Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
File: BZqsWXzkoNE7edIrO_GKSJnddk8.mft (raw, json)
Hash identifier: BT0w1BYgi1MKwWkTQ1MeF9gksqholgVGFUs1Kf/u9Sc=
Subject key identifier: 67:7B:95:38:78:FD:38:7B:ED:31:89:CD:83:B5:64:4D:56:96:10:29
Authority key identifier: 05:9A:AC:59:7C:E4:A0:D1:3B:79:D2:2B:3B:F1:8A:48:99:DD:76:4F
Certificate issuer: /CN=059aac597ce4a0d13b79d22b3bf18a4899dd764f
Certificate serial: 0199240D884C104D1D888B5B8CBA1D17A7C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
Manifest number: 0B00
Signing time: Sun 07 Sep 2025 12:01:30 +0000
Manifest this update: Sun 07 Sep 2025 12:01:30 +0000
Manifest next update: Mon 08 Sep 2025 12:01:30 +0000
Files and hashes: 1: BZqsWXzkoNE7edIrO_GKSJnddk8.crl (hash: tA/D8hENKTDgdelgl7+M7Wxjns2ysvEOxLSqthnb9/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:88:4c:10:4d:1d:88:8b:5b:8c:ba:1d:17:a7:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=059aac597ce4a0d13b79d22b3bf18a4899dd764f
Validity
Not Before: Sep 7 12:01:30 2025 GMT
Not After : Sep 8 12:01:30 2025 GMT
Subject: CN=677b953878fd387bed3189cd83b5644d56961029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:cb:7a:fa:6e:80:2c:3f:e9:83:ff:80:be:0a:
5b:95:91:74:b7:a7:1e:c8:bf:1c:87:ef:c0:24:5a:
1e:39:49:8f:e0:09:9c:21:3a:b3:81:a8:c5:13:06:
69:3d:b5:9e:05:30:d7:e8:bf:ae:a2:30:79:f8:46:
24:da:7d:43:fb:ff:e0:d8:8b:a0:c7:d7:75:27:29:
a0:12:fd:fa:7b:3a:2b:9f:71:44:fa:e9:97:37:ba:
17:fc:b8:30:56:0f:46:a3:d4:16:f1:3e:f3:d5:6e:
ff:4f:7c:c0:1f:72:c5:64:89:c6:d3:e6:e6:ee:23:
14:4a:e8:e8:22:95:b8:57:b5:e9:f9:75:b4:78:38:
5c:d5:61:22:df:72:e1:cd:15:e1:b8:d4:57:a9:2a:
22:6c:03:9b:3d:36:4b:94:48:fd:ab:2d:8f:94:e4:
de:62:ad:6c:4d:3e:2f:b9:e7:af:35:0f:7e:bc:3f:
88:38:a8:e4:5d:d1:53:e9:8a:3c:60:62:78:93:af:
c2:c5:52:f6:dc:72:17:af:e2:02:f0:a3:f3:be:68:
bd:af:b6:de:09:42:fd:e2:c9:50:96:ce:a0:29:3f:
44:e8:50:22:24:20:e9:ac:39:c8:a7:da:b0:5e:35:
55:00:d4:6f:86:71:fd:c8:48:48:05:8b:9b:7a:69:
c2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:7B:95:38:78:FD:38:7B:ED:31:89:CD:83:B5:64:4D:56:96:10:29
X509v3 Authority Key Identifier:
keyid:05:9A:AC:59:7C:E4:A0:D1:3B:79:D2:2B:3B:F1:8A:48:99:DD:76:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:9e:37:02:a7:59:9a:13:8b:07:24:11:71:80:18:68:6a:23:
02:cd:40:8d:a1:87:66:09:bb:f4:3a:fd:34:90:d2:ee:f5:3f:
83:9c:49:a0:c0:f0:cd:cb:a4:c6:7a:65:4b:d9:c0:29:85:de:
82:cc:a7:f4:6b:2a:40:71:5a:9b:32:c3:2b:bc:03:79:66:88:
de:67:21:86:79:e7:a3:f7:be:86:17:60:07:90:f6:72:83:7c:
15:f3:b9:07:4a:e5:e7:69:6a:58:4b:69:6e:70:fe:1e:0c:1c:
1b:07:ee:c7:7d:b2:98:d1:60:10:f5:d4:40:40:1f:58:e2:48:
aa:13:01:83:2a:da:c9:b6:54:87:f2:0f:b5:3a:89:c5:92:1e:
85:c4:c3:5d:4d:5a:1b:c6:41:7b:88:ce:9c:9d:df:46:52:87:
54:04:40:9a:0e:e2:bf:bc:02:87:59:e3:45:34:13:7e:32:49:
fa:4c:74:93:c0:4c:46:3d:20:06:9b:59:d6:4d:92:10:24:4b:
63:49:8d:c9:24:de:c3:f0:1c:ff:c4:cb:15:b5:35:58:01:8c:
16:00:00:c5:b7:58:0b:df:d4:0f:93:97:0c:05:ca:ac:e0:1f:
eb:73:fd:ea:b8:e4:96:2a:34:2a:22:2a:d8:9a:12:a0:d4:b4:
03:d2:84:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:46 2025 by rpki-client