Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
File: BDqcNdnhovTTSnVPom0gNleEchg.mft (raw, json)
Hash identifier: vB7PZPhRlZEqDnk07F2Up96Bccpase4TxX0jn4IB0j0=
Subject key identifier: 35:4B:22:78:AA:F5:D0:B0:14:F6:92:E2:62:13:A2:21:CB:FA:7A:51
Authority key identifier: 04:3A:9C:35:D9:E1:A2:F4:D3:4A:75:4F:A2:6D:20:36:57:84:72:18
Certificate issuer: /CN=043a9c35d9e1a2f4d34a754fa26d203657847218
Certificate serial: 0197B96ABAA2C5F39600BFE9354FD6C8BB81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
Manifest number: 13EF
Signing time: Sun 29 Jun 2025 02:01:08 +0000
Manifest this update: Sun 29 Jun 2025 02:01:08 +0000
Manifest next update: Mon 30 Jun 2025 02:01:08 +0000
Files and hashes: 1: BDqcNdnhovTTSnVPom0gNleEchg.crl (hash: v6StkAYfo4Rinf0WypOm7+Z6Q9Jx83JDW38w8d1B4a8=)
2: dXeaBJl10vB-B0zSVkLwNY_iIs4.roa (hash: F86Ia5myX5pjFnoQkxccwMDKgx5XnQXJd15fpxB0f8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:6a:ba:a2:c5:f3:96:00:bf:e9:35:4f:d6:c8:bb:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=043a9c35d9e1a2f4d34a754fa26d203657847218
Validity
Not Before: Jun 29 02:01:08 2025 GMT
Not After : Jun 30 02:01:08 2025 GMT
Subject: CN=354b2278aaf5d0b014f692e26213a221cbfa7a51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b6:df:37:8b:ec:3d:5d:cb:a1:37:7b:1b:61:
a3:01:81:12:af:08:f0:2c:36:b8:88:10:fb:0e:72:
9c:dc:5c:f9:43:f4:18:5a:19:b5:57:86:65:ed:b6:
d4:f9:68:ad:ce:57:4c:a5:cb:3f:5b:41:cf:a3:ce:
26:44:76:db:a0:3a:83:ea:a3:14:7f:33:af:95:55:
d7:1d:d4:9f:2e:d5:2b:1c:06:27:39:3c:d0:12:23:
d9:60:c7:2d:f9:a1:e8:85:60:2e:01:ce:16:09:5d:
b6:f2:8b:66:2e:51:d5:c8:1f:dd:da:87:25:b1:ed:
b8:9f:1d:25:d4:f3:ba:d2:e5:2e:82:b3:16:62:ae:
a7:50:6b:97:49:b4:d0:b9:c3:6e:9c:c5:9c:72:f5:
ae:8f:56:e9:9d:32:5d:1b:d8:31:45:fe:c5:f5:0f:
29:ef:e1:1c:d8:22:1b:a0:cf:a7:78:cf:b9:0e:a8:
19:cd:43:5c:57:f4:2c:b2:76:1c:89:ce:f7:3c:42:
66:44:00:83:98:5f:e3:e5:74:a5:26:1f:33:56:47:
1f:04:d1:24:2a:f6:54:fd:57:2f:d2:0d:99:ff:64:
70:2e:7c:c2:90:d6:83:d4:b9:12:d5:54:7e:07:ee:
fc:11:91:6c:da:74:25:7d:e6:f6:35:6f:9c:5f:39:
89:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:4B:22:78:AA:F5:D0:B0:14:F6:92:E2:62:13:A2:21:CB:FA:7A:51
X509v3 Authority Key Identifier:
keyid:04:3A:9C:35:D9:E1:A2:F4:D3:4A:75:4F:A2:6D:20:36:57:84:72:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:92:6d:34:55:ae:da:ac:d1:1d:31:47:01:12:2e:b1:ad:fe:
95:ee:d5:3f:53:7d:fd:47:d2:31:13:5d:11:9b:23:22:cd:44:
b9:d4:95:8a:52:59:b8:38:6f:04:dd:fc:00:ee:c2:a3:66:3e:
d2:0a:b0:0b:53:f3:73:3a:bc:39:3b:cd:db:d5:ad:ce:a4:b4:
c6:d8:40:82:b6:c2:91:6d:0f:71:68:79:b7:f3:c3:e3:1e:d9:
ed:3d:35:df:69:43:99:d0:1a:cf:b4:c5:b5:77:81:48:e9:9c:
49:b4:2d:10:68:71:65:9b:59:14:80:4d:2b:98:e2:60:81:9a:
4f:02:b3:ea:2a:e0:a8:e3:4c:94:2a:47:36:c5:9a:2e:3d:86:
be:55:76:22:82:d2:85:04:6f:18:bb:c4:7c:7d:c5:61:7b:03:
5c:c4:b7:54:1a:a6:3d:73:95:64:6d:e4:d6:0c:77:8a:d4:d8:
08:ba:4a:89:cc:51:cf:fa:ca:62:12:66:26:50:b8:0a:03:5a:
c4:4f:73:65:3f:55:6a:5e:ac:6b:d8:b6:c2:30:9b:9b:a1:1c:
6c:c8:24:f3:31:db:e5:25:20:cd:cd:d0:54:10:8d:0a:51:0b:
5e:32:e8:d2:44:12:07:73:7b:90:e8:db:a7:35:55:c3:df:94:
59:33:ac:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:24:03 2025 by rpki-client