Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.mft
File: BQJMtECm3Xana1aUwOL07jMOCnw.mft (raw, json)
Hash identifier: LF55/cPBFqupRE4sRaX1zZo3KyKWHkkmKHoV0yjWyrY=
Subject key identifier: 9A:6D:41:ED:F7:E1:EA:E8:6D:91:23:36:90:41:62:A0:8C:9D:31:BC
Authority key identifier: 05:02:4C:B4:40:A6:DD:76:A7:6B:56:94:C0:E2:F4:EE:33:0E:0A:7C
Certificate issuer: /CN=05024cb440a6dd76a76b5694c0e2f4ee330e0a7c
Certificate serial: 0197C048A1919FD51C05705A5C799CF5D976
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BQJMtECm3Xana1aUwOL07jMOCnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.mft
Manifest number: 02E4
Signing time: Mon 30 Jun 2025 10:01:14 +0000
Manifest this update: Mon 30 Jun 2025 10:01:14 +0000
Manifest next update: Tue 01 Jul 2025 10:01:14 +0000
Files and hashes: 1: BQJMtECm3Xana1aUwOL07jMOCnw.crl (hash: ldJyos0p5ajlbUH8veNC2CQhJ2W7mxa8dTuVHw1rDmU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BQJMtECm3Xana1aUwOL07jMOCnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 10:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c0:48:a1:91:9f:d5:1c:05:70:5a:5c:79:9c:f5:d9:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05024cb440a6dd76a76b5694c0e2f4ee330e0a7c
Validity
Not Before: Jun 30 10:01:14 2025 GMT
Not After : Jul 1 10:01:14 2025 GMT
Subject: CN=9a6d41edf7e1eae86d912336904162a08c9d31bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:60:19:7b:b7:57:f3:08:07:d7:b9:88:3f:b5:
19:29:d5:4e:65:19:7d:b8:db:dc:a0:ba:de:c7:85:
1d:6b:b7:ef:ca:03:f8:3e:8e:6e:15:89:30:03:d2:
8c:ad:13:73:8c:3a:7a:25:cf:b4:39:81:9e:64:8a:
f3:90:e1:30:4e:95:02:06:72:3b:1e:14:f4:45:01:
0e:9e:84:ac:17:c9:04:ed:e1:ce:8e:57:eb:da:6a:
d5:2c:24:e9:30:32:6b:a7:94:f9:19:c0:39:4b:25:
24:02:1c:f8:0e:f2:c7:1d:3c:20:4d:87:56:6f:b0:
a5:64:ce:b4:f3:6e:7d:9d:25:05:7f:50:e5:8d:d8:
e2:37:99:f1:55:d2:1a:42:e6:78:a3:82:44:bd:a2:
db:72:36:1c:42:85:ff:8c:b5:42:08:cc:58:cc:86:
c5:a6:fa:be:aa:2d:3f:af:73:ad:c8:98:f3:6a:8b:
94:07:9d:5d:e3:27:b8:a3:03:48:b2:64:fa:3a:2a:
eb:cd:78:e0:53:8b:b9:09:a9:0d:5b:69:67:75:a1:
40:ad:83:88:96:e9:c3:a9:5d:92:4f:5a:75:bc:4e:
b2:7b:99:85:54:08:97:86:cf:d8:ff:25:52:da:05:
69:da:b2:31:7d:11:e8:b2:5b:d2:fb:fb:32:69:f9:
d1:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:6D:41:ED:F7:E1:EA:E8:6D:91:23:36:90:41:62:A0:8C:9D:31:BC
X509v3 Authority Key Identifier:
keyid:05:02:4C:B4:40:A6:DD:76:A7:6B:56:94:C0:E2:F4:EE:33:0E:0A:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BQJMtECm3Xana1aUwOL07jMOCnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:1e:b5:bf:a4:f5:64:73:54:62:9e:17:2a:51:b0:99:dc:07:
38:fe:19:56:e4:e4:bd:ad:9b:f0:7a:94:94:a2:3f:bb:d9:b7:
f4:fe:2a:a5:67:39:4b:78:fc:7a:03:77:01:df:41:9b:ba:c5:
89:73:08:58:c2:09:68:82:88:81:18:6d:3d:70:78:b6:5a:ce:
d1:e4:c1:9a:7b:50:40:c5:4c:35:18:8a:57:50:43:e9:6b:d7:
47:ee:28:32:ef:61:d5:e4:cf:c5:e1:6e:59:db:09:71:f0:fe:
a6:10:99:9f:05:f5:cc:f7:e0:c3:11:e0:14:04:dc:72:6b:aa:
85:0a:e9:8e:4b:6c:59:59:63:59:36:f1:6b:ba:6c:f5:34:cc:
76:f9:c3:30:c3:ff:83:94:a0:6f:d5:3b:5f:17:4b:1b:72:52:
e2:a1:bb:cb:3d:89:d5:b7:6f:99:b2:a0:14:11:a1:ad:86:4e:
77:b7:97:2d:84:cb:12:d8:49:0c:dc:66:a7:29:6d:b7:bf:90:
f3:b4:7e:fa:2f:b2:1a:b5:2b:e6:a2:23:5a:96:97:bb:98:53:
97:c9:89:3e:5f:90:09:75:e1:81:90:9b:fb:cf:ab:b4:9e:79:
ec:d0:bb:df:a4:d8:69:ec:f7:af:eb:8a:09:96:2c:1a:32:74:
1a:7e:d7:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 18:26:00 2025 by rpki-client