Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
File: BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft (raw, json)
Hash identifier: DtpJTRirRWxkX1uGLeKMghagU4TBmt3eLRdY/uau6kI=
Subject key identifier: 91:CA:CB:EF:DD:0B:16:36:3E:77:3B:B2:0C:02:24:4A:BD:6C:20:35
Authority key identifier: 04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
Certificate issuer: /CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Certificate serial: 0198D583D11A81B514AB741F269101C2342C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
Manifest number: 0B2E
Signing time: Sat 23 Aug 2025 06:00:42 +0000
Manifest this update: Sat 23 Aug 2025 06:00:42 +0000
Manifest next update: Sun 24 Aug 2025 06:00:42 +0000
Files and hashes: 1: BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl (hash: g9cG0gBr5iHfqc8D49YLWE2AylixFaViXf5dY43oLS8=)
2: dShe1ipT6-Y_-edVr4eNtxtPKAo.roa (hash: 34QucPlafnV+iMZk3j4FDiUJFtGuS1f17YL6xBvVoIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:d1:1a:81:b5:14:ab:74:1f:26:91:01:c2:34:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Validity
Not Before: Aug 23 06:00:42 2025 GMT
Not After : Aug 24 06:00:42 2025 GMT
Subject: CN=91cacbefdd0b16363e773bb20c02244abd6c2035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:29:20:9e:a5:72:c1:9c:d5:e5:80:8d:7f:ab:
c5:16:5c:16:81:3c:a5:ee:65:ff:ec:56:d6:19:23:
ad:dc:2f:10:f5:50:12:95:79:a3:30:c2:02:a6:1e:
da:28:73:c2:38:80:a0:c5:30:ab:c0:f0:d3:85:4f:
e2:e4:77:e1:8f:5a:d3:08:96:ab:10:55:f2:be:09:
0a:6e:80:19:f5:64:77:50:4b:5f:11:cc:62:c8:a3:
cc:53:10:65:fd:64:c3:38:71:2c:25:d8:13:d8:d0:
e6:35:18:c5:4f:44:a0:79:56:2c:c9:f6:b4:2b:39:
14:66:d3:87:05:16:5c:da:f5:49:8d:37:0d:33:7f:
35:6e:76:f2:c2:11:9b:43:85:a5:43:9c:14:15:2b:
a6:ec:9e:41:ad:58:0f:dd:5e:46:12:37:73:d9:d0:
84:93:16:e0:78:94:08:f6:8b:db:5a:7a:eb:d2:a9:
34:ac:c1:b5:46:17:6c:01:2d:e4:1e:27:d9:95:bb:
39:65:ea:80:65:6e:8d:5d:32:fc:17:a5:c5:07:47:
68:d2:8f:36:d6:ae:7f:15:7a:b1:3d:f1:5c:a7:57:
78:9a:4f:71:c5:2d:f2:4e:3b:07:c4:75:de:9a:4c:
0f:46:24:1f:8d:be:dd:d1:17:01:52:74:02:1b:b4:
45:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:CA:CB:EF:DD:0B:16:36:3E:77:3B:B2:0C:02:24:4A:BD:6C:20:35
X509v3 Authority Key Identifier:
keyid:04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:38:c2:c7:07:7c:e0:dc:72:fc:ee:e1:a7:89:70:2b:cc:83:
b7:70:5e:ad:a3:52:00:e2:7e:54:3f:c8:f8:bb:60:8b:7e:b0:
f0:0d:6c:5f:81:10:44:94:4a:ff:3e:e9:bd:f6:81:57:ee:b2:
ad:67:f4:92:b0:02:3f:83:f6:0f:01:15:78:5f:ce:b0:f2:04:
1a:d4:6c:63:47:9b:cd:78:16:99:f5:f6:56:91:8e:58:ce:ae:
12:5b:42:02:e2:7f:0e:22:89:26:2f:cb:6d:72:b1:13:8f:b2:
67:d3:71:3f:15:79:af:2b:fd:d7:f5:80:57:b4:49:59:3a:9b:
05:fa:c4:26:14:34:8f:12:a7:64:7a:71:63:ad:f3:23:c5:f4:
d9:5b:b4:48:2f:51:2c:68:7f:f9:f0:54:fd:83:1f:94:c8:25:
06:3d:f7:02:1a:ea:f3:83:b2:1f:76:4f:1a:df:9b:d9:bd:17:
99:f7:1f:05:ec:4e:50:2f:f0:f8:23:c7:dc:38:87:11:fc:9f:
93:88:d0:16:7e:81:28:31:54:96:18:93:ad:28:4d:eb:4d:b5:
e3:c5:80:0e:dc:60:32:c4:2b:c5:fb:d2:01:69:aa:5c:d5:43:
50:35:97:c3:f2:88:f8:74:43:fa:e1:dd:99:85:45:d7:ba:94:
c5:4b:b6:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:24:21 2025 by rpki-client