Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
File: bZYBl_5YkhTCJZ9q6olsThAH6YY.mft (raw, json)
Hash identifier: mX4Wk6qJtbS3kSQq0afUeaua+tMqJjH4xXwy9uXku9o=
Subject key identifier: 5A:1F:28:1F:28:BC:85:35:5F:25:DB:63:E6:3F:DD:AF:7C:39:1D:64
Authority key identifier: 6D:96:01:97:FE:58:92:14:C2:25:9F:6A:EA:89:6C:4E:10:07:E9:86
Certificate issuer: /CN=6d960197fe589214c2259f6aea896c4e1007e986
Certificate serial: 0197B89093851065CF0604107D76418CF9AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
Manifest number: 0853
Signing time: Sat 28 Jun 2025 22:02:52 +0000
Manifest this update: Sat 28 Jun 2025 22:02:52 +0000
Manifest next update: Sun 29 Jun 2025 22:02:52 +0000
Files and hashes: 1: bZYBl_5YkhTCJZ9q6olsThAH6YY.crl (hash: QSb+g1ZQ/mvEXepcRet0ITufMkMR/1I1StNXVfR15dE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:93:85:10:65:cf:06:04:10:7d:76:41:8c:f9:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d960197fe589214c2259f6aea896c4e1007e986
Validity
Not Before: Jun 28 22:02:52 2025 GMT
Not After : Jun 29 22:02:52 2025 GMT
Subject: CN=5a1f281f28bc85355f25db63e63fddaf7c391d64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fb:8f:e1:b3:6c:c2:f2:b7:81:c4:93:c2:9b:
36:94:4e:cf:54:ee:c1:8e:dd:aa:7f:18:d7:02:c7:
36:20:99:c6:1e:f8:b6:00:26:51:3a:69:9f:9b:76:
53:5e:b2:a4:df:75:6f:a8:bc:91:8e:bf:90:2d:e9:
f8:7f:09:b3:7f:48:51:7e:0d:4d:da:b8:9b:a2:ec:
d3:23:ec:07:39:73:97:18:77:4c:22:ea:cc:3f:bf:
a6:96:4e:82:a1:8e:e3:e4:87:d9:8d:e0:0f:8c:96:
6c:4b:be:cf:92:6b:4c:8c:27:3d:43:ed:67:d4:57:
7a:74:0a:44:55:1c:c0:f0:17:0f:43:4b:53:7d:34:
4a:1b:a8:ad:21:5a:4d:fc:a2:05:d8:8b:70:c0:94:
87:bd:0d:e2:77:ac:ba:87:81:35:98:03:05:ca:0a:
2d:ef:e3:f5:04:4c:b7:24:63:42:eb:1a:90:6c:8f:
6a:17:68:9d:a9:cd:3a:5b:69:e8:bc:e4:a0:f9:97:
76:18:e6:1f:b2:20:c7:b0:85:b7:38:4a:4e:93:20:
7a:8e:86:69:52:d1:a2:f7:01:cc:ac:f0:62:fa:fb:
78:3e:00:ab:15:f0:cf:bd:c9:18:86:3c:16:ff:82:
bc:1f:fc:d4:a2:41:04:49:a3:96:79:ce:fc:f8:b2:
7d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:1F:28:1F:28:BC:85:35:5F:25:DB:63:E6:3F:DD:AF:7C:39:1D:64
X509v3 Authority Key Identifier:
keyid:6D:96:01:97:FE:58:92:14:C2:25:9F:6A:EA:89:6C:4E:10:07:E9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:4d:4c:bf:c7:d5:05:d5:fb:f7:46:09:d0:59:1c:4b:54:07:
2e:98:d4:2e:82:8c:d7:76:0d:5b:1e:5a:1b:d2:17:f0:95:ad:
2e:03:2e:6a:99:c6:dd:ba:ff:0a:ca:48:bf:33:21:76:c9:42:
7b:3c:ed:96:b9:55:46:bd:02:29:8c:39:93:c8:2e:42:a6:db:
80:2e:82:1c:36:0f:6f:fa:01:95:60:8d:c0:13:91:47:fb:ae:
e5:23:c0:a3:5c:3d:36:14:cd:74:32:95:f6:dd:8e:81:aa:ea:
04:60:af:e9:b3:dd:31:bf:21:23:58:ea:e1:ee:26:d8:fe:45:
0e:78:c4:e1:b4:16:6c:ea:e7:b4:92:8b:f5:a6:46:95:6b:6d:
d0:a5:9d:59:01:7e:63:ce:61:2a:ab:98:c9:76:a5:92:58:35:
f4:08:fa:d7:02:20:57:ac:88:bc:d1:39:7a:93:c9:1c:ab:11:
3a:93:68:0a:b6:2e:43:d0:f2:97:f1:20:da:b1:00:63:47:85:
c3:57:4b:41:6c:db:cc:8b:36:01:65:fc:65:7d:a6:f3:da:a9:
3c:6d:78:f8:7e:33:d8:64:77:d1:de:a6:b6:93:39:45:aa:7c:
34:fb:b7:df:30:db:fa:93:d1:67:89:bf:3e:e5:5f:27:de:35:
80:20:02:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 00:44:25 2025 by rpki-client