Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.mft
File: bcXjzvXaXn_fw2TF1aBALTpnhtw.mft (raw, json)
Hash identifier: 3ymfSmohUNjy7/gH0n2tEg59Gvj82+Qr5yYcOERgsk4=
Subject key identifier: D0:99:FC:48:71:AC:FE:05:A3:0B:AB:92:F5:E1:7D:C8:F7:1D:0D:E2
Authority key identifier: 6D:C5:E3:CE:F5:DA:5E:7F:DF:C3:64:C5:D5:A0:40:2D:3A:67:86:DC
Certificate issuer: /CN=6dc5e3cef5da5e7fdfc364c5d5a0402d3a6786dc
Certificate serial: 0196C2DD6AF0CF279E39EF7973C68C79CBBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bcXjzvXaXn_fw2TF1aBALTpnhtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.mft
Manifest number: 0DD1
Signing time: Mon 12 May 2025 05:00:12 +0000
Manifest this update: Mon 12 May 2025 05:00:12 +0000
Manifest next update: Tue 13 May 2025 05:00:12 +0000
Files and hashes: 1: DoUsi8lBp24xgpF7Cj5k0M8Xf1k.roa (hash: 8DoQ+UjZ0y3DouoJyhRBNdxsuMKM8IPBGox8SgTwz/M=)
2: bcXjzvXaXn_fw2TF1aBALTpnhtw.crl (hash: oPzsLCr1sy5+sMj0xn0UeduwN1iqKNg9wAwwVQLN820=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.mft
rsync://rpki.ripe.net/repository/DEFAULT/bcXjzvXaXn_fw2TF1aBALTpnhtw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:dd:6a:f0:cf:27:9e:39:ef:79:73:c6:8c:79:cb:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dc5e3cef5da5e7fdfc364c5d5a0402d3a6786dc
Validity
Not Before: May 12 05:00:12 2025 GMT
Not After : May 13 05:00:12 2025 GMT
Subject: CN=d099fc4871acfe05a30bab92f5e17dc8f71d0de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:1f:4b:78:67:de:be:b1:98:34:f4:cd:b3:51:
b3:c3:c8:de:51:f9:de:4b:bc:f2:1a:09:e0:69:18:
56:30:3b:fa:f5:8a:44:56:33:0b:36:f7:da:9f:ee:
7c:36:93:42:1a:bc:0c:5b:e2:fc:91:d8:73:a3:5b:
7e:dc:64:a3:bb:da:6d:17:4f:ef:d1:09:fe:a2:0d:
3b:c7:11:28:c2:0a:ea:de:06:9d:fc:0d:fb:9c:c2:
45:1c:3f:e6:c4:67:a0:f2:9a:c0:05:6d:9f:08:ed:
f5:34:17:f4:ed:b4:71:e2:11:70:7e:9f:c2:07:64:
1f:50:fc:52:1e:ce:10:7b:81:09:68:7b:a2:ac:ec:
88:07:77:d8:40:33:2d:98:7c:80:49:84:0e:74:d2:
96:28:34:38:57:8b:ce:bf:d7:0a:08:6c:f5:49:ca:
99:0a:b0:a3:47:32:62:27:c8:f4:6d:55:48:0b:05:
aa:42:c0:7b:9d:17:28:43:5d:78:cc:ed:39:db:63:
99:4c:55:e4:fa:c0:73:8c:d5:bc:2e:c2:5b:2e:48:
a1:73:68:63:fc:34:4b:a9:d7:fb:d0:4a:aa:8a:5c:
12:a2:88:7b:21:54:ce:25:e8:60:77:40:da:3f:f2:
f9:25:b7:21:e7:38:d0:ca:ea:84:13:65:39:e1:70:
b5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:99:FC:48:71:AC:FE:05:A3:0B:AB:92:F5:E1:7D:C8:F7:1D:0D:E2
X509v3 Authority Key Identifier:
keyid:6D:C5:E3:CE:F5:DA:5E:7F:DF:C3:64:C5:D5:A0:40:2D:3A:67:86:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bcXjzvXaXn_fw2TF1aBALTpnhtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:f0:c2:18:f9:f7:f1:ef:75:9d:d9:33:61:4e:56:df:37:e0:
97:0b:e2:fa:93:3e:0f:ab:3d:10:99:12:bc:54:a7:64:ce:2e:
78:3d:59:e4:12:8e:65:c2:18:72:39:36:42:6c:d8:5d:38:5d:
88:e8:e0:ba:5e:e6:df:d0:5b:56:fa:51:2b:7f:cd:1e:7f:f7:
7b:5a:05:58:d6:fd:a4:4f:61:8a:dc:00:38:73:ed:56:a7:ab:
e6:d4:e0:bc:37:aa:85:36:9a:c3:b8:98:6b:70:1f:5b:ad:cf:
09:33:56:08:48:ef:37:a0:1c:65:ab:bd:40:2d:23:a0:ba:56:
c7:b9:0c:55:68:d7:8e:fc:37:75:b5:02:bb:da:42:0a:67:1e:
8c:ca:97:55:d9:14:97:bd:77:b5:89:05:eb:ad:ad:d4:60:74:
6a:97:bf:89:9e:d5:55:44:30:18:b2:ba:25:a7:ff:bf:86:ba:
07:0b:e9:fd:82:cf:3d:1c:b1:ba:fd:f3:c2:a5:ba:07:61:06:
5b:5e:bd:9d:0f:b6:6a:ab:8b:89:54:41:3f:44:cb:8d:dd:75:
28:02:7b:94:65:54:d6:df:2b:18:ed:8f:93:c4:22:da:37:25:
b9:eb:0e:c2:1b:e2:f3:f2:d0:a3:8a:29:7b:a1:34:25:82:94:
8c:89:76:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:44:27 2025 by rpki-client