Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/3151b8-d8f1-4102-936f-93ffec5c3c81/1/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.mft
File: BmuiCcUMAqhYtUMIyCrlvzAu-qQ.mft (raw, json)
Hash identifier: 8wNVLJekhJwumRQlHmbUiU7an/eXK1/UQmVskzpdgGI=
Subject key identifier: 3F:0F:18:62:AC:7A:81:BD:94:A4:74:AD:30:86:E8:4E:8E:EF:B4:91
Authority key identifier: 06:6B:A2:09:C5:0C:02:A8:58:B5:43:08:C8:2A:E5:BF:30:2E:FA:A4
Certificate issuer: /CN=066ba209c50c02a858b54308c82ae5bf302efaa4
Certificate serial: 019A71B9292F39ECD220BC914322595270F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/3151b8-d8f1-4102-936f-93ffec5c3c81/1/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.mft
Manifest number: 13F0
Signing time: Tue 11 Nov 2025 07:02:31 +0000
Manifest this update: Tue 11 Nov 2025 07:02:31 +0000
Manifest next update: Wed 12 Nov 2025 07:02:31 +0000
Files and hashes: 1: BmuiCcUMAqhYtUMIyCrlvzAu-qQ.crl (hash: MNhQpMfr3BItD9YHYvAtyS3pQUXlrm2bC9bH/c+I4mo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/3151b8-d8f1-4102-936f-93ffec5c3c81/1/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/3151b8-d8f1-4102-936f-93ffec5c3c81/1/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:29:2f:39:ec:d2:20:bc:91:43:22:59:52:70:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=066ba209c50c02a858b54308c82ae5bf302efaa4
Validity
Not Before: Nov 11 07:02:31 2025 GMT
Not After : Nov 12 07:02:31 2025 GMT
Subject: CN=3f0f1862ac7a81bd94a474ad3086e84e8eefb491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f5:0e:80:9b:8b:f9:2a:b9:ce:bc:44:a6:ba:
db:5c:62:46:4a:ca:6c:80:e8:80:51:e5:09:2d:0d:
f6:6f:2e:6b:85:9c:97:1c:37:51:74:36:e2:8c:dc:
77:4c:27:a9:fe:95:f7:32:2e:a4:aa:4a:4c:30:20:
ca:87:8f:f3:ef:32:73:cc:d8:3b:59:38:0f:c5:7e:
54:5e:e5:58:df:50:55:67:68:14:8f:24:11:0e:0e:
d8:f3:15:17:d5:12:21:80:a4:2d:e9:74:8e:e6:0e:
dc:2a:59:30:d1:ef:12:15:27:0f:8c:c7:31:7d:ab:
64:58:45:78:dc:7f:ef:1f:56:5c:1c:9a:69:b3:08:
d1:db:43:aa:3e:ba:ff:8a:cd:9f:b5:8b:52:00:29:
1a:45:42:00:91:d5:14:52:20:4b:73:40:f3:db:77:
7d:8a:cd:3e:66:8d:f9:11:fa:7a:0d:1b:c4:56:ac:
0e:b5:ed:7b:29:b3:35:1b:3f:b8:ec:b3:56:37:41:
0d:c9:ff:23:8d:1a:b9:02:a3:56:52:84:00:6c:5b:
33:a9:20:4f:99:7a:eb:b6:2e:e4:c9:11:e1:53:72:
7d:36:92:0a:a5:fc:68:81:d3:90:e9:68:66:87:2b:
bc:5b:20:40:27:d2:4e:4d:e6:63:3e:4a:5b:22:25:
b0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:0F:18:62:AC:7A:81:BD:94:A4:74:AD:30:86:E8:4E:8E:EF:B4:91
X509v3 Authority Key Identifier:
keyid:06:6B:A2:09:C5:0C:02:A8:58:B5:43:08:C8:2A:E5:BF:30:2E:FA:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3151b8-d8f1-4102-936f-93ffec5c3c81/1/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3151b8-d8f1-4102-936f-93ffec5c3c81/1/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:dd:9d:98:60:b4:68:01:51:35:f7:5a:0b:ac:c4:04:82:f9:
97:bd:67:a6:4f:88:42:71:92:39:15:a2:93:f0:9e:b8:5b:1f:
52:15:8a:02:ef:fb:e2:c5:ca:b1:00:c4:8a:19:e1:d7:b3:27:
dd:dd:1a:7a:4e:a8:0b:22:c4:47:c7:69:ff:a9:79:01:50:c3:
f2:bf:bc:04:cf:62:87:5a:20:bf:15:74:fb:fe:9a:c8:a0:0c:
a8:54:68:88:c4:3a:3c:0c:83:51:f8:cd:43:d0:31:f3:74:90:
a5:9a:63:9d:53:71:2b:70:8b:fc:a5:b0:a3:7b:5d:68:e4:89:
6c:18:77:34:54:50:cd:37:2d:99:26:4f:0b:d5:5e:65:95:f1:
f8:bc:45:e4:cf:1a:64:6e:f3:21:60:d8:e4:b2:b6:be:59:3b:
09:c3:92:42:01:86:65:d2:3e:9f:dc:1c:53:da:30:5a:12:2e:
ce:8c:ba:db:81:83:c0:26:b9:2b:f1:7f:fe:a8:49:e9:72:cf:
b3:19:ed:35:d0:8b:2e:b5:2e:d6:ec:ed:5c:db:65:67:be:d4:
10:9a:e4:40:91:26:17:45:a1:ae:59:e3:af:46:b7:fe:51:c3:
c9:01:18:e0:7e:5c:45:78:53:1d:46:0f:e4:2d:3f:69:82:12:
c8:0d:6f:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:45:32 2025 by rpki-client