Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
File: BZqsWXzkoNE7edIrO_GKSJnddk8.mft (raw, json)
Hash identifier: BAUd2IQgMMcnd/aU83nalaGmE/VAz6hhSs8kXFtB18Y=
Subject key identifier: 8F:B4:EC:92:2B:D6:3C:D3:29:A2:07:04:C0:41:37:6E:11:7F:27:78
Authority key identifier: 05:9A:AC:59:7C:E4:A0:D1:3B:79:D2:2B:3B:F1:8A:48:99:DD:76:4F
Certificate issuer: /CN=059aac597ce4a0d13b79d22b3bf18a4899dd764f
Certificate serial: 0197B70F188088083480968FFA8640A32442
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
Manifest number: 0A43
Signing time: Sat 28 Jun 2025 15:01:49 +0000
Manifest this update: Sat 28 Jun 2025 15:01:49 +0000
Manifest next update: Sun 29 Jun 2025 15:01:49 +0000
Files and hashes: 1: BZqsWXzkoNE7edIrO_GKSJnddk8.crl (hash: B4gAuUR0ANBTN5G24MXqGQIkVn0TX6PJDBc5jHBK0sg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:18:80:88:08:34:80:96:8f:fa:86:40:a3:24:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=059aac597ce4a0d13b79d22b3bf18a4899dd764f
Validity
Not Before: Jun 28 15:01:49 2025 GMT
Not After : Jun 29 15:01:49 2025 GMT
Subject: CN=8fb4ec922bd63cd329a20704c041376e117f2778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:be:88:0f:cf:82:b1:d0:cd:c6:eb:53:a0:b2:
72:a4:23:99:33:41:9f:34:49:8a:d8:77:c8:f3:23:
09:40:87:e6:d3:9f:35:70:4f:d9:4c:93:0b:0e:a9:
71:21:90:43:a4:35:1e:66:61:cb:91:fb:13:23:e2:
10:ea:8f:d1:6d:71:44:4b:30:83:45:ca:30:d6:0c:
a6:e0:6b:78:29:a7:51:9e:82:b0:d9:13:95:89:e2:
a6:60:96:e0:fa:fb:d9:21:88:86:24:4d:c9:ae:e6:
e9:63:15:74:80:c0:d7:fd:65:96:21:8f:28:14:b4:
02:1f:ba:64:af:82:30:78:e8:74:b2:c1:7e:4e:9e:
12:fb:35:c6:8c:30:18:26:9d:ad:2e:da:c8:b4:9b:
09:41:3f:09:8e:10:32:0e:67:ff:33:87:8a:ea:1e:
e6:c0:c7:bc:37:6a:3b:c5:d9:5d:8b:eb:59:1b:90:
f2:6f:ae:1e:10:d5:b9:b6:8c:b8:3f:39:e8:12:21:
e2:7b:a5:7e:99:a3:b6:99:e6:cc:e8:51:0e:00:62:
37:30:3c:dc:23:9e:aa:2f:93:48:ca:3c:cc:1b:02:
78:a1:60:83:bf:df:ba:02:56:1e:11:53:66:d2:9e:
01:10:7d:e2:09:b7:67:96:1f:19:42:aa:4b:a7:7f:
a8:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B4:EC:92:2B:D6:3C:D3:29:A2:07:04:C0:41:37:6E:11:7F:27:78
X509v3 Authority Key Identifier:
keyid:05:9A:AC:59:7C:E4:A0:D1:3B:79:D2:2B:3B:F1:8A:48:99:DD:76:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:33:62:6a:b9:88:de:37:4a:34:4c:6e:6e:16:02:fb:51:f6:
2e:89:e2:bd:d4:0b:4d:6c:90:a1:5b:77:86:5f:6d:ce:ae:ab:
ab:82:aa:3f:63:0c:9c:26:95:c7:d2:3a:a4:6a:8e:a6:eb:02:
14:2f:28:53:6c:3d:0b:1a:45:40:36:a5:7b:87:12:2a:f1:89:
4d:a4:0f:35:9e:d2:e3:ce:a4:ac:85:11:ad:9c:2b:9f:bc:c6:
86:4d:fa:3b:11:fc:51:e1:63:51:f4:9e:02:d8:76:cf:c0:28:
10:b2:4a:d1:32:15:3a:20:19:44:e4:6d:5b:5a:14:76:a9:d0:
6a:bc:f1:05:ce:cd:a3:8b:41:8e:79:3f:fe:44:52:31:1e:e3:
81:e5:4e:dc:92:e7:18:b0:c0:e6:e0:f8:8f:32:bf:60:3b:e5:
66:d1:31:5d:05:bb:af:4f:25:e9:d5:4b:6b:91:c6:29:e8:ba:
40:00:e8:55:3e:a3:04:d0:5d:02:f9:d4:18:b7:5c:fa:f8:31:
b5:dc:06:71:b8:c7:87:ad:98:88:a2:49:db:1f:34:c2:fb:23:
48:91:ab:b8:23:19:13:e4:45:7c:05:e5:c6:da:0e:c5:7b:ae:
e2:ad:8c:a6:5a:85:4a:bb:12:5e:11:f5:81:75:f6:2d:57:4d:
e4:a9:b2:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DxiAiAg0gJaP+oZAoyRCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OWFhYzU5N2NlNGEwZDEzYjc5ZDIyYjNiZjE4YTQ4OTlk
ZDc2NGYwHhcNMjUwNjI4MTUwMTQ5WhcNMjUwNjI5MTUwMTQ5WjAzMTEwLwYDVQQD
Eyg4ZmI0ZWM5MjJiZDYzY2QzMjlhMjA3MDRjMDQxMzc2ZTExN2YyNzc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsL6ID8+CsdDNxutToLJypCOZM0Gf
NEmK2HfI8yMJQIfm0581cE/ZTJMLDqlxIZBDpDUeZmHLkfsTI+IQ6o/RbXFESzCD
Rcow1gym4Gt4KadRnoKw2ROVieKmYJbg+vvZIYiGJE3JrubpYxV0gMDX/WWWIY8o
FLQCH7pkr4IweOh0ssF+Tp4S+zXGjDAYJp2tLtrItJsJQT8JjhAyDmf/M4eK6h7m
wMe8N2o7xdldi+tZG5Dyb64eENW5toy4PznoEiHie6V+maO2mebM6FEOAGI3MDzc
I56qL5NIyjzMGwJ4oWCDv9+6AlYeEVNm0p4BEH3iCbdnlh8ZQqpLp3+oaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI+07JIr1jzTKaIHBMBBN24Rfyd4MB8GA1UdIwQY
MBaAFAWarFl85KDRO3nSKzvxikiZ3XZPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpxc1dYemtvTkU3ZWRJck9fR0tTSm5kZGs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9iYWI4OWEtZDk5MC00ZmM3LTg2ZGQt
ZTJjODE2ZGI4MWNjLzEvQlpxc1dYemtvTkU3ZWRJck9fR0tTSm5kZGs4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi9iYWI4OWEtZDk5MC00ZmM3LTg2ZGQtZTJjODE2ZGI4MWNj
LzEvQlpxc1dYemtvTkU3ZWRJck9fR0tTSm5kZGs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYDNiarmI
3jdKNExubhYC+1H2LonivdQLTWyQoVt3hl9tzq6rq4KqP2MMnCaVx9I6pGqOpusC
FC8oU2w9CxpFQDale4cSKvGJTaQPNZ7S486krIURrZwrn7zGhk36OxH8UeFjUfSe
Ath2z8AoELJK0TIVOiAZRORtW1oUdqnQarzxBc7No4tBjnk//kRSMR7jgeVO3JLn
GLDA5uD4jzK/YDvlZtExXQW7r08l6dVLa5HGKei6QADoVT6jBNBdAvnUGLdc+vgx
tdwGcbjHh62YiKJJ2x80wvsjSJGruCMZE+RFfAXlxtoOxXuu4q2MplqFSrsSXhH1
gXX2LVdN5KmyBA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:00:20 2025 by rpki-client