Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/3173e2-6c6e-427f-9cad-3c87088734f6/1/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.mft
File: BL7bYVSoeV3Ezu-mehj-38ZSFZQ.mft (raw, json)
Hash identifier: EBGe5ULMA4EeNg0VjzyAJwDTytaGXqE0+9VCcfl0LuA=
Subject key identifier: A1:44:1A:77:AD:C9:C7:68:DE:0E:27:36:B9:05:2C:19:AB:1E:72:0E
Authority key identifier: 04:BE:DB:61:54:A8:79:5D:C4:CE:EF:A6:7A:18:FE:DF:C6:52:15:94
Certificate issuer: /CN=04bedb6154a8795dc4ceefa67a18fedfc6521594
Certificate serial: 0199FD346A485CDDBDB68F1E853648D46B41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/3173e2-6c6e-427f-9cad-3c87088734f6/1/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.mft
Manifest number: 0573
Signing time: Sun 19 Oct 2025 16:01:34 +0000
Manifest this update: Sun 19 Oct 2025 16:01:34 +0000
Manifest next update: Mon 20 Oct 2025 16:01:34 +0000
Files and hashes: 1: BL7bYVSoeV3Ezu-mehj-38ZSFZQ.crl (hash: gKDRlEykw2S0xIlLB7OjSw4OAtAogAfixh6WVWQzqAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/3173e2-6c6e-427f-9cad-3c87088734f6/1/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/3173e2-6c6e-427f-9cad-3c87088734f6/1/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:6a:48:5c:dd:bd:b6:8f:1e:85:36:48:d4:6b:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04bedb6154a8795dc4ceefa67a18fedfc6521594
Validity
Not Before: Oct 19 16:01:34 2025 GMT
Not After : Oct 20 16:01:34 2025 GMT
Subject: CN=a1441a77adc9c768de0e2736b9052c19ab1e720e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:80:bb:24:cf:51:f7:87:eb:98:ef:b4:ce:fd:
d1:83:1e:76:e3:b4:30:89:e8:e7:fc:69:af:39:4d:
8d:5b:6b:76:18:10:45:aa:59:62:53:fd:91:06:0b:
80:21:04:7b:86:cc:61:de:a2:82:9c:96:f3:20:3f:
cb:af:93:77:4c:db:57:30:07:ba:9d:2c:88:7a:65:
a8:9c:a3:b9:21:45:16:92:41:68:3e:eb:16:5a:7a:
99:a0:06:12:7c:29:19:df:5c:6a:52:16:de:a4:a9:
fa:02:ab:e7:ca:83:bd:9e:27:d9:1c:1f:19:e4:5a:
72:00:5b:05:56:d3:5f:f7:fe:1e:e1:36:b1:cc:75:
9d:30:98:03:dc:69:00:21:6b:a8:05:bf:e1:44:cb:
30:5b:54:ac:c5:66:57:83:66:78:ee:d8:f2:0a:60:
c9:7c:42:c8:ea:bf:1a:e8:3f:e9:d0:29:2b:50:90:
6f:4b:fc:07:14:da:54:24:e7:25:f1:48:b2:51:82:
e8:f3:9e:c6:33:f8:41:7d:fb:56:63:9e:c5:d5:d6:
65:71:90:aa:32:1e:9c:e8:64:91:e9:27:fa:e9:ac:
96:6c:10:a0:e9:6c:a1:86:82:0c:4d:3c:7c:54:e6:
43:e3:f8:e2:67:c2:7b:8f:28:54:8f:1b:cc:a3:a3:
e8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:44:1A:77:AD:C9:C7:68:DE:0E:27:36:B9:05:2C:19:AB:1E:72:0E
X509v3 Authority Key Identifier:
keyid:04:BE:DB:61:54:A8:79:5D:C4:CE:EF:A6:7A:18:FE:DF:C6:52:15:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/3173e2-6c6e-427f-9cad-3c87088734f6/1/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/3173e2-6c6e-427f-9cad-3c87088734f6/1/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:9f:bc:d5:b8:96:97:f2:14:b5:8a:f0:e8:66:d8:32:6a:6f:
b7:94:e5:ee:db:68:f1:82:87:71:aa:24:53:63:de:cb:b7:78:
9e:57:12:44:bd:0d:0c:ff:cf:bf:25:be:ad:28:e6:50:f4:c6:
e5:f9:9d:49:30:97:13:3d:6c:f9:07:42:63:7d:3d:ba:9d:6c:
82:80:89:a7:35:b2:72:3d:fc:08:db:13:24:a9:61:cd:0b:70:
aa:5c:63:0f:6e:24:d6:2d:51:05:1f:a8:8b:33:a8:2c:f7:53:
1d:ba:e1:a4:fc:f7:5b:c4:10:ec:be:9e:d6:53:f2:26:57:1b:
d9:c3:47:2d:8f:24:b4:0d:17:9b:81:89:82:55:e1:f5:62:5a:
14:87:04:bf:b2:43:fa:50:4c:f0:34:c4:e6:1c:cd:6e:03:7d:
af:0f:bf:4e:8c:b4:f9:17:51:79:5e:48:df:aa:2a:5f:c2:a8:
92:27:70:a8:18:fc:c5:7c:c7:4e:59:ef:bf:ed:e5:9e:d1:5e:
b9:49:f3:86:80:80:69:47:d0:39:96:fd:52:27:83:f1:89:a7:
b3:4c:cb:11:05:ee:c0:42:16:ef:c5:3b:3a:66:91:79:7b:8b:
41:18:9b:9c:41:b8:25:01:67:6c:19:f2:50:04:8f:b7:36:b9:
5c:7c:a4:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:33:45 2025 by rpki-client