Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
File: BcW97HMY-HHVPoZkgvQXM97wlCg.mft (raw, json)
Hash identifier: 3OOaT/gwRXAlsCO3mLlSfewMqK8JjMb1F3jtmxBeAR0=
Subject key identifier: 31:64:71:30:31:AC:95:28:B5:7B:06:05:75:27:D6:E7:4B:88:8A:AC
Authority key identifier: 05:C5:BD:EC:73:18:F8:71:D5:3E:86:64:82:F4:17:33:DE:F0:94:28
Certificate issuer: /CN=05c5bdec7318f871d53e866482f41733def09428
Certificate serial: 0197469E367ABF2A9F21F18F66016C7F1DA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
Manifest number: 0CDB
Signing time: Fri 06 Jun 2025 19:01:03 +0000
Manifest this update: Fri 06 Jun 2025 19:01:03 +0000
Manifest next update: Sat 07 Jun 2025 19:01:03 +0000
Files and hashes: 1: BcW97HMY-HHVPoZkgvQXM97wlCg.crl (hash: NRM64NZDxrglcdVxg+RNe9a0EANP++D4/ygWhwG7RLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:36:7a:bf:2a:9f:21:f1:8f:66:01:6c:7f:1d:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05c5bdec7318f871d53e866482f41733def09428
Validity
Not Before: Jun 6 19:01:03 2025 GMT
Not After : Jun 7 19:01:03 2025 GMT
Subject: CN=3164713031ac9528b57b06057527d6e74b888aac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e0:73:70:ca:e3:84:cd:dc:ef:e7:fe:8e:8d:
63:51:51:0f:b2:25:e6:0d:e1:4b:53:8a:f4:f3:e2:
82:51:b8:a3:49:85:2d:5b:9e:ff:7b:37:51:38:f3:
5b:10:f2:45:ce:2e:7d:cf:eb:e4:8b:a1:32:b9:56:
d1:76:08:bd:d8:35:c1:07:66:15:e4:1a:fa:c3:cf:
1b:6a:31:15:82:a0:3e:73:b9:89:b5:e9:93:46:6a:
dd:cc:6f:a1:c1:ad:42:14:22:c7:b6:16:6a:69:ae:
d6:a4:78:24:df:76:6a:b2:03:fa:e3:66:f5:2b:4d:
3a:5c:56:97:34:5a:4c:4c:9f:f5:13:03:e4:85:7c:
1d:a8:8b:dc:33:de:a5:b4:6e:6f:9c:1d:d8:4f:16:
26:4e:68:57:4f:45:92:ff:f1:21:14:f1:6f:80:b5:
8e:13:cb:a5:79:30:80:17:29:9c:f9:e1:f0:c6:41:
f6:61:70:1e:e8:f1:f9:4c:ee:ae:4a:d0:b7:72:9e:
c7:cd:51:d3:50:ef:24:52:ad:45:f4:3d:2c:04:92:
1a:20:6b:aa:aa:11:5d:92:6b:04:3d:ce:2a:a6:72:
65:d8:fb:f6:28:1a:88:00:b6:85:f5:51:6d:3d:9b:
10:ef:9d:bb:22:0f:8b:d5:ba:6c:10:4b:67:5a:d1:
45:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:64:71:30:31:AC:95:28:B5:7B:06:05:75:27:D6:E7:4B:88:8A:AC
X509v3 Authority Key Identifier:
keyid:05:C5:BD:EC:73:18:F8:71:D5:3E:86:64:82:F4:17:33:DE:F0:94:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:83:36:93:83:a4:11:a9:69:e0:3a:c1:87:ab:7e:99:a6:0e:
28:b9:32:bc:27:ca:18:c4:1d:c7:ae:82:90:40:16:e1:62:2d:
f3:1d:bc:69:dd:e3:aa:f9:a1:84:de:de:f3:82:92:1e:32:de:
2a:57:1b:dd:50:b3:67:74:90:7e:d7:38:86:b4:e2:1e:72:c7:
b3:15:c9:3a:e6:a7:dd:c1:42:36:9d:6b:65:6c:14:cc:76:cc:
25:d4:c3:8c:20:87:97:dd:9a:7e:8a:b9:52:89:92:3d:0e:8d:
00:3a:68:21:70:4e:cd:23:ad:e8:5c:51:a0:6b:44:e6:cf:84:
82:61:f5:eb:5f:ce:f5:60:5f:06:4f:5c:ae:47:5b:68:40:25:
4b:91:28:ae:3a:53:af:49:71:c5:74:b1:77:88:35:03:62:0c:
b8:7b:55:3c:ca:3e:47:65:27:68:13:3b:72:0b:50:ab:49:28:
a1:dc:a1:92:b7:0d:97:a7:5c:6a:47:b3:e9:b2:a7:bb:83:6b:
6e:25:20:1f:2d:d3:f1:92:0b:57:b6:80:b3:1e:d8:1e:b0:41:
fc:94:ed:5d:f5:0a:e2:4d:44:45:3b:15:45:4f:8c:60:15:ae:
d6:af:a8:24:e6:82:34:af:7c:09:17:cb:3b:b3:6a:cf:ed:13:
62:17:e9:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:13:16 2025 by rpki-client