Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
File: BGelYhGyHprHzcj7Y58xCpLCEEw.mft (raw, json)
Hash identifier: KSePJ5gBl8Bvrw0e6mqeNxXSCzpzTrBPW6rX9/3AkXA=
Subject key identifier: 87:66:EF:6D:FE:F6:D9:2F:82:76:5F:AF:BF:12:D9:6E:50:78:18:22
Authority key identifier: 04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C
Certificate issuer: /CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c
Certificate serial: 0197B6D7A8EADBFBD1F2DB8B7FCDFDCEE5CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
Manifest number: 0C96
Signing time: Sat 28 Jun 2025 14:01:16 +0000
Manifest this update: Sat 28 Jun 2025 14:01:16 +0000
Manifest next update: Sun 29 Jun 2025 14:01:16 +0000
Files and hashes: 1: BGelYhGyHprHzcj7Y58xCpLCEEw.crl (hash: y6OZldncbW3AzUOd2qRvj8SinCx4gySTWr/cKf92lx0=)
2: vBbw-4MxcReP3ao6MqHjBCu3GcI.roa (hash: W28uSnDMlGVkrCQsXwIvXwkvC/TrS+441MfK9XqL5Zo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:a8:ea:db:fb:d1:f2:db:8b:7f:cd:fd:ce:e5:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c
Validity
Not Before: Jun 28 14:01:16 2025 GMT
Not After : Jun 29 14:01:16 2025 GMT
Subject: CN=8766ef6dfef6d92f82765fafbf12d96e50781822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:55:c7:5a:86:7b:b0:26:1e:65:ba:cb:c4:b9:
c4:8a:44:3d:a7:2b:db:f1:6d:d4:82:46:0b:12:6c:
6f:3a:30:d1:9c:dd:c0:cc:e7:2e:25:b2:af:df:39:
a0:cc:4a:e7:39:ce:4c:9d:76:9c:ed:1d:25:ba:02:
2e:af:af:88:0a:9f:c3:3c:e3:a5:66:ce:06:dd:d4:
85:78:3e:74:52:73:c5:68:9b:9e:22:72:e2:c2:3b:
fd:de:e3:07:53:27:d7:96:8c:bb:1c:a3:5f:e8:57:
09:3a:53:52:e5:4f:bc:e0:cc:2f:d6:f2:46:b9:ad:
8c:27:a6:ef:b7:bf:51:37:2b:85:0f:c9:f1:4f:a1:
da:22:2a:0d:ea:69:21:28:62:54:59:84:d4:39:91:
33:2b:b0:c2:e5:6a:a5:fe:2d:58:2b:c7:bd:47:35:
0f:a3:b0:04:3b:db:9b:c3:29:08:6f:a0:75:90:fd:
d4:2d:22:e3:5c:a2:e9:c5:67:ab:11:35:0d:65:c3:
6e:c9:2d:0c:ba:91:9c:b0:77:12:09:13:e5:63:85:
22:81:e3:5b:53:af:d9:c8:de:7c:b9:e7:65:f1:53:
35:fa:10:6b:8a:61:2d:4a:e7:0d:24:59:a2:2e:d7:
66:bf:46:12:f4:e2:f0:b6:40:4f:5e:36:08:e7:47:
6b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:66:EF:6D:FE:F6:D9:2F:82:76:5F:AF:BF:12:D9:6E:50:78:18:22
X509v3 Authority Key Identifier:
keyid:04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:72:0b:69:41:cf:1d:01:88:4e:ef:0e:0d:23:09:ad:75:fc:
8f:96:ba:b4:eb:30:f8:e9:4e:9a:a2:02:89:21:08:d4:2c:f9:
8a:65:4b:2f:e3:e2:38:47:8e:2f:8a:ec:84:28:c3:da:63:11:
12:5d:c5:22:7c:a5:7c:a7:a3:c9:66:fc:00:be:a0:a5:0b:e5:
b0:58:c5:4c:3c:39:61:19:15:c1:6c:0a:0f:bb:9e:bf:24:51:
04:9c:3d:99:24:b6:be:a1:8a:6f:41:d5:84:76:27:f6:91:1a:
17:30:f2:af:48:a2:57:34:77:0d:ef:e9:02:1f:d0:28:c4:00:
27:af:c9:e4:6d:64:23:fa:e5:b4:73:51:af:8c:62:4f:f5:83:
28:27:64:67:3e:7c:90:34:ec:87:b6:2e:ac:e2:df:a6:f1:05:
3d:0a:39:60:37:e7:1e:78:47:25:c8:8e:a3:cd:e6:c9:c8:f4:
0b:1e:f4:84:dd:a6:61:b1:97:41:09:ef:56:db:1e:09:8c:2e:
51:79:ca:58:46:4f:08:94:b7:26:be:50:4c:53:3d:9e:3f:f5:
09:63:76:db:c3:0a:1b:fc:db:bb:08:a1:e7:a2:05:8e:12:cc:
1d:14:1b:74:dd:12:6f:be:35:3a:1b:74:bd:d9:26:a8:2d:d6:
09:62:6e:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:42:27 2025 by rpki-client