Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
File: BZ9RaALCYTCaYQSHcubq_VhnqZA.mft (raw, json)
Hash identifier: yHFy9/o1i4yrOnJMsjC4Qe3auCgBlNKItDUjLreQ+Vs=
Subject key identifier: 8F:01:91:86:12:33:BA:BF:65:BE:4C:38:5D:77:C6:53:20:9F:F4:65
Authority key identifier: 05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
Certificate issuer: /CN=059f516802c261309a61048772e6eafd5867a990
Certificate serial: 0197499F3117FACE5FA2629D1C01B1662D1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
Manifest number: 1439
Signing time: Sat 07 Jun 2025 09:00:58 +0000
Manifest this update: Sat 07 Jun 2025 09:00:58 +0000
Manifest next update: Sun 08 Jun 2025 09:00:58 +0000
Files and hashes: 1: BZ9RaALCYTCaYQSHcubq_VhnqZA.crl (hash: 14a4LCE9OiP9iGzUvgArCMNkzQPB1EbkMo5vaYy677w=)
2: RyM0TaDcy3MATcF4kZgnomIhcSc.roa (hash: u1hwu96g0Ti3Leptf/8mOz/le6P/VB383vy/UE8/YqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:31:17:fa:ce:5f:a2:62:9d:1c:01:b1:66:2d:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=059f516802c261309a61048772e6eafd5867a990
Validity
Not Before: Jun 7 09:00:58 2025 GMT
Not After : Jun 8 09:00:58 2025 GMT
Subject: CN=8f0191861233babf65be4c385d77c653209ff465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:58:60:5e:45:a3:9c:47:5e:be:5e:eb:bb:5b:
74:e4:15:0e:cf:56:ab:28:9c:4a:c4:a8:ad:3f:16:
62:75:3d:40:d1:7c:80:f8:34:a6:07:0c:44:7a:16:
6d:c0:b9:b9:7a:6e:4f:63:44:94:a9:b0:2f:91:d6:
f9:cb:50:f8:e6:80:29:36:c3:d9:6c:6e:93:d3:76:
4a:62:79:75:43:90:04:eb:3c:0e:96:81:8b:58:72:
4b:01:37:4c:a7:56:78:83:ed:4b:ec:af:ee:b2:ea:
0c:2a:2b:51:04:73:86:69:6a:32:ef:36:f3:e6:ef:
8c:03:c6:b7:cd:f9:17:66:d1:8c:f1:41:31:20:e4:
ec:ec:d3:bf:b8:6d:6c:7b:09:f4:01:0e:3d:63:28:
a2:39:ae:06:1c:fc:f8:10:3d:3c:2d:e3:69:ec:6e:
44:f5:f8:e9:f8:b1:a1:56:33:1a:b1:f7:b2:48:b1:
e3:6f:78:c0:6b:33:29:02:a7:7a:8b:28:11:00:be:
c8:59:b1:ab:7d:5a:47:7a:f6:be:d1:6c:99:14:3f:
8c:13:29:08:92:89:47:bb:95:40:58:e0:51:9f:ad:
db:3a:08:c5:eb:4d:b3:17:7f:bd:3c:ae:6a:64:f6:
6f:5c:af:2d:99:e8:cb:9b:f5:40:20:3e:59:8e:c7:
52:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:01:91:86:12:33:BA:BF:65:BE:4C:38:5D:77:C6:53:20:9F:F4:65
X509v3 Authority Key Identifier:
keyid:05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:8e:f3:1d:bb:f6:fa:ff:c9:37:b5:fe:94:ab:f2:95:ba:fe:
88:3f:ce:24:91:e0:b5:39:ea:0e:c6:4f:e2:43:81:4d:e5:16:
18:ff:75:97:52:e4:38:04:af:8f:7f:31:2b:80:39:d8:a5:21:
35:ed:c6:ac:3f:fb:c5:48:d4:72:bd:50:bc:2a:4f:f0:cf:8e:
f2:b9:7a:8f:0e:f2:f2:99:5c:db:d9:8e:d7:f2:71:4e:fb:1b:
cb:76:3a:29:e3:4f:1c:23:68:f2:1a:cf:0b:99:33:ee:4d:c3:
0d:05:32:19:9c:c9:9f:a2:a7:fb:45:71:2a:a3:5a:4c:7d:b3:
3f:19:8c:78:31:fb:05:40:e7:40:0b:aa:68:8f:c3:bd:f4:29:
47:b9:3e:80:3c:90:f2:90:59:b0:22:4e:c1:97:24:b8:bb:b9:
66:cc:fb:ff:c5:11:e9:56:30:d3:27:6c:34:f5:01:70:4c:9c:
70:c1:ba:19:f7:af:5b:07:05:d7:51:72:33:75:d6:d7:72:4d:
fd:a1:d9:38:dd:e0:27:18:df:42:01:8b:18:19:b1:c6:b4:04:
56:94:1e:a4:ed:ff:4e:6f:60:52:0e:69:17:24:fc:34:9f:cc:
d2:a4:2e:20:3d:44:48:b7:15:92:e9:35:50:ba:8d:56:8a:85:
71:ae:27:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJnzEX+s5fomKdHAGxZi0eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OWY1MTY4MDJjMjYxMzA5YTYxMDQ4NzcyZTZlYWZkNTg2
N2E5OTAwHhcNMjUwNjA3MDkwMDU4WhcNMjUwNjA4MDkwMDU4WjAzMTEwLwYDVQQD
Eyg4ZjAxOTE4NjEyMzNiYWJmNjViZTRjMzg1ZDc3YzY1MzIwOWZmNDY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzFhgXkWjnEdevl7ru1t05BUOz1ar
KJxKxKitPxZidT1A0XyA+DSmBwxEehZtwLm5em5PY0SUqbAvkdb5y1D45oApNsPZ
bG6T03ZKYnl1Q5AE6zwOloGLWHJLATdMp1Z4g+1L7K/usuoMKitRBHOGaWoy7zbz
5u+MA8a3zfkXZtGM8UExIOTs7NO/uG1sewn0AQ49YyiiOa4GHPz4ED08LeNp7G5E
9fjp+LGhVjMasfeySLHjb3jAazMpAqd6iygRAL7IWbGrfVpHeva+0WyZFD+MEykI
kolHu5VAWOBRn63bOgjF602zF3+9PK5qZPZvXK8tmejLm/VAID5ZjsdSsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI8BkYYSM7q/Zb5MOF13xlMgn/RlMB8GA1UdIwQY
MBaAFAWfUWgCwmEwmmEEh3Lm6v1YZ6mQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlo5UmFBTENZVENhWVFTSGN1YnFfVmhucVpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy80MDg3Y2YtNzFlOS00MmNhLThjMzUt
OTUxYjE5ODU2NzFjLzEvQlo5UmFBTENZVENhWVFTSGN1YnFfVmhucVpBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy80MDg3Y2YtNzFlOS00MmNhLThjMzUtOTUxYjE5ODU2NzFj
LzEvQlo5UmFBTENZVENhWVFTSGN1YnFfVmhucVpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALo7zHbv2
+v/JN7X+lKvylbr+iD/OJJHgtTnqDsZP4kOBTeUWGP91l1LkOASvj38xK4A52KUh
Ne3GrD/7xUjUcr1QvCpP8M+O8rl6jw7y8plc29mO1/JxTvsby3Y6KeNPHCNo8hrP
C5kz7k3DDQUyGZzJn6Kn+0VxKqNaTH2zPxmMeDH7BUDnQAuqaI/DvfQpR7k+gDyQ
8pBZsCJOwZckuLu5Zsz7/8UR6VYw0ydsNPUBcEyccMG6GfevWwcF11FyM3XW13JN
/aHZON3gJxjfQgGLGBmxxrQEVpQepO3/Tm9gUg5pFyT8NJ/M0qQuID1ESLcVkuk1
ULqNVoqFca4now==
-----END CERTIFICATE-----
Generated at Sat Jun 7 12:30:57 2025 by rpki-client