Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.mft
File: BpilU2SQ1wyON7dvMtpoTxIp2bo.mft (raw, json)
Hash identifier: UKneH584N1Y1Qx2sRQGlscaEj0YpfyRjwZCBEs2KFf0=
Subject key identifier: E4:5D:42:20:5A:97:E3:77:30:D1:1E:43:74:C2:EF:A7:1E:45:D0:B4
Authority key identifier: 06:98:A5:53:64:90:D7:0C:8E:37:B7:6F:32:DA:68:4F:12:29:D9:BA
Certificate issuer: /CN=0698a5536490d70c8e37b76f32da684f1229d9ba
Certificate serial: 019746D4A1A8253725DC2FD9CFDBCEBC5DF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpilU2SQ1wyON7dvMtpoTxIp2bo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.mft
Manifest number: 30
Signing time: Fri 06 Jun 2025 20:00:29 +0000
Manifest this update: Fri 06 Jun 2025 20:00:29 +0000
Manifest next update: Sat 07 Jun 2025 20:00:29 +0000
Files and hashes: 1: 6I3Ul79wxRN6W37mo7nUpqwqt0s.roa (hash: J9bvPeLp8sfcjLoyxN9ggYT+mX3AB6I6+8a1daK3z1U=)
2: BpilU2SQ1wyON7dvMtpoTxIp2bo.crl (hash: Xp2prqmCzkoyMD9uaQp5seDbuByFbiqHnq/mLJy95yI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BpilU2SQ1wyON7dvMtpoTxIp2bo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 20:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:a1:a8:25:37:25:dc:2f:d9:cf:db:ce:bc:5d:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0698a5536490d70c8e37b76f32da684f1229d9ba
Validity
Not Before: Jun 6 20:00:29 2025 GMT
Not After : Jun 7 20:00:29 2025 GMT
Subject: CN=e45d42205a97e37730d11e4374c2efa71e45d0b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:17:aa:7b:10:7f:8b:ae:24:36:69:89:fd:ad:
e6:b0:a1:43:c0:78:96:11:3a:07:70:b6:6b:64:13:
8f:57:ff:32:2d:77:65:c2:05:00:58:fe:17:11:09:
1b:34:79:7b:70:aa:01:98:00:25:da:b0:dd:c5:0d:
3e:c3:14:2b:45:ec:cd:0e:20:df:bc:92:fc:3e:bd:
59:01:22:5e:44:7d:f8:ed:9d:01:b8:4d:a6:4a:34:
69:fa:52:45:12:3a:4b:46:3d:37:b9:dd:82:4a:a6:
c5:71:d1:af:73:56:56:59:94:0c:f5:62:bd:c5:c4:
b0:04:46:11:b6:a7:6b:eb:0e:11:fd:e8:db:18:22:
b3:78:df:33:18:39:03:5f:48:30:e5:b1:59:ff:19:
1b:89:3c:95:d7:f9:1c:f6:89:31:26:94:e5:1d:17:
d1:fe:43:e4:20:73:12:54:37:0b:21:24:22:e5:b4:
68:a0:85:4e:1f:37:d6:32:11:db:42:e0:10:8d:93:
c3:02:ae:b8:44:4f:df:a0:ec:b4:6b:e4:52:09:3f:
cf:d0:9b:95:65:a3:31:2d:d3:be:88:09:38:dc:60:
1c:ff:82:f4:30:b3:b9:a2:12:e1:df:39:f8:7d:be:
61:7c:c4:55:4c:cd:40:37:16:fa:54:0a:94:94:6d:
58:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:5D:42:20:5A:97:E3:77:30:D1:1E:43:74:C2:EF:A7:1E:45:D0:B4
X509v3 Authority Key Identifier:
keyid:06:98:A5:53:64:90:D7:0C:8E:37:B7:6F:32:DA:68:4F:12:29:D9:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpilU2SQ1wyON7dvMtpoTxIp2bo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:8e:ae:a2:68:7d:12:55:c5:c9:db:4d:e1:e8:ee:cf:df:7e:
31:c6:cd:04:73:19:7b:be:cb:95:f5:53:29:9c:93:90:30:4a:
94:ae:9d:59:23:54:5d:66:32:7d:1f:2b:fb:86:bf:09:7a:36:
f4:16:40:9a:c1:b4:c4:7a:93:c5:0a:9d:79:ab:2b:74:ac:4a:
bf:ff:7d:4c:e3:e0:43:22:ad:3d:c1:45:61:ae:78:39:11:9f:
03:4b:a3:fd:d7:42:ef:a0:2f:98:a0:55:b9:12:1d:fc:2a:89:
93:a9:02:3f:c2:99:d5:5a:bf:a0:96:6b:f7:a1:72:96:68:cc:
59:1f:22:24:2b:59:3f:46:3e:45:c2:68:a9:fc:b8:8e:ba:f2:
9e:3f:d1:4d:9a:45:3a:6c:87:c5:5f:4d:6e:d3:cc:ee:be:24:
d7:3d:fc:10:69:95:fb:94:fc:6d:e0:e8:5f:55:56:30:57:39:
8e:5a:8d:14:e3:ff:63:4a:db:0e:63:76:6b:29:51:cb:98:b2:
b2:1a:e3:9a:35:8a:50:7c:71:5e:14:83:ac:15:cb:30:39:b7:
e0:07:07:ad:8c:de:3c:1a:1d:0b:63:cf:5f:61:78:75:00:41:
3e:79:ba:66:9b:b4:fd:f1:8a:ab:be:9f:39:e3:fb:91:73:bd:
67:61:28:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:43:16 2025 by rpki-client