd:e6:e6:a7:da:65:82:98:c4:a2:ef:c4:
57:06:8f:f1:a2:ab:73:d0:5c:72:2c:cb:e7:bd:61:b6:4e:d4:
56:10:a1:2b:13:10:ce:60:d8:88:b6:d0:62:a5:64:cd:86:9e:
1f:51:87:4b:51:e4:e7:c8:e9:eb:75:79:c6:41:72:26:b2:10:
c6:96:06:b3:a2:55:52:3d:0e:7b:e3:47:44:f4:37:d4:55:e7:
e2:52:26:ac:50:88:28:9c:15:a2:12:7c:e3:b3:c7:99:1e:b8:
1d:2c:6d:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 15:40:32 2025 by rpki-client