Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/a9276f-e8c1-45d6-a42d-0c64debe9ec4/1/BQKGH5I8fsETK1SPeruGG6yh9AY.mft
File: BQKGH5I8fsETK1SPeruGG6yh9AY.mft (raw, json)
Hash identifier: Nfz1tebr3VKU6mrdO44N2/mqSWbcns1hIVAy72ONeHw=
Subject key identifier: 59:D2:7E:41:73:54:0A:4F:60:65:AF:5C:F7:6E:F1:B7:B0:32:93:99
Authority key identifier: 05:02:86:1F:92:3C:7E:C1:13:2B:54:8F:7A:BB:86:1B:AC:A1:F4:06
Certificate issuer: /CN=0502861f923c7ec1132b548f7abb861baca1f406
Certificate serial: 0198443EA13F5F91989BB0AB0004FA6B9BED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BQKGH5I8fsETK1SPeruGG6yh9AY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/a9276f-e8c1-45d6-a42d-0c64debe9ec4/1/BQKGH5I8fsETK1SPeruGG6yh9AY.mft
Manifest number: 15FF
Signing time: Sat 26 Jul 2025 01:00:11 +0000
Manifest this update: Sat 26 Jul 2025 01:00:11 +0000
Manifest next update: Sun 27 Jul 2025 01:00:11 +0000
Files and hashes: 1: 1-cuEh2EPyWBKZZW9Ux10_rTtiMs.roa (hash: 0D28OLhEHvWPWn+YHZLbb/jrZsxhbIGE8alDluVW7tA=)
2: BQKGH5I8fsETK1SPeruGG6yh9AY.crl (hash: WJPNg/63cTEYoLL2Epn2rmzyCWHqxigSTVUTthPoagg=)
3: FJdpsV6pjhMSL6IT7vB41CVTVRI.roa (hash: S25aXExUDruwqgW26JBpjwRzCwZa0LN7qVcFUwKAsy4=)
4: SHQabxNAl7yCxPIYXS8QEWqbJ8s.roa (hash: 8gBiOpFpyvnrW5MWvLhoQ1iXNHnnsflwwhdtkDHOWgw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/a9276f-e8c1-45d6-a42d-0c64debe9ec4/1/BQKGH5I8fsETK1SPeruGG6yh9AY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/a9276f-e8c1-45d6-a42d-0c64debe9ec4/1/BQKGH5I8fsETK1SPeruGG6yh9AY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BQKGH5I8fsETK1SPeruGG6yh9AY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Jul 2025 21:50:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:44:3e:a1:3f:5f:91:98:9b:b0:ab:00:04:fa:6b:9b:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0502861f923c7ec1132b548f7abb861baca1f406
Validity
Not Before: Jul 26 01:00:11 2025 GMT
Not After : Jul 27 01:00:11 2025 GMT
Subject: CN=59d27e4173540a4f6065af5cf76ef1b7b0329399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:10:40:e2:4e:0c:86:74:5b:0e:ee:f4:0b:2b:
e6:fa:12:68:ca:54:29:68:61:05:72:9a:26:a2:06:
0d:f7:cb:d2:8c:ca:cb:c4:29:12:05:77:db:fc:54:
72:40:75:8b:fa:1b:8f:c0:9e:98:6c:04:54:a5:60:
5a:ee:44:9e:b6:45:17:e5:97:a5:76:a5:38:8f:dd:
d0:a0:4b:ba:7b:07:5f:06:5b:c3:72:c6:e4:db:a2:
b4:7b:0e:81:bb:e1:9b:f5:fe:b8:7a:26:07:4d:15:
31:5f:db:f6:90:bb:00:ac:39:0a:03:6e:3d:01:93:
87:60:c5:7f:10:9e:b8:ae:9a:83:33:9e:80:60:42:
7f:f4:a9:b4:df:e7:f9:fb:9e:de:86:ce:b1:00:da:
ba:b9:96:ea:aa:62:f6:15:1a:4a:47:e3:3c:8e:65:
83:cf:e8:f4:55:69:6f:35:3a:1f:87:c8:76:45:e4:
b3:c8:5f:af:4d:c2:a9:85:0c:96:eb:b3:2e:4d:83:
e3:27:aa:f3:93:91:14:d2:37:32:14:ba:35:d7:f1:
99:6d:2b:d2:c0:6d:d4:e0:fe:b3:08:77:f5:2b:d3:
80:be:c7:5d:06:34:36:db:14:1e:44:28:66:73:52:
1a:71:3d:d4:ef:44:ce:62:2f:bd:fa:bf:ba:9c:2c:
6d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D2:7E:41:73:54:0A:4F:60:65:AF:5C:F7:6E:F1:B7:B0:32:93:99
X509v3 Authority Key Identifier:
keyid:05:02:86:1F:92:3C:7E:C1:13:2B:54:8F:7A:BB:86:1B:AC:A1:F4:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BQKGH5I8fsETK1SPeruGG6yh9AY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/a9276f-e8c1-45d6-a42d-0c64debe9ec4/1/BQKGH5I8fsETK1SPeruGG6yh9AY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/a9276f-e8c1-45d6-a42d-0c64debe9ec4/1/BQKGH5I8fsETK1SPeruGG6yh9AY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:95:96:c1:1f:8c:77:e1:d8:56:1f:4f:4c:ee:79:78:c2:72:
33:a3:d8:62:ed:b7:03:4a:cd:e4:19:77:ee:62:fb:cc:c7:28:
e1:0b:f8:3c:c3:47:94:cc:15:2a:91:7e:6c:25:7c:f3:76:2e:
8a:d1:71:af:3a:a8:7f:04:10:63:01:f2:36:dc:eb:ff:a5:f4:
a6:e6:01:bb:51:aa:3e:dc:e1:51:6b:c7:cd:41:eb:28:d6:ac:
98:09:ba:4b:8b:83:79:e0:62:39:80:86:76:3a:26:af:04:ab:
23:19:a8:4f:3b:74:11:5c:74:a3:66:3a:93:41:46:7a:0e:04:
1c:b4:fc:4a:6a:8f:c9:d6:e8:d2:c6:78:ec:42:84:b9:77:61:
ee:b1:bd:56:ca:40:aa:4a:98:8d:a1:8d:8d:62:00:90:12:a2:
ae:77:b6:f6:4c:c2:86:fe:94:fc:98:18:9b:81:b6:eb:1b:90:
d5:f3:34:b4:9d:82:4e:e1:ee:2c:e0:3a:8f:6a:77:0a:ab:53:
9d:2a:27:37:9b:7e:7d:0a:d3:bc:b0:b9:06:da:7f:14:48:2d:
0f:f1:c1:ab:a4:14:9c:5a:51:9d:5e:5e:10:a7:bc:8b:6f:69:
05:3d:6f:9f:09:48:af:75:98:16:de:a1:7f:6d:5c:bf:fe:78:
b6:e5:10:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 06:06:10 2025 by rpki-client