Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
File: BmNp4nBctDPbBlirZm0ItnsVUdw.mft (raw, json)
Hash identifier: ATRXMW4rZau6zwfrUhgupNgKFRe47qFCUYs+teV8FLo=
Subject key identifier: 5C:1D:E3:67:3B:DF:51:7D:B4:1B:EF:9E:D4:EC:4B:B8:A0:77:47:31
Authority key identifier: 06:63:69:E2:70:5C:B4:33:DB:06:58:AB:66:6D:08:B6:7B:15:51:DC
Certificate issuer: /CN=066369e2705cb433db0658ab666d08b67b1551dc
Certificate serial: 0197BA0F72EB86856CDBDE5BFF2DC91EFE04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
Manifest number: 14DC
Signing time: Sun 29 Jun 2025 05:01:04 +0000
Manifest this update: Sun 29 Jun 2025 05:01:04 +0000
Manifest next update: Mon 30 Jun 2025 05:01:04 +0000
Files and hashes: 1: BmNp4nBctDPbBlirZm0ItnsVUdw.crl (hash: QfVPOpUzwhE8xQnO/9fIoqSSVOh0n+Tv2SgAk6k0Ajc=)
2: jCf5g0MNk7dChvixSvofxX26UqQ.roa (hash: EtFQAu+QfH/I3yhnfzxyM188HrZPVxzTPSpuxFHhJDw=)
3: osJ9_DR-TYLXPhwmG2ma04NJTWc.roa (hash: J9O9DuXjiOjoHZT0sNnMyGnclsGi579GC3bqlBQWEYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:0f:72:eb:86:85:6c:db:de:5b:ff:2d:c9:1e:fe:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=066369e2705cb433db0658ab666d08b67b1551dc
Validity
Not Before: Jun 29 05:01:04 2025 GMT
Not After : Jun 30 05:01:04 2025 GMT
Subject: CN=5c1de3673bdf517db41bef9ed4ec4bb8a0774731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f9:13:6b:c7:66:72:a5:17:a0:ff:b7:7e:94:
d6:b0:ad:f5:e9:1e:2b:f5:fd:e7:fb:88:bc:e1:1e:
cc:d7:03:8c:a5:1c:7d:d0:1b:2f:d0:83:64:ce:44:
0e:33:cb:69:d4:6b:d0:e2:90:ca:ef:72:c9:84:24:
31:58:1e:25:68:11:c2:a7:f0:83:1e:74:f9:73:1f:
04:c7:9c:17:55:9f:34:9c:94:a7:18:3d:4a:e1:ed:
6c:8c:62:fd:89:0e:44:f6:99:69:67:bb:94:cd:16:
cd:2a:90:1d:15:e0:ac:6a:b3:d3:2b:15:ad:b1:9f:
c6:bc:e7:30:31:55:37:fb:25:59:b4:bb:9d:4d:2d:
e2:f3:1f:52:76:f7:5a:cc:0e:8a:c9:88:fa:50:eb:
0b:1d:fd:35:2e:87:8b:f6:39:d4:0a:9b:7d:e2:89:
b3:cc:0e:2d:59:cf:8c:9f:10:2e:b5:ac:c0:a0:d1:
2a:18:8a:bc:a3:9e:09:e4:9c:d1:f1:c6:da:b1:65:
6d:f1:b9:cb:90:ac:72:f7:0f:70:b8:53:9a:dd:79:
1e:2d:99:cc:e8:f2:ee:ba:71:23:ad:49:53:c3:42:
56:0f:0d:71:15:96:bd:b7:90:5b:6a:47:33:ee:82:
7f:41:f3:6d:bf:19:49:95:49:e8:7b:60:3b:68:e1:
9c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:1D:E3:67:3B:DF:51:7D:B4:1B:EF:9E:D4:EC:4B:B8:A0:77:47:31
X509v3 Authority Key Identifier:
keyid:06:63:69:E2:70:5C:B4:33:DB:06:58:AB:66:6D:08:B6:7B:15:51:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:03:f6:8b:74:63:6f:cb:5e:e0:6d:01:d8:57:d4:43:0f:2d:
0b:f3:51:1b:36:d7:86:eb:57:00:63:a8:20:6d:1c:19:62:bf:
d6:e9:a7:03:65:6b:13:6e:10:07:3e:71:d1:d1:9f:b8:4c:34:
31:02:9d:06:35:11:b8:c7:f3:d7:d9:77:1a:a5:c3:13:0f:ac:
27:0d:e4:27:42:84:e7:3a:34:ee:72:44:65:57:7b:bb:57:98:
58:99:33:10:03:4d:a3:f4:71:aa:61:e5:2f:00:84:05:58:ab:
c4:7e:91:60:59:86:c6:f3:ce:23:27:32:a4:b9:96:07:c8:f4:
e3:6a:10:c2:c4:6d:34:bf:02:5b:d4:ff:61:58:d5:00:c6:3d:
6a:77:ef:58:c8:c1:8f:42:34:48:fc:a5:33:46:f5:93:37:bb:
3d:8d:01:23:50:22:f4:2d:72:de:8e:b6:f7:f8:57:78:09:c9:
fa:72:25:2c:63:a3:5f:0e:2a:7a:6d:8d:44:00:b0:6d:ce:47:
89:f1:1a:03:f4:20:01:b1:e4:ea:45:f6:ba:88:6c:94:ad:e1:
15:30:9a:59:6b:23:32:98:0f:05:0a:03:37:b5:91:fa:4f:49:
07:e3:be:c4:e7:ab:d8:fc:08:bc:4a:8d:5e:66:81:1d:b3:33:
4f:d5:c0:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:07:37 2025 by rpki-client