Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
File: BkwamGxZM6O5EIToo_8IBm05jhk.mft (raw, json)
Hash identifier: rI8R8U2SMtQct8QMcP/P8h5ir3d2Ys9D7huwdPLtRs4=
Subject key identifier: 43:57:6B:39:0F:2F:AF:61:B7:3D:AB:EE:B6:6B:94:7E:3A:D9:C1:31
Authority key identifier: 06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19
Certificate issuer: /CN=064c1a986c5933a3b91084e8a3ff08066d398e19
Certificate serial: 01974A7A6C6900501D153B82E12E0DA5C251
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
Manifest number: 098D
Signing time: Sat 07 Jun 2025 13:00:26 +0000
Manifest this update: Sat 07 Jun 2025 13:00:26 +0000
Manifest next update: Sun 08 Jun 2025 13:00:26 +0000
Files and hashes: 1: BkwamGxZM6O5EIToo_8IBm05jhk.crl (hash: bTfDaSRArJooAnmLWGQdMcgPhKRORLFI1bRrybZc/dQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 13:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:6c:69:00:50:1d:15:3b:82:e1:2e:0d:a5:c2:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=064c1a986c5933a3b91084e8a3ff08066d398e19
Validity
Not Before: Jun 7 13:00:26 2025 GMT
Not After : Jun 8 13:00:26 2025 GMT
Subject: CN=43576b390f2faf61b73dabeeb66b947e3ad9c131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:de:75:df:34:80:56:b5:f6:44:11:c4:5e:f8:
b8:d6:48:15:7f:45:a1:1d:f2:37:2c:6b:d7:73:da:
06:cf:18:b1:2f:fb:71:8a:69:5b:54:64:71:97:08:
65:1a:7f:06:19:d9:66:d6:bc:c6:84:4c:f3:e6:b8:
c9:3b:72:40:e2:5c:21:ba:17:f5:d5:55:66:f9:3f:
c7:0c:eb:07:4c:cb:50:88:64:b5:c2:3a:70:8b:49:
d8:63:32:8d:f3:34:0e:2c:94:11:65:f0:9f:07:30:
46:c7:04:f9:d8:37:29:3c:31:f5:6b:fa:a9:7f:68:
63:92:fb:61:38:8b:61:5e:1e:ad:20:e9:44:22:de:
48:6a:82:c2:25:bb:45:9f:53:1f:12:71:da:4c:82:
15:cb:33:eb:31:fb:20:6d:81:2e:aa:0f:d4:de:50:
57:3a:dd:e8:9d:90:e9:bd:10:6c:dc:87:f0:10:8d:
26:b6:4a:2b:45:74:c8:94:16:f2:1b:a4:2c:46:c3:
9c:01:43:a4:ca:75:ac:c2:5a:d3:ef:75:c8:07:c5:
74:1e:24:4c:99:09:af:8f:45:98:d7:f8:66:3d:d7:
47:ed:ed:8d:35:0f:8b:80:56:9e:42:95:c5:d8:1a:
d7:e5:98:0f:ab:0a:03:ce:65:a5:b1:b3:53:71:5e:
06:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:57:6B:39:0F:2F:AF:61:B7:3D:AB:EE:B6:6B:94:7E:3A:D9:C1:31
X509v3 Authority Key Identifier:
keyid:06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:70:fc:fd:fe:6c:b4:d8:7e:3d:13:b5:c9:3d:02:ed:06:e1:
52:42:4d:a9:1b:3e:e0:d6:e1:45:c9:a6:4e:85:6a:a4:9d:aa:
70:6a:f7:d3:c1:01:56:8e:e6:4c:15:39:78:5d:a8:3f:e1:13:
ac:d2:50:21:b7:dc:e1:f3:2a:ff:10:16:d5:0a:a8:e0:a7:92:
d1:59:3b:64:7f:10:cd:64:ac:c2:ce:9a:18:f3:b7:89:6b:dc:
98:39:fd:42:1b:cc:a7:0a:b6:cb:43:77:be:d1:4f:33:e2:64:
e3:60:b4:ad:aa:a1:1e:32:47:a1:e2:75:d4:da:74:18:a8:07:
82:56:41:30:9c:0e:2c:cf:3c:e1:a7:df:0a:b5:6c:99:74:0a:
ab:02:8e:89:f2:8b:20:df:7d:60:d0:03:e0:89:49:77:77:73:
8d:dc:08:39:70:1c:ab:c5:e1:c9:44:8a:ec:0d:9f:07:88:fd:
10:d0:79:8a:f4:da:ac:07:85:21:b1:36:ef:8c:30:f0:72:50:
00:24:79:0d:33:49:7c:5d:8d:af:9a:a8:93:1b:ae:eb:46:4d:
38:1f:fd:c0:fd:14:a3:c6:12:7d:85:10:d7:0b:b1:8b:44:52:
23:8e:8c:14:01:de:ca:b8:2a:0a:4e:49:60:72:0e:31:ca:68:
12:2b:82:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:17:11 2025 by rpki-client