Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
File: BZqsWXzkoNE7edIrO_GKSJnddk8.mft (raw, json)
Hash identifier: ZiHGu/soe17EdIkMP1QLgdCjwUj1YnVyZpmPQy0gFzw=
Subject key identifier: 42:EB:39:F4:4D:AD:B5:61:0F:5E:C8:96:06:41:61:5B:BB:76:AC:C4
Authority key identifier: 05:9A:AC:59:7C:E4:A0:D1:3B:79:D2:2B:3B:F1:8A:48:99:DD:76:4F
Certificate issuer: /CN=059aac597ce4a0d13b79d22b3bf18a4899dd764f
Certificate serial: 0198D4E0E9C19161D86D1EC5B811368C8135
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
Manifest number: 0AD7
Signing time: Sat 23 Aug 2025 03:02:46 +0000
Manifest this update: Sat 23 Aug 2025 03:02:46 +0000
Manifest next update: Sun 24 Aug 2025 03:02:46 +0000
Files and hashes: 1: BZqsWXzkoNE7edIrO_GKSJnddk8.crl (hash: gtvCpa3ujNTUd/ZHKT/zhpPPDWZJoJrl/SgqDsCUd/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:e9:c1:91:61:d8:6d:1e:c5:b8:11:36:8c:81:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=059aac597ce4a0d13b79d22b3bf18a4899dd764f
Validity
Not Before: Aug 23 03:02:46 2025 GMT
Not After : Aug 24 03:02:46 2025 GMT
Subject: CN=42eb39f44dadb5610f5ec8960641615bbb76acc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d2:76:00:52:3e:3b:8d:df:87:2c:fd:06:34:
78:d4:11:8c:c1:6c:e4:40:c1:f0:ad:6e:39:94:37:
b1:4b:ae:ff:a3:f2:33:a2:e5:52:04:6d:12:6e:2e:
3c:71:94:35:d1:82:00:c1:8e:d4:21:66:04:33:54:
04:49:5f:91:41:40:0e:73:83:2a:de:62:17:a5:05:
1a:b4:17:ba:1b:e4:d2:6d:0b:f0:1a:e7:21:67:43:
1a:c3:7d:bd:23:a1:a8:e6:9d:33:2a:93:d3:4b:0b:
23:eb:67:c1:d7:ba:34:ab:20:ad:80:2b:9e:0c:23:
11:ef:6a:01:a2:71:15:3f:a4:56:42:81:1a:15:8e:
65:78:2a:b2:5b:33:f5:7f:83:a4:3c:f7:8a:47:00:
39:20:86:c2:ce:83:7b:9b:44:9a:9d:82:4d:67:e3:
0e:89:cf:be:1e:c7:14:f2:a6:78:1e:ae:a1:c1:f2:
a5:1f:dd:88:c0:b5:ee:10:fc:9d:83:60:13:f4:24:
a8:61:df:65:b7:83:84:1e:ba:4c:4e:65:e2:0f:5e:
4c:cf:50:9d:4a:38:c4:77:64:df:6f:dd:11:30:03:
9f:bc:4e:e9:2a:8f:94:6a:94:7c:0d:5b:72:db:b7:
40:f2:a3:b0:6b:fb:48:d2:22:cd:f1:92:8f:8a:d4:
55:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:EB:39:F4:4D:AD:B5:61:0F:5E:C8:96:06:41:61:5B:BB:76:AC:C4
X509v3 Authority Key Identifier:
keyid:05:9A:AC:59:7C:E4:A0:D1:3B:79:D2:2B:3B:F1:8A:48:99:DD:76:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:c5:0f:dd:56:c6:75:98:f5:ea:d7:68:d9:73:4c:7f:2a:23:
b2:c8:dd:00:24:37:f6:58:d2:f7:58:41:99:6e:cd:6d:fb:d4:
a3:63:fa:d4:9d:47:87:04:a5:1f:66:e2:93:b3:01:a8:51:5b:
8f:e7:b3:5d:3b:cb:8c:52:d6:db:cd:9e:5e:34:3f:20:57:90:
2a:77:60:97:22:8b:de:7e:43:50:5c:ba:6d:a9:9d:84:50:5d:
69:e1:05:f2:be:66:94:94:08:3c:87:87:8d:6a:60:b9:fb:66:
80:58:f8:1b:2f:a3:d5:10:ee:0a:a8:22:29:4c:ff:5e:39:61:
48:87:69:03:d3:6b:92:47:c2:a8:64:90:01:c6:ac:71:3b:60:
c3:a7:2f:45:ee:5b:b2:2a:6c:0e:ab:0a:c0:27:b6:8d:84:50:
4b:50:ac:54:ac:44:70:ee:b5:12:13:1a:7b:24:01:4d:9e:c2:
57:48:f5:dc:10:32:a4:bd:13:59:b0:e7:51:fb:d4:cd:e8:f9:
30:8a:dc:e1:bc:7c:92:ba:4b:96:02:76:89:dd:e5:e3:c4:4a:
c0:4c:aa:31:20:35:05:ba:c0:5d:20:b5:d3:cf:af:db:35:0b:
b1:35:d7:e2:d7:b2:a0:89:f2:0d:91:31:cc:ef:06:16:4c:05:
e0:74:d7:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:15:20 2025 by rpki-client