Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
File: bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft (raw, json)
Hash identifier: X9Z5uDQ4jzfgPUsYTn8/6Zr5sKSVqLONy2oOd+4G2AE=
Subject key identifier: BE:7C:94:60:0D:A3:02:07:40:E0:A7:9E:DF:4A:B4:25:27:CA:3C:03
Authority key identifier: 6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
Certificate issuer: /CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Certificate serial: 0196C45E79FFECE336F3FDB7A0CD93B2E415
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
Manifest number: 01F3
Signing time: Mon 12 May 2025 12:00:48 +0000
Manifest this update: Mon 12 May 2025 12:00:48 +0000
Manifest next update: Tue 13 May 2025 12:00:48 +0000
Files and hashes: 1: MYDLO2vvDKfPNW5B_jde2eQkJYg.roa (hash: wV9kbvDo8W5gfhdwsvfFoAGi3mrp4nPR/cUxhX5vacM=)
2: bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl (hash: ylUYt1C6O2tH9khw8+Go51Jesj4A6tHl7vP1AVDnNxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 12:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:5e:79:ff:ec:e3:36:f3:fd:b7:a0:cd:93:b2:e4:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Validity
Not Before: May 12 12:00:48 2025 GMT
Not After : May 13 12:00:48 2025 GMT
Subject: CN=be7c94600da3020740e0a79edf4ab42527ca3c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:47:d0:41:0c:73:d8:ab:97:e7:c3:3d:31:47:
1c:f1:d5:b1:99:e6:9b:33:32:21:aa:25:87:03:ef:
23:64:45:09:09:a5:4d:34:39:a6:7c:cb:56:3b:78:
d2:cf:15:4a:12:94:d2:bd:89:0b:8c:2b:23:0f:e3:
bc:97:63:29:59:d1:7b:61:e8:6c:37:13:f2:5a:0e:
03:8e:03:66:2a:86:94:44:94:c4:a5:5a:b7:bc:e8:
e4:f7:55:07:7d:41:e7:ff:85:c0:6c:74:8a:73:2a:
6a:98:3e:f1:c2:cf:50:98:63:fd:38:d6:a2:61:fc:
09:8e:09:62:4a:41:c5:3d:c8:d7:3e:7a:fa:db:30:
eb:06:4b:05:23:28:66:e7:d2:c8:ec:d4:32:43:91:
09:6e:84:16:62:af:14:62:ec:ec:6b:d9:eb:0c:66:
4a:9b:d9:59:38:6d:1f:31:d3:b7:28:53:39:f7:7c:
55:1a:eb:6a:0d:d1:a7:a8:f5:7f:70:41:a8:4d:8a:
78:18:7c:61:4b:24:8d:05:19:71:39:59:1a:61:fb:
e2:61:9f:41:a6:39:d7:09:48:d6:a6:56:30:15:50:
a9:28:70:88:2a:55:60:37:c9:a5:88:cc:4f:42:33:
cc:88:52:fa:48:3d:68:c6:94:5f:d2:b7:f3:da:d1:
fd:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7C:94:60:0D:A3:02:07:40:E0:A7:9E:DF:4A:B4:25:27:CA:3C:03
X509v3 Authority Key Identifier:
keyid:6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:2e:60:1f:d8:d9:47:1b:af:6b:10:f0:26:3c:6a:2e:6c:f3:
41:9d:3e:70:4c:2d:28:65:d9:d6:2e:df:cd:69:ba:81:1e:39:
c5:a8:08:90:f9:e5:2e:e1:19:e5:d9:18:b9:7c:bd:b1:ba:ae:
c7:c2:16:51:39:53:84:70:e2:76:b4:31:f9:aa:9a:ae:07:c3:
2b:3e:33:fa:91:94:a2:db:56:c2:be:1c:6f:a5:40:f8:90:0b:
ef:aa:1f:77:16:70:94:41:1b:54:71:cf:74:21:b0:8b:3b:6b:
5a:70:a1:f9:8e:8c:a1:31:c7:ab:e6:9c:a1:a9:7d:78:f3:55:
a9:b7:d8:f6:82:db:9a:d8:c9:1a:a2:64:20:4d:4d:94:70:b6:
86:75:53:45:13:b4:f1:61:9f:bf:64:78:bd:73:cc:e9:35:04:
70:00:82:79:2c:52:00:df:53:86:68:73:28:02:99:57:05:0d:
d2:4d:9b:e9:93:0d:98:81:55:bb:c1:16:d8:bc:7f:13:79:e1:
d6:f8:58:1d:76:4c:f2:31:99:ab:63:84:48:ca:d2:f8:86:53:
0b:b6:32:ec:00:5b:d4:07:58:86:c1:aa:b5:c0:7c:98:5a:d1:
fb:f5:58:1a:11:1b:9a:f6:41:17:3c:48:1c:e3:a6:eb:11:a8:
02:d1:78:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 17:00:49 2025 by rpki-client