Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
File: BaQevhJyohyuDqGzXcCD-taKXX0.mft (raw, json)
Hash identifier: YCQYsDwERd2W5OSIvzyCHM+OFxKJQQNuXiWVKkr89vY=
Subject key identifier: 00:07:D7:FF:3F:37:F3:80:C3:E5:52:82:11:6F:06:36:38:11:74:FF
Authority key identifier: 05:A4:1E:BE:12:72:A2:1C:AE:0E:A1:B3:5D:C0:83:FA:D6:8A:5D:7D
Certificate issuer: /CN=05a41ebe1272a21cae0ea1b35dc083fad68a5d7d
Certificate serial: 0197B6A148A8E99CA07F4347D0E76033DB6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
Manifest number: 15B2
Signing time: Sat 28 Jun 2025 13:01:52 +0000
Manifest this update: Sat 28 Jun 2025 13:01:52 +0000
Manifest next update: Sun 29 Jun 2025 13:01:52 +0000
Files and hashes: 1: BaQevhJyohyuDqGzXcCD-taKXX0.crl (hash: PEvbub75wbe7TiXqtPFU814+pFBFCluXCDJUyNrj/h8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:48:a8:e9:9c:a0:7f:43:47:d0:e7:60:33:db:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a41ebe1272a21cae0ea1b35dc083fad68a5d7d
Validity
Not Before: Jun 28 13:01:52 2025 GMT
Not After : Jun 29 13:01:52 2025 GMT
Subject: CN=0007d7ff3f37f380c3e55282116f0636381174ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e1:09:fe:8a:82:df:f1:42:cf:e0:96:fd:b0:
be:65:b2:e2:15:1a:35:de:20:22:c1:c6:81:ad:a4:
73:f5:e0:c4:16:c6:cf:5d:dc:ad:53:5c:bf:04:45:
d8:e1:79:6e:32:8c:b5:0c:99:ce:3b:d7:fc:41:c4:
f9:4d:b2:58:24:ac:2b:3c:35:ae:f4:1b:cd:19:fc:
93:d6:de:fd:3f:61:5e:4b:be:30:1a:64:9d:6b:ae:
d4:4c:a8:d0:a1:57:71:a3:99:5c:39:28:f2:fd:d2:
9b:1e:71:ed:dc:97:7f:14:ba:43:47:f1:81:85:bc:
60:61:8d:8b:a7:9c:7b:c4:70:f8:46:76:5f:22:4c:
ec:5b:dd:dc:00:85:92:6c:a5:5f:fd:5e:98:28:9c:
f5:b3:56:8e:10:be:1c:f5:74:23:ad:bb:33:c6:20:
92:b5:1f:f7:87:aa:41:00:5d:f0:96:9c:b6:23:7f:
78:a7:b6:ed:a4:c1:b5:c2:1f:dc:56:18:51:a0:b1:
44:3a:43:17:1a:b3:db:54:68:d6:bf:dc:3a:e1:7f:
69:b3:87:26:36:0e:d9:ee:4a:f3:ab:63:d1:89:bc:
da:64:b6:7d:45:fe:ee:56:49:fb:64:db:af:7c:cf:
e2:ec:9b:a7:74:91:60:48:8f:81:0d:19:e1:5f:08:
09:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:07:D7:FF:3F:37:F3:80:C3:E5:52:82:11:6F:06:36:38:11:74:FF
X509v3 Authority Key Identifier:
keyid:05:A4:1E:BE:12:72:A2:1C:AE:0E:A1:B3:5D:C0:83:FA:D6:8A:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:92:c5:98:b1:54:65:66:fc:78:b2:93:5e:eb:b5:dd:e7:b8:
16:e0:98:4c:e4:33:5d:1e:31:50:1d:22:3a:17:1a:f6:71:23:
34:be:d0:c6:22:0a:ae:c0:c2:59:ba:18:26:50:9b:4c:6a:39:
5e:a9:0d:f4:b4:94:24:c8:b7:4c:df:5e:2c:de:a5:dd:93:6e:
eb:77:36:06:11:75:a0:77:08:46:99:ae:a6:bf:8e:2b:a2:5c:
a8:ef:33:05:88:4c:c5:c5:95:68:ab:0f:e5:13:3f:5b:17:09:
ce:48:4c:52:2e:21:93:0b:9e:89:61:4a:ee:3f:9d:35:31:12:
1a:3f:e6:01:70:4b:87:75:b6:55:a3:21:22:71:4e:e6:16:ea:
85:20:ff:66:95:e9:7b:30:f9:4d:3a:49:2b:28:fe:93:65:b7:
a9:43:b8:80:35:15:fc:ed:02:a3:8d:ce:64:b9:1e:34:08:42:
fb:c0:4f:06:cb:c7:fd:ca:65:f8:2f:48:45:8c:02:e6:02:aa:
30:d0:c7:64:b4:40:8d:4d:b0:67:5c:c2:ed:08:5f:e2:23:d3:
67:37:eb:d6:62:28:b3:b2:2e:30:c7:c9:e6:07:2c:b8:5e:be:
c2:6b:9d:5f:e8:a5:5f:16:21:13:33:1d:4b:4a:14:28:98:e1:
4b:f6:9c:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oUio6Zygf0NH0OdgM9tsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1YTQxZWJlMTI3MmEyMWNhZTBlYTFiMzVkYzA4M2ZhZDY4
YTVkN2QwHhcNMjUwNjI4MTMwMTUyWhcNMjUwNjI5MTMwMTUyWjAzMTEwLwYDVQQD
EygwMDA3ZDdmZjNmMzdmMzgwYzNlNTUyODIxMTZmMDYzNjM4MTE3NGZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0eEJ/oqC3/FCz+CW/bC+ZbLiFRo1
3iAiwcaBraRz9eDEFsbPXdytU1y/BEXY4XluMoy1DJnOO9f8QcT5TbJYJKwrPDWu
9BvNGfyT1t79P2FeS74wGmSda67UTKjQoVdxo5lcOSjy/dKbHnHt3Jd/FLpDR/GB
hbxgYY2Lp5x7xHD4RnZfIkzsW93cAIWSbKVf/V6YKJz1s1aOEL4c9XQjrbszxiCS
tR/3h6pBAF3wlpy2I394p7btpMG1wh/cVhhRoLFEOkMXGrPbVGjWv9w64X9ps4cm
Ng7Z7krzq2PRibzaZLZ9Rf7uVkn7ZNuvfM/i7JundJFgSI+BDRnhXwgJSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAAH1/8/N/OAw+VSghFvBjY4EXT/MB8GA1UdIwQY
MBaAFAWkHr4ScqIcrg6hs13Ag/rWil19MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmFRZXZoSnlvaHl1RHFHelhjQ0QtdGFLWFgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi85NTYwMmUtOWViMy00MThiLWJjMDAt
MTY3ODMxNjEzMTQ1LzEvQmFRZXZoSnlvaHl1RHFHelhjQ0QtdGFLWFgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi85NTYwMmUtOWViMy00MThiLWJjMDAtMTY3ODMxNjEzMTQ1
LzEvQmFRZXZoSnlvaHl1RHFHelhjQ0QtdGFLWFgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY5LFmLFU
ZWb8eLKTXuu13ee4FuCYTOQzXR4xUB0iOhca9nEjNL7QxiIKrsDCWboYJlCbTGo5
XqkN9LSUJMi3TN9eLN6l3ZNu63c2BhF1oHcIRpmupr+OK6JcqO8zBYhMxcWVaKsP
5RM/WxcJzkhMUi4hkwueiWFK7j+dNTESGj/mAXBLh3W2VaMhInFO5hbqhSD/ZpXp
ezD5TTpJKyj+k2W3qUO4gDUV/O0Co43OZLkeNAhC+8BPBsvH/cpl+C9IRYwC5gKq
MNDHZLRAjU2wZ1zC7Qhf4iPTZzfr1mIos7IuMMfJ5gcsuF6+wmudX+ilXxYhEzMd
S0oUKJjhS/aclw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:03:20 2025 by rpki-client