Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
File: BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft (raw, json)
Hash identifier: aS8gl/G/sYZT2gapyimOTIzB5OmAs6WK7X1nLWBBWI0=
Subject key identifier: C4:EC:79:1A:5C:3C:76:5D:65:32:75:AB:FE:68:04:D8:04:4F:28:22
Authority key identifier: 04:B6:1E:51:40:CD:89:84:F7:FE:20:10:DB:59:EB:DB:2F:3E:D4:E6
Certificate issuer: /CN=04b61e5140cd8984f7fe2010db59ebdb2f3ed4e6
Certificate serial: 0197488C49B05D24CB62A362F82F0CB439C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
Manifest number: 0BD4
Signing time: Sat 07 Jun 2025 04:00:42 +0000
Manifest this update: Sat 07 Jun 2025 04:00:42 +0000
Manifest next update: Sun 08 Jun 2025 04:00:42 +0000
Files and hashes: 1: BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl (hash: FbFLa/uI2C1mH+gOrRrfGG/fdkXcA4MFoPwFKFBbPYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:49:b0:5d:24:cb:62:a3:62:f8:2f:0c:b4:39:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04b61e5140cd8984f7fe2010db59ebdb2f3ed4e6
Validity
Not Before: Jun 7 04:00:42 2025 GMT
Not After : Jun 8 04:00:42 2025 GMT
Subject: CN=c4ec791a5c3c765d653275abfe6804d8044f2822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b9:e4:54:82:fd:5e:56:9f:cc:9a:06:e8:f1:
8a:d7:d3:eb:6c:df:aa:7f:ef:4f:39:93:f2:d7:1f:
f9:ef:8d:88:99:c6:88:0c:8e:fd:d8:5a:33:d3:65:
28:69:12:3f:8c:27:5d:26:20:06:ee:eb:52:38:b5:
d8:bf:2b:2a:7d:76:8c:25:df:fd:65:46:1b:93:c5:
c9:09:8d:19:94:06:2a:7b:93:9b:79:b0:6e:2a:56:
e0:58:5c:d0:76:bd:78:4d:dc:b2:ef:93:ea:bb:4f:
8e:c7:79:cf:05:53:f6:e4:6b:18:a8:32:e2:8e:b0:
72:61:6b:bf:5c:d3:b5:32:f6:a0:10:64:8a:c2:2c:
44:bf:c6:41:c9:d7:28:c8:ad:95:93:94:99:84:fc:
9b:a3:11:34:cd:3d:40:e4:75:8b:f1:16:88:cc:ec:
ec:3b:b7:21:14:90:83:e1:31:02:2a:a4:25:01:3c:
c8:9a:c2:e9:68:95:ea:c9:91:c1:23:b1:3c:7d:9f:
93:b2:69:69:fa:4f:ba:91:a6:07:58:f0:3c:c7:e3:
72:8e:11:25:7d:48:0b:84:bd:eb:f0:86:d1:d1:b5:
5b:0e:44:68:9a:4a:4d:ca:b5:ef:f4:b4:b3:18:46:
67:72:77:25:4c:a2:03:5f:5e:38:6a:e5:3b:8b:c7:
bd:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:EC:79:1A:5C:3C:76:5D:65:32:75:AB:FE:68:04:D8:04:4F:28:22
X509v3 Authority Key Identifier:
keyid:04:B6:1E:51:40:CD:89:84:F7:FE:20:10:DB:59:EB:DB:2F:3E:D4:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:f1:33:ad:39:06:8b:f9:ca:a6:93:4a:8f:8f:a8:e6:3a:e5:
e1:69:40:fb:57:13:48:44:68:9a:e9:38:9f:43:f5:18:5d:ac:
7b:1e:cf:9b:8d:cd:77:dc:96:de:3d:c8:5c:d7:62:ef:59:09:
5c:26:de:40:6d:f7:13:cb:59:dd:22:bb:41:ca:a5:9d:43:96:
bd:dc:ba:b5:92:ee:ac:f1:d8:ec:5a:08:c6:bf:9c:93:15:51:
f6:db:a2:e0:a6:56:62:14:f4:81:fe:5f:cd:43:8c:f1:9c:31:
5c:f5:6b:b3:be:16:3d:32:e3:40:7d:1a:17:fc:4d:bf:50:35:
d0:ef:e8:42:a7:2d:58:85:ff:25:fd:7b:72:5b:7a:95:d9:d7:
a0:cc:39:aa:94:dd:57:fc:b1:b0:ec:76:de:52:4e:b9:5e:1a:
8f:d6:1a:e1:9e:8f:e8:ac:34:cf:99:0e:3e:5c:5c:f9:96:26:
1f:ac:e3:85:63:5f:7b:53:66:e9:55:d8:ac:03:36:6a:0e:29:
fc:11:5b:91:5d:fc:b5:51:3a:7b:78:b6:ba:77:a6:04:4d:07:
df:9d:8f:ef:36:57:da:48:b4:cb:31:52:f6:ad:5c:d9:1f:6e:
18:a3:44:04:d2:c4:58:be:52:bb:cc:b8:ec:5e:1d:1c:41:77:
75:ac:48:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:35:38 2025 by rpki-client