Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.mft
File: BQJMtECm3Xana1aUwOL07jMOCnw.mft (raw, json)
Hash identifier: xZz02ivRKOusnW2vubSNmxcyf90eoAK6hsxFuSNTKgw=
Subject key identifier: EA:D9:F1:DD:35:37:8F:13:9E:2C:56:20:51:CB:BD:A6:DF:E2:50:8B
Authority key identifier: 05:02:4C:B4:40:A6:DD:76:A7:6B:56:94:C0:E2:F4:EE:33:0E:0A:7C
Certificate issuer: /CN=05024cb440a6dd76a76b5694c0e2f4ee330e0a7c
Certificate serial: 0198D6607C19DB1F153D3F7DA644E30B8412
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BQJMtECm3Xana1aUwOL07jMOCnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.mft
Manifest number: 0374
Signing time: Sat 23 Aug 2025 10:01:44 +0000
Manifest this update: Sat 23 Aug 2025 10:01:44 +0000
Manifest next update: Sun 24 Aug 2025 10:01:44 +0000
Files and hashes: 1: BQJMtECm3Xana1aUwOL07jMOCnw.crl (hash: wloN8SgGLay+F2+LZqBQyPIB7qjZ27P8GYzpA4ygcWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BQJMtECm3Xana1aUwOL07jMOCnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:7c:19:db:1f:15:3d:3f:7d:a6:44:e3:0b:84:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05024cb440a6dd76a76b5694c0e2f4ee330e0a7c
Validity
Not Before: Aug 23 10:01:44 2025 GMT
Not After : Aug 24 10:01:44 2025 GMT
Subject: CN=ead9f1dd35378f139e2c562051cbbda6dfe2508b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1c:fe:75:38:a4:64:7c:e9:12:f8:f6:8f:1b:
44:35:8f:a8:ea:c5:91:49:65:7d:83:85:22:ea:a2:
16:fb:f8:ff:94:fd:64:74:3b:14:1a:16:d1:03:52:
8f:52:ac:a4:4d:e9:e8:65:aa:16:c0:64:e8:f1:a9:
e8:de:ff:e2:7b:e7:48:f6:df:b8:8a:47:53:a5:ae:
37:5f:24:05:7e:54:9d:12:60:43:b6:d6:a7:dc:57:
2b:2c:0b:c0:c6:5a:af:68:62:be:29:4d:b8:29:f9:
65:98:6e:9b:9a:64:40:16:4c:20:3a:91:d0:34:20:
43:a4:a7:d6:31:e9:bf:b4:ac:a1:a8:eb:4a:db:e7:
ae:84:25:a7:14:81:82:53:88:19:a3:fe:3d:49:ee:
09:86:58:f3:ce:d7:fb:21:a0:97:62:54:c2:f4:dd:
2a:1f:22:e7:d7:9e:59:0d:2d:35:04:b8:81:18:c2:
61:31:71:41:0e:e5:5a:c6:1c:f3:8f:cf:7f:5d:d6:
76:0b:29:28:96:bd:c3:ce:ff:2c:d9:54:72:2a:71:
a5:94:3b:b7:a3:9b:50:47:d9:4c:5b:59:56:c5:00:
fb:76:0e:fa:ff:33:aa:4c:80:09:b2:e5:df:51:b7:
e1:b2:7f:2b:46:7d:91:72:37:71:fd:60:6d:37:86:
1f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D9:F1:DD:35:37:8F:13:9E:2C:56:20:51:CB:BD:A6:DF:E2:50:8B
X509v3 Authority Key Identifier:
keyid:05:02:4C:B4:40:A6:DD:76:A7:6B:56:94:C0:E2:F4:EE:33:0E:0A:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BQJMtECm3Xana1aUwOL07jMOCnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:fe:03:fd:46:4c:a8:7f:33:5c:fe:0f:6c:ba:4b:d2:e9:20:
7d:25:ed:5c:0d:16:04:4c:96:d9:d9:a7:5b:58:4b:da:f6:09:
34:fc:08:10:a1:ca:f9:8c:46:f5:49:a1:cc:49:a8:4c:16:58:
b2:f4:3f:cc:6c:a0:0c:07:f4:64:c0:b0:99:36:4c:13:0d:76:
9b:17:34:20:82:61:2c:04:88:3a:72:d2:cb:22:8d:1d:0c:1c:
10:6b:58:e2:44:6a:e3:e4:d6:09:71:d9:7b:28:43:ba:a1:9a:
39:b6:1f:10:b3:0c:57:67:35:d1:2a:0e:ae:f9:65:66:25:db:
61:da:8a:88:07:8e:21:b1:e6:73:67:5c:2c:48:27:ec:2f:d1:
c1:92:ce:e2:d2:b4:15:45:b8:47:8c:3d:3c:20:7e:d6:37:cc:
52:09:5f:67:10:85:f4:ec:c4:79:d3:6f:19:5d:4e:a5:f6:30:
5f:11:42:43:96:b9:e8:ff:9f:30:34:18:4f:4a:2d:31:5d:93:
0a:8b:04:d9:56:15:44:de:f8:32:96:34:1f:b2:c5:34:e2:2f:
2f:1e:6d:56:3d:87:00:2a:d8:35:dc:e6:d2:7e:38:30:40:a8:
52:d0:4e:fc:3b:50:29:29:99:bc:0e:7e:18:77:43:c8:02:24:
54:29:73:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYHwZ2x8VPT99pkTjC4QSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MDI0Y2I0NDBhNmRkNzZhNzZiNTY5NGMwZTJmNGVlMzMw
ZTBhN2MwHhcNMjUwODIzMTAwMTQ0WhcNMjUwODI0MTAwMTQ0WjAzMTEwLwYDVQQD
EyhlYWQ5ZjFkZDM1Mzc4ZjEzOWUyYzU2MjA1MWNiYmRhNmRmZTI1MDhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwxz+dTikZHzpEvj2jxtENY+o6sWR
SWV9g4Ui6qIW+/j/lP1kdDsUGhbRA1KPUqykTenoZaoWwGTo8ano3v/ie+dI9t+4
ikdTpa43XyQFflSdEmBDttan3FcrLAvAxlqvaGK+KU24KfllmG6bmmRAFkwgOpHQ
NCBDpKfWMem/tKyhqOtK2+euhCWnFIGCU4gZo/49Se4Jhljzztf7IaCXYlTC9N0q
HyLn155ZDS01BLiBGMJhMXFBDuVaxhzzj89/XdZ2Cykolr3Dzv8s2VRyKnGllDu3
o5tQR9lMW1lWxQD7dg76/zOqTIAJsuXfUbfhsn8rRn2Rcjdx/WBtN4YfjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOrZ8d01N48TnixWIFHLvabf4lCLMB8GA1UdIwQY
MBaAFAUCTLRApt12p2tWlMDi9O4zDgp8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlFKTXRFQ20zWGFuYTFhVXdPTDA3ak1PQ253LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9hNjBiMWEtMjdiYi00NjA0LTkzNDAt
YTgyMjYyMjA0ZTM4LzEvQlFKTXRFQ20zWGFuYTFhVXdPTDA3ak1PQ253Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9hNjBiMWEtMjdiYi00NjA0LTkzNDAtYTgyMjYyMjA0ZTM4
LzEvQlFKTXRFQ20zWGFuYTFhVXdPTDA3ak1PQ253LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAy/4D/UZM
qH8zXP4PbLpL0ukgfSXtXA0WBEyW2dmnW1hL2vYJNPwIEKHK+YxG9UmhzEmoTBZY
svQ/zGygDAf0ZMCwmTZMEw12mxc0IIJhLASIOnLSyyKNHQwcEGtY4kRq4+TWCXHZ
eyhDuqGaObYfELMMV2c10SoOrvllZiXbYdqKiAeOIbHmc2dcLEgn7C/RwZLO4tK0
FUW4R4w9PCB+1jfMUglfZxCF9OzEedNvGV1OpfYwXxFCQ5a56P+fMDQYT0otMV2T
CosE2VYVRN74MpY0H7LFNOIvLx5tVj2HACrYNdzm0n44MECoUtBO/DtQKSmZvA5+
GHdDyAIkVClzuw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 16:02:43 2025 by rpki-client