Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
File: BXEVMhUM58l6fqSMDXekLm8NX8M.mft (raw, json)
Hash identifier: kEsg1Usa3dm9zPci3pSuDza8NIXwh4XwjisIvrvFxrg=
Subject key identifier: C8:62:9D:E1:D8:37:B2:D9:44:7A:AD:BE:77:26:13:BC:BD:14:CA:4D
Authority key identifier: 05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
Certificate issuer: /CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Certificate serial: 0196C0139FD081E2AE42EF264D1E1D65A9AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
Manifest number: 05BC
Signing time: Sun 11 May 2025 16:00:33 +0000
Manifest this update: Sun 11 May 2025 16:00:33 +0000
Manifest next update: Mon 12 May 2025 16:00:33 +0000
Files and hashes: 1: BXEVMhUM58l6fqSMDXekLm8NX8M.crl (hash: U1Kttr5oxXjSeGbQwUso7g06RozsZSiEzLC5GQqJI+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:13:9f:d0:81:e2:ae:42:ef:26:4d:1e:1d:65:a9:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Validity
Not Before: May 11 16:00:33 2025 GMT
Not After : May 12 16:00:33 2025 GMT
Subject: CN=c8629de1d837b2d9447aadbe772613bcbd14ca4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:24:ca:17:b9:a4:fb:83:0f:5c:d3:d6:d7:d3:
6e:82:89:63:b1:53:3c:e8:cc:66:40:2d:c9:f7:d9:
0f:e3:2a:15:0a:b8:19:ff:ac:da:de:f3:d7:f3:36:
fa:30:98:4e:ba:6a:cb:6b:96:8e:40:dd:42:0b:4d:
12:13:68:ce:7a:db:b6:8a:bc:e8:e3:f9:32:24:48:
12:fb:68:38:33:5e:80:0e:32:85:61:8c:2e:24:2b:
c4:f8:5a:f2:79:39:53:0a:f3:1b:0e:74:72:f3:5f:
1e:9e:0d:9b:a8:d8:45:a4:5d:af:ee:65:1a:2b:54:
d4:21:94:31:14:ec:af:01:38:11:9d:98:aa:82:b6:
83:f0:da:94:3b:3b:b6:48:49:7f:d0:48:64:1d:29:
3a:25:c0:92:78:9e:b3:32:5f:c8:c9:52:10:7b:06:
76:d0:18:3f:66:9a:74:7a:bd:d4:f8:bf:a0:83:e9:
14:37:db:4c:96:31:a9:4e:2c:21:de:53:d9:54:ef:
5b:58:35:11:11:fa:08:91:43:5b:96:de:f7:31:32:
86:a3:28:ff:20:f4:38:bd:47:a3:3b:c6:b4:a7:94:
10:f0:2b:d4:cf:cc:6d:10:d9:cb:91:db:b7:db:c5:
1b:a7:ea:d4:e4:96:e2:9a:33:8f:0e:24:d1:1d:1d:
a5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:62:9D:E1:D8:37:B2:D9:44:7A:AD:BE:77:26:13:BC:BD:14:CA:4D
X509v3 Authority Key Identifier:
keyid:05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:88:77:cf:f6:b6:e1:4a:03:be:df:80:4f:43:23:4a:82:02:
74:1f:a7:86:4c:d7:6d:13:1c:b6:23:e6:e4:24:c0:ad:f9:02:
d5:7b:d1:72:46:be:51:cf:e0:50:18:07:71:30:c0:a0:9f:bc:
30:35:1e:90:8c:7d:c3:14:92:a8:27:36:6e:3a:7a:50:4c:d7:
60:43:fa:7d:9c:cd:36:a0:e4:04:95:7f:b2:61:2d:ce:a0:43:
5d:dc:bc:21:98:16:61:5d:f2:e8:e9:b4:3d:78:38:24:6a:61:
40:5c:7c:d5:28:7e:dd:73:74:d4:33:00:2c:49:a6:71:2e:a8:
a7:e3:7c:6f:c1:36:4f:ee:17:ec:ac:8e:84:a0:f6:c9:a1:3b:
8d:8c:2f:41:16:9f:cb:9a:a2:f5:b5:45:41:e8:99:79:9f:69:
f1:0f:97:e5:0b:6c:25:17:c4:9c:1b:5b:45:01:88:03:0a:ba:
39:87:6b:94:55:dd:16:6a:13:40:e3:5a:01:e8:86:29:d8:a7:
cd:1e:58:01:24:5c:db:b0:1c:15:fa:3d:09:00:5a:58:49:92:
e8:d7:0c:b8:46:2c:b9:c8:c3:ce:88:43:7e:bc:d1:f5:dd:f8:
40:f0:81:21:64:1e:88:a6:d6:b6:20:10:63:fd:b8:32:73:8a:
1d:05:28:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 19:03:59 2025 by rpki-client