Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
File: BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft (raw, json)
Hash identifier: s4h2bZN0QRooUuIu4BHQ6+CE9tWE1FhvJxioO1NiQO8=
Subject key identifier: E5:A8:A1:D4:DD:04:C1:09:7E:C0:CD:89:E5:86:51:1B:FE:F5:A5:69
Authority key identifier: 04:B6:1E:51:40:CD:89:84:F7:FE:20:10:DB:59:EB:DB:2F:3E:D4:E6
Certificate issuer: /CN=04b61e5140cd8984f7fe2010db59ebdb2f3ed4e6
Certificate serial: 019A2289C63AA96E604392A143740477C5A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
Manifest number: 0D4E
Signing time: Sun 26 Oct 2025 22:00:45 +0000
Manifest this update: Sun 26 Oct 2025 22:00:45 +0000
Manifest next update: Mon 27 Oct 2025 22:00:45 +0000
Files and hashes: 1: BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl (hash: XuR7EIcktZ+IsgrXFnaPGCYLs608ThelCETbzGSOEs8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 22:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:89:c6:3a:a9:6e:60:43:92:a1:43:74:04:77:c5:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04b61e5140cd8984f7fe2010db59ebdb2f3ed4e6
Validity
Not Before: Oct 26 22:00:45 2025 GMT
Not After : Oct 27 22:00:45 2025 GMT
Subject: CN=e5a8a1d4dd04c1097ec0cd89e586511bfef5a569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:18:20:c8:22:45:82:fb:0c:24:77:0f:8f:66:
d8:e9:47:f8:6b:b6:66:7b:89:21:7d:c5:75:83:a6:
50:8d:a3:18:96:1c:f6:69:06:92:bf:ad:ec:73:6f:
32:d5:8f:c6:f1:9f:fc:92:2c:2b:56:0c:ff:f6:61:
c1:29:24:a1:92:23:1b:8b:c9:91:96:51:cc:76:03:
f1:eb:fb:03:d7:e4:70:7b:ae:4c:5a:b7:ca:39:b2:
8b:a2:94:b4:9b:f5:41:8d:aa:a4:9f:93:42:63:ae:
82:dc:b5:82:33:91:98:a0:59:ab:56:be:e5:6e:be:
6b:22:c2:83:23:e2:cd:e2:e2:3e:1a:09:97:ce:d3:
91:61:13:28:4a:b1:ba:f4:fb:42:cf:66:17:b2:57:
bc:90:5f:0f:5f:68:df:a9:d4:b0:7e:17:fd:e8:3e:
5a:ef:80:fd:a0:ad:6c:c6:3a:24:f9:25:92:75:0f:
04:23:f5:a1:0f:a0:3d:45:a1:ca:52:74:be:0d:9f:
54:5f:48:38:2e:32:13:08:f9:96:8d:c5:b6:26:00:
45:e2:7d:94:d7:de:73:69:5e:6f:f8:60:4e:5f:57:
10:e0:24:a1:ba:a8:0d:f6:9e:c1:6c:e6:e9:8f:11:
5d:ae:bc:55:3b:bd:38:09:e0:0a:92:63:e7:3c:dd:
53:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:A8:A1:D4:DD:04:C1:09:7E:C0:CD:89:E5:86:51:1B:FE:F5:A5:69
X509v3 Authority Key Identifier:
keyid:04:B6:1E:51:40:CD:89:84:F7:FE:20:10:DB:59:EB:DB:2F:3E:D4:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:56:1a:ee:b9:f9:05:f6:a2:2f:3e:a1:a2:cf:ff:ce:63:a5:
0b:d7:48:c2:f2:a1:e3:c9:67:ee:1d:24:5e:e5:23:47:33:83:
d5:ed:0c:57:50:96:62:1a:96:11:06:57:2f:4f:f2:aa:7a:8b:
1a:6e:9c:1d:11:3c:c1:a7:f1:da:5b:51:d5:f2:9b:5c:67:02:
73:df:f9:96:ce:55:44:5e:a4:d0:98:64:e5:ff:18:ee:18:d5:
ed:5f:30:d6:a2:2b:70:39:38:db:10:c7:af:db:91:e3:18:54:
cc:5f:30:55:70:f1:31:9f:5d:0c:86:b0:03:2e:23:2c:18:f5:
19:25:2f:04:5d:c7:00:da:80:4c:00:a9:8e:7a:e1:6b:d3:25:
02:ed:75:3b:56:67:08:e5:dc:17:45:71:60:fd:97:2b:6b:fa:
08:a0:00:78:d1:cc:00:4c:eb:b4:d2:51:ba:9b:f3:5f:8d:d9:
42:21:ae:d8:ef:ce:cf:65:f4:1d:71:4b:db:cd:72:4a:bc:37:
a9:15:58:1a:a7:8b:26:45:bc:ec:2a:d7:b7:e9:04:d9:4a:a5:
9b:40:7a:61:b3:36:5e:75:ab:1d:0b:37:bb:b2:cc:f8:2c:da:
9e:43:26:36:fa:45:46:bc:6d:1a:05:8a:b8:46:62:1f:07:d0:
a9:fd:e9:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 07:13:48 2025 by rpki-client