Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
File: BEMrQbKmzMlHFxP39wfXac1Mfb8.mft (raw, json)
Hash identifier: ytZBxPKb4DcT/edQ6GdOiVTbcIYMrWyGmcvcZhOyTNs=
Subject key identifier: B5:13:40:35:C1:4C:13:D3:1E:02:A9:62:2C:4B:9C:A2:18:03:5E:BF
Authority key identifier: 04:43:2B:41:B2:A6:CC:C9:47:17:13:F7:F7:07:D7:69:CD:4C:7D:BF
Certificate issuer: /CN=04432b41b2a6ccc9471713f7f707d769cd4c7dbf
Certificate serial: 0198451A593AE368E8AA23C8614560574645
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BEMrQbKmzMlHFxP39wfXac1Mfb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
Manifest number: 0263
Signing time: Sat 26 Jul 2025 05:00:11 +0000
Manifest this update: Sat 26 Jul 2025 05:00:11 +0000
Manifest next update: Sun 27 Jul 2025 05:00:11 +0000
Files and hashes: 1: BEMrQbKmzMlHFxP39wfXac1Mfb8.crl (hash: Ts/u6dAO0p+z69Wwv2DjQBOZx9x7v1+fCBNtirwN8sk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BEMrQbKmzMlHFxP39wfXac1Mfb8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 02:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:45:1a:59:3a:e3:68:e8:aa:23:c8:61:45:60:57:46:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04432b41b2a6ccc9471713f7f707d769cd4c7dbf
Validity
Not Before: Jul 26 05:00:11 2025 GMT
Not After : Jul 27 05:00:11 2025 GMT
Subject: CN=b5134035c14c13d31e02a9622c4b9ca218035ebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:79:78:69:6c:db:e2:e1:aa:e5:c2:b2:36:50:
b8:3a:4e:73:f6:b4:ff:d4:60:43:63:8c:27:bc:92:
8c:1a:bf:df:40:d8:78:d4:3c:ee:81:fe:ff:a6:7b:
8d:6e:79:e9:a9:a5:fb:90:0a:30:2e:1f:24:b7:88:
41:c9:db:f2:74:cf:76:ff:da:8c:24:bc:65:cb:07:
3e:96:ca:f5:c5:5b:a7:cb:71:c8:17:80:ab:7a:d1:
51:5e:fd:4d:a1:8a:c7:66:e7:f9:eb:90:65:66:5e:
21:35:57:ad:58:e7:2e:54:09:5d:2a:44:78:72:f0:
5e:d9:0e:2a:4a:2c:2c:c6:60:1e:f6:21:ed:1b:99:
5e:7d:1f:2e:76:a6:59:c6:53:6a:79:14:74:ab:fa:
f2:02:fc:f2:f0:9b:f1:f7:bf:85:c6:36:7e:51:32:
4e:40:23:ed:ab:2e:11:dc:95:c9:b2:65:68:ea:c3:
c8:ff:28:b6:e5:23:00:35:83:1a:a1:94:9d:34:94:
c5:3f:2a:96:ef:59:0e:7b:81:71:37:0e:2c:5a:9a:
88:1d:93:a0:70:76:72:a1:29:34:97:c1:a9:45:0d:
ee:ba:bc:67:e0:64:96:68:a2:9e:37:7a:4d:d0:2e:
49:23:07:05:2b:33:cf:d0:f6:5d:0f:97:b0:84:3d:
e3:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:13:40:35:C1:4C:13:D3:1E:02:A9:62:2C:4B:9C:A2:18:03:5E:BF
X509v3 Authority Key Identifier:
keyid:04:43:2B:41:B2:A6:CC:C9:47:17:13:F7:F7:07:D7:69:CD:4C:7D:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BEMrQbKmzMlHFxP39wfXac1Mfb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:0d:17:c5:9c:4c:1c:0a:55:4e:1b:bd:0a:41:c3:19:dc:30:
3c:1c:7d:7e:b6:29:f3:aa:09:0a:e5:25:75:b3:b5:04:c5:86:
c4:62:e3:10:7f:0c:18:8b:e4:cf:71:08:d5:a2:91:c4:25:e7:
e6:af:97:bb:67:2a:81:63:65:df:7b:bb:38:20:10:53:8f:a8:
48:a0:63:f2:84:09:6f:59:cb:43:17:a5:31:79:c8:76:ea:4d:
53:21:b7:65:3f:14:d2:be:97:ac:06:1f:92:77:62:9d:fe:1c:
c1:0f:29:7d:1d:70:fa:2b:31:f2:fc:ee:04:f6:c0:5e:c3:dd:
3a:bf:74:1c:6b:a0:db:a6:d3:01:49:ab:95:31:d7:29:24:9d:
96:51:e5:71:51:7d:5d:45:ea:7f:de:c8:69:83:f8:16:ca:d4:
b8:1f:2a:5c:34:64:33:44:36:41:ed:6b:56:13:1d:25:91:45:
7c:df:4b:09:e8:d4:46:66:3c:9f:f2:49:fc:bb:67:1c:9c:59:
7d:c4:aa:44:57:5f:3f:73:3b:82:81:81:63:00:73:b7:5e:3d:
f7:be:f8:46:8f:34:17:c3:1f:65:28:9f:78:b4:b1:34:90:13:
f6:8d:de:bd:fd:0d:99:76:3a:bf:0a:3a:a9:99:4a:66:e7:52:
da:d3:73:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhFGlk642joqiPIYUVgV0ZFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0NDMyYjQxYjJhNmNjYzk0NzE3MTNmN2Y3MDdkNzY5Y2Q0
YzdkYmYwHhcNMjUwNzI2MDUwMDExWhcNMjUwNzI3MDUwMDExWjAzMTEwLwYDVQQD
EyhiNTEzNDAzNWMxNGMxM2QzMWUwMmE5NjIyYzRiOWNhMjE4MDM1ZWJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt3l4aWzb4uGq5cKyNlC4Ok5z9rT/
1GBDY4wnvJKMGr/fQNh41Dzugf7/pnuNbnnpqaX7kAowLh8kt4hBydvydM92/9qM
JLxlywc+lsr1xVuny3HIF4CretFRXv1NoYrHZuf565BlZl4hNVetWOcuVAldKkR4
cvBe2Q4qSiwsxmAe9iHtG5lefR8udqZZxlNqeRR0q/ryAvzy8Jvx97+FxjZ+UTJO
QCPtqy4R3JXJsmVo6sPI/yi25SMANYMaoZSdNJTFPyqW71kOe4FxNw4sWpqIHZOg
cHZyoSk0l8GpRQ3uurxn4GSWaKKeN3pN0C5JIwcFKzPP0PZdD5ewhD3jwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLUTQDXBTBPTHgKpYixLnKIYA16/MB8GA1UdIwQY
MBaAFARDK0GypszJRxcT9/cH12nNTH2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQkVNclFiS216TWxIRnhQMzl3ZlhhYzFNZmI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC83MmEzZGUtNzZjNi00ZGRiLWE0Yjgt
NjU5MWQ0ZTdmNDFmLzEvQkVNclFiS216TWxIRnhQMzl3ZlhhYzFNZmI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC83MmEzZGUtNzZjNi00ZGRiLWE0YjgtNjU5MWQ0ZTdmNDFm
LzEvQkVNclFiS216TWxIRnhQMzl3ZlhhYzFNZmI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmw0XxZxM
HApVThu9CkHDGdwwPBx9frYp86oJCuUldbO1BMWGxGLjEH8MGIvkz3EI1aKRxCXn
5q+Xu2cqgWNl33u7OCAQU4+oSKBj8oQJb1nLQxelMXnIdupNUyG3ZT8U0r6XrAYf
kndinf4cwQ8pfR1w+isx8vzuBPbAXsPdOr90HGug26bTAUmrlTHXKSSdllHlcVF9
XUXqf97IaYP4FsrUuB8qXDRkM0Q2Qe1rVhMdJZFFfN9LCejURmY8n/JJ/LtnHJxZ
fcSqRFdfP3M7goGBYwBzt1499774Ro80F8MfZSifeLSxNJAT9o3evf0NmXY6vwo6
qZlKZudS2tNzIw==
-----END CERTIFICATE-----
Generated at Sat Jul 26 11:11:10 2025 by rpki-client