Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.mft
File: bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.mft (raw, json)
Hash identifier: ygly9yzseCEKDPSjdFzXQcxdoJkRRdLLlyfqCka32I4=
Subject key identifier: E9:F2:AF:25:01:6E:45:EF:3C:41:DE:F1:5A:1C:3F:4D:23:82:02:2E
Authority key identifier: 6D:F5:67:EC:F8:65:48:06:00:98:F5:AD:67:A1:B2:BF:FF:1B:4B:51
Certificate issuer: /CN=6df567ecf86548060098f5ad67a1b2bfff1b4b51
Certificate serial: 0196C4271196C737FB9CDC1D49DC9A41F7A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.mft
Manifest number: 07A1
Signing time: Mon 12 May 2025 11:00:16 +0000
Manifest this update: Mon 12 May 2025 11:00:16 +0000
Manifest next update: Tue 13 May 2025 11:00:16 +0000
Files and hashes: 1: bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.crl (hash: cEAGDD6ojUBn3/h7VAgpoZVjtMshpHU2cSzV1cUPl1k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 11:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:27:11:96:c7:37:fb:9c:dc:1d:49:dc:9a:41:f7:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df567ecf86548060098f5ad67a1b2bfff1b4b51
Validity
Not Before: May 12 11:00:16 2025 GMT
Not After : May 13 11:00:16 2025 GMT
Subject: CN=e9f2af25016e45ef3c41def15a1c3f4d2382022e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:28:a3:2f:ef:45:ab:f4:fc:58:12:a1:41:2f:
84:48:f6:c5:0a:30:37:bd:2e:38:8d:ca:8e:6c:3e:
65:b4:ac:f3:2b:99:73:f0:f0:44:aa:35:ec:13:3b:
1b:d7:9d:16:00:e8:98:1f:4f:87:14:41:83:09:0e:
fd:6e:4e:ea:9a:a6:7c:4f:1b:9a:61:90:88:85:67:
92:ae:01:73:1a:1b:de:9f:95:0b:d6:b6:f6:2b:38:
db:04:f2:29:1b:8e:d8:96:8a:16:21:13:4d:05:e3:
e2:7c:27:ad:c5:0a:4c:01:df:aa:c8:43:bf:50:c9:
3a:54:dc:6c:1e:3b:f5:25:34:f2:1e:e9:d8:e7:4e:
67:ab:7c:cc:43:67:aa:19:ae:ad:02:2a:06:79:b5:
d7:a2:d7:37:0e:c4:e6:7f:df:05:9d:53:f9:34:14:
53:68:dd:0d:d8:8b:c0:84:ee:9c:d8:a7:e6:77:f4:
e2:95:7a:e4:b4:96:52:d4:e4:1e:b5:be:22:e1:90:
f4:24:65:35:9b:89:7d:91:fa:ae:9c:7d:2e:26:f4:
56:10:7f:7c:f0:d6:6c:88:73:f5:0e:6a:46:73:cc:
a2:1d:69:f5:88:7c:67:18:fe:9e:e3:01:8d:2d:34:
15:1a:68:6f:9d:8a:66:67:1d:35:82:6a:5c:d6:8b:
9a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F2:AF:25:01:6E:45:EF:3C:41:DE:F1:5A:1C:3F:4D:23:82:02:2E
X509v3 Authority Key Identifier:
keyid:6D:F5:67:EC:F8:65:48:06:00:98:F5:AD:67:A1:B2:BF:FF:1B:4B:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/761b4c-8915-4319-913e-0ca8feba9585/1/bfVn7PhlSAYAmPWtZ6Gyv_8bS1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:22:bc:dd:aa:20:dd:52:1b:f4:8e:4f:5c:b4:30:a5:09:3a:
d0:d8:9b:15:4a:d4:90:c5:9f:16:fc:f6:0f:42:c7:00:54:9f:
92:42:af:50:ed:36:90:3a:69:43:dd:f8:a8:68:20:da:28:f5:
96:ee:d2:d6:9a:01:22:1f:2e:e6:66:fd:d7:3e:46:ca:87:ae:
7e:cf:0d:53:0a:18:3c:de:c1:05:52:67:48:6a:bb:9e:db:64:
7b:0d:1a:4a:3f:5b:40:72:48:6c:d4:e0:db:a0:2f:35:f3:0f:
05:cd:70:74:34:cf:79:41:99:99:58:63:36:8d:72:89:99:19:
10:62:65:9f:63:b6:c6:22:fd:d8:30:6a:53:2d:6f:c4:c0:bd:
93:92:1e:de:ba:36:15:16:77:90:b8:17:ab:9f:5b:b1:1f:94:
e7:dd:24:a9:db:16:93:10:34:88:3a:49:33:b6:ef:41:90:11:
23:53:3b:43:53:ea:7c:91:3b:13:13:60:33:f5:a0:cf:d5:78:
8f:cb:25:a3:a2:bb:36:f3:e6:7f:3b:ff:ad:3e:82:43:1d:a0:
11:ab:54:93:75:61:a5:d0:72:06:93:a2:21:f6:96:d3:ab:ed:
7e:f7:58:6c:f9:ee:86:a8:09:ee:57:6d:db:dc:ab:f8:d6:af:
bb:e9:c8:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 20:32:46 2025 by rpki-client