Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
File: BfWa7cKCluKRck95N954jichZAg.mft (raw, json)
Hash identifier: oJcDKVxO9alUAfndDns1igYJx2Oc72pQWdFAcmgE9Kk=
Subject key identifier: F6:8E:0F:CE:66:72:2E:EE:15:4A:1F:CC:5D:5B:6E:C3:61:6C:01:11
Authority key identifier: 05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
Certificate issuer: /CN=05f59aedc28296e291724f7937de788e27216408
Certificate serial: 0196B7B5525DC806D36DD374710726E10D63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
Manifest number: 144E
Signing time: Sat 10 May 2025 01:00:35 +0000
Manifest this update: Sat 10 May 2025 01:00:35 +0000
Manifest next update: Sun 11 May 2025 01:00:35 +0000
Files and hashes: 1: BfWa7cKCluKRck95N954jichZAg.crl (hash: UJufte/dYd39Oa+Ka4+aZOyV6cUUWiVOqaO57sfZhH0=)
2: u4-8TJgeQH4fa-D9xZl4ZB3jNoQ.roa (hash: tT+Wu4e7mtchTUuSJdCNjA8Yykw8lNY7Bv1xK7SFPsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:b5:52:5d:c8:06:d3:6d:d3:74:71:07:26:e1:0d:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f59aedc28296e291724f7937de788e27216408
Validity
Not Before: May 10 01:00:35 2025 GMT
Not After : May 11 01:00:35 2025 GMT
Subject: CN=f68e0fce66722eee154a1fcc5d5b6ec3616c0111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:70:39:47:d3:2e:77:10:37:63:d5:cb:d3:fb:
a6:4d:81:b6:25:77:39:ff:c5:da:ae:ef:40:36:21:
c6:5b:cf:a3:c6:26:d3:3a:c3:3e:0f:35:98:28:94:
b6:7f:07:d7:53:0b:0e:5d:34:8e:4f:f1:f3:82:49:
ae:0b:60:15:ca:ea:00:55:74:b8:03:dd:4f:3a:46:
7c:d5:06:ef:20:37:00:a6:c2:ee:d2:48:01:59:2e:
0f:bf:1e:c8:0e:2f:b3:f6:02:b3:8f:e3:65:e6:4f:
bc:69:75:6e:da:f9:c4:77:8d:a9:1f:1b:0a:7c:5d:
eb:66:dd:d7:60:a6:c8:41:d8:a2:ee:c0:d9:b8:1d:
c9:4d:18:88:49:39:15:d4:5e:5b:9b:66:e6:90:4b:
48:41:14:36:30:80:6a:80:84:86:27:c3:98:9a:4b:
c2:d5:7d:d8:f4:2a:f5:9d:bc:5e:34:c3:06:d6:97:
86:dd:96:1d:ff:93:7e:b6:81:fb:19:76:97:65:cc:
8a:fd:66:ea:98:17:71:50:c3:e8:3d:99:8e:34:3e:
fb:58:7f:d9:a7:1d:79:db:bc:7f:11:67:68:4b:fc:
72:a2:d1:cc:7b:ca:c7:b1:b0:f5:bc:07:99:16:4a:
17:94:92:c1:89:e5:51:37:05:76:7d:fe:d4:82:bb:
b6:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:8E:0F:CE:66:72:2E:EE:15:4A:1F:CC:5D:5B:6E:C3:61:6C:01:11
X509v3 Authority Key Identifier:
keyid:05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:95:86:18:3c:a2:cb:71:22:49:19:b5:82:a7:fb:f3:5e:1a:
fb:95:f9:71:bb:b0:80:c9:89:78:5a:99:45:4d:20:41:46:d5:
03:34:1c:7f:42:aa:05:73:0a:88:b5:cf:f7:41:9e:de:be:0b:
f1:4e:57:ea:ae:d1:fb:c4:31:89:7b:3f:f3:80:2f:bb:ac:e7:
74:61:e1:c2:69:81:7d:3d:a2:78:34:7a:bd:10:1c:f2:40:1f:
fb:ef:9a:75:a6:ed:1e:5a:79:fa:de:69:d0:c4:fc:a2:1b:3f:
f1:0c:7a:25:08:df:47:8b:5c:5c:b9:b4:2d:13:b9:d5:a4:e6:
af:0d:38:17:f1:88:ae:19:96:1a:83:82:12:81:64:c2:76:37:
41:fe:62:fa:a7:3e:d5:b1:5a:f3:5f:1e:5c:07:b7:33:a8:9c:
cb:ce:ab:0c:c2:2b:04:b7:78:ff:56:d6:d9:1d:2f:a1:35:e7:
47:16:76:74:2b:e5:91:59:5a:df:45:0e:dd:06:a8:57:64:fc:
e4:13:bc:db:82:01:48:64:d7:7c:77:f6:43:14:43:9e:c5:50:
b0:4f:4b:65:4d:3d:08:01:9a:b2:cd:ce:c0:cb:82:09:3e:17:
5b:e5:71:a5:2c:81:9b:c2:ed:96:a7:f2:c0:6b:80:15:7e:c9:
a7:ee:05:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa3tVJdyAbTbdN0cQcm4Q1jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1ZjU5YWVkYzI4Mjk2ZTI5MTcyNGY3OTM3ZGU3ODhlMjcy
MTY0MDgwHhcNMjUwNTEwMDEwMDM1WhcNMjUwNTExMDEwMDM1WjAzMTEwLwYDVQQD
EyhmNjhlMGZjZTY2NzIyZWVlMTU0YTFmY2M1ZDViNmVjMzYxNmMwMTExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1XA5R9MudxA3Y9XL0/umTYG2JXc5
/8Xaru9ANiHGW8+jxibTOsM+DzWYKJS2fwfXUwsOXTSOT/HzgkmuC2AVyuoAVXS4
A91POkZ81QbvIDcApsLu0kgBWS4Pvx7IDi+z9gKzj+Nl5k+8aXVu2vnEd42pHxsK
fF3rZt3XYKbIQdii7sDZuB3JTRiISTkV1F5bm2bmkEtIQRQ2MIBqgISGJ8OYmkvC
1X3Y9Cr1nbxeNMMG1peG3ZYd/5N+toH7GXaXZcyK/WbqmBdxUMPoPZmOND77WH/Z
px1527x/EWdoS/xyotHMe8rHsbD1vAeZFkoXlJLBieVRNwV2ff7Ugru2bwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPaOD85mci7uFUofzF1bbsNhbAERMB8GA1UdIwQY
MBaAFAX1mu3CgpbikXJPeTfeeI4nIWQIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi81ZTFkNDItMzU3NS00ZWMxLWJjN2Mt
ZDY0MzY4MjA4MTMxLzEvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi81ZTFkNDItMzU3NS00ZWMxLWJjN2MtZDY0MzY4MjA4MTMx
LzEvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo5WGGDyi
y3EiSRm1gqf7814a+5X5cbuwgMmJeFqZRU0gQUbVAzQcf0KqBXMKiLXP90Ge3r4L
8U5X6q7R+8QxiXs/84Avu6zndGHhwmmBfT2ieDR6vRAc8kAf+++adabtHlp5+t5p
0MT8ohs/8Qx6JQjfR4tcXLm0LRO51aTmrw04F/GIrhmWGoOCEoFkwnY3Qf5i+qc+
1bFa818eXAe3M6icy86rDMIrBLd4/1bW2R0voTXnRxZ2dCvlkVla30UO3QaoV2T8
5BO824IBSGTXfHf2QxRDnsVQsE9LZU09CAGass3OwMuCCT4XW+VxpSyBm8Ltlqfy
wGuAFX7Jp+4FGg==
-----END CERTIFICATE-----
Generated at Sat May 10 04:50:27 2025 by rpki-client