Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
File: BXEVMhUM58l6fqSMDXekLm8NX8M.mft (raw, json)
Hash identifier: 4Lsbeh25tXCE8eEDo0btZAJLHTB44smt4945DEFlTZw=
Subject key identifier: E6:05:A2:0E:5F:F1:CD:8B:73:BE:84:26:4B:C1:45:1D:DD:41:9F:07
Authority key identifier: 05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
Certificate issuer: /CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Certificate serial: 0197B745A44283079A9F077E91677180D957
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
Manifest number: 063C
Signing time: Sat 28 Jun 2025 16:01:23 +0000
Manifest this update: Sat 28 Jun 2025 16:01:23 +0000
Manifest next update: Sun 29 Jun 2025 16:01:23 +0000
Files and hashes: 1: BXEVMhUM58l6fqSMDXekLm8NX8M.crl (hash: E27o5QV/bN4PbZWj6+4yI8nY39zcnUrQYj+gmQztI4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:a4:42:83:07:9a:9f:07:7e:91:67:71:80:d9:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Validity
Not Before: Jun 28 16:01:23 2025 GMT
Not After : Jun 29 16:01:23 2025 GMT
Subject: CN=e605a20e5ff1cd8b73be84264bc1451ddd419f07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4c:8e:24:91:f6:57:c6:7b:6f:d1:c5:4e:7d:
66:ad:12:ad:41:21:73:c0:0b:c5:88:ec:ee:9e:6e:
fc:95:9f:40:60:bc:b8:b9:49:b6:e1:e8:9d:e7:0c:
d4:1c:c0:24:d5:70:e1:58:01:34:12:da:86:cd:2c:
78:ce:ef:64:11:e2:1b:f5:53:81:b3:f6:e1:17:c0:
1a:33:a0:f7:9f:59:b0:9a:a1:bb:18:fb:43:7f:a9:
f4:2e:4d:eb:04:ae:0b:68:a7:33:24:9e:1e:b0:5c:
62:a2:5f:1b:d5:81:57:86:d4:c1:fd:d0:6b:4f:65:
f2:fb:07:9a:5b:02:b1:f9:ae:f6:d2:f6:20:6b:e3:
8b:eb:7f:ea:e2:e2:9f:62:44:d2:b9:53:25:36:21:
d0:34:26:4e:ec:3d:ed:51:68:72:8f:4d:ea:4d:7d:
b8:25:3a:fb:73:db:bb:c4:36:b3:aa:8a:fe:9e:69:
d3:f2:a1:3b:65:ff:1a:0f:d3:70:5d:ad:30:92:ee:
fd:46:22:f8:83:bd:fb:a9:97:7b:db:56:3a:1b:b1:
57:31:b3:bd:41:29:eb:2d:61:05:78:11:c3:47:7a:
33:6a:57:50:8d:3d:18:c0:07:6c:d3:a1:d6:75:ee:
6c:55:3d:80:d5:64:7e:fb:27:c8:47:d6:1d:e0:22:
59:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:05:A2:0E:5F:F1:CD:8B:73:BE:84:26:4B:C1:45:1D:DD:41:9F:07
X509v3 Authority Key Identifier:
keyid:05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:34:a5:6b:65:fa:8d:b1:af:c0:50:b6:67:68:2a:bf:b0:c0:
28:c0:07:52:46:e9:b1:56:d0:05:51:08:25:b6:43:19:4b:29:
f1:17:fa:63:02:b5:88:c9:5b:de:6d:4e:97:07:86:63:e2:b1:
71:37:82:44:04:ca:62:57:d2:8c:93:aa:da:f6:d4:3b:2d:ac:
ba:1c:1a:c7:4a:2c:df:c1:a6:43:4b:07:b7:1c:34:ee:bc:cb:
dc:36:9d:7d:ad:40:b2:fa:85:42:b6:3d:50:c5:99:ba:bd:e5:
d1:c5:49:1b:6f:f9:19:e2:91:01:88:33:62:ba:51:0b:15:88:
24:04:8c:f4:ce:51:b9:9b:73:c1:0f:64:ed:d3:54:a0:6f:a9:
7a:7f:cd:bb:ce:48:b4:80:31:8c:d0:84:62:19:33:9f:1a:fb:
6d:90:7a:37:44:6d:1e:74:50:2d:e1:0e:f9:5d:d4:c2:f0:d9:
a8:58:05:0f:9e:cb:1c:a8:bc:eb:8b:13:b4:e4:e7:58:e7:22:
89:c4:b1:63:53:4c:53:48:1d:e2:c8:77:53:3e:cb:99:78:fc:
97:c7:7e:b6:b6:c9:b6:c5:21:90:aa:ec:c0:f0:74:6b:36:ff:
3b:3c:c3:78:52:b9:eb:54:a5:07:50:a5:ea:19:22:75:b4:72:
56:a0:04:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:59:16 2025 by rpki-client