Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
File: BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft (raw, json)
Hash identifier: ld3kC1IKdnI9ozDinxKDgI3drQV75e3tnYl+Zja3vJI=
Subject key identifier: 7A:4D:5D:AB:D8:DF:8F:9B:E3:34:08:F8:DB:23:C9:1F:C3:47:85:54
Authority key identifier: 04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
Certificate issuer: /CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Certificate serial: 0197B7B35E1FAAB8A203781FA2B3406E424D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
Manifest number: 0A9A
Signing time: Sat 28 Jun 2025 18:01:14 +0000
Manifest this update: Sat 28 Jun 2025 18:01:14 +0000
Manifest next update: Sun 29 Jun 2025 18:01:14 +0000
Files and hashes: 1: BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl (hash: qeKfX/DQt23zkTm/z4SmMFdPVS09Wk7ZmbGFuhXaRb8=)
2: dShe1ipT6-Y_-edVr4eNtxtPKAo.roa (hash: 34QucPlafnV+iMZk3j4FDiUJFtGuS1f17YL6xBvVoIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:5e:1f:aa:b8:a2:03:78:1f:a2:b3:40:6e:42:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Validity
Not Before: Jun 28 18:01:14 2025 GMT
Not After : Jun 29 18:01:14 2025 GMT
Subject: CN=7a4d5dabd8df8f9be33408f8db23c91fc3478554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:99:2d:41:c5:58:37:26:b8:e5:c7:72:e1:dc:
bc:07:48:49:92:b8:a3:0d:f5:88:c6:1e:65:cc:43:
b8:1e:df:69:c5:51:42:48:f7:bf:3d:90:32:5c:eb:
0c:d5:9a:71:8a:bd:e7:07:2e:49:35:04:5a:75:8d:
20:d0:3c:82:b4:04:18:0f:7d:63:ff:5a:a7:1e:61:
19:3c:74:90:37:2c:f6:fb:d2:2e:e5:5f:7c:3f:b6:
85:8d:d9:ba:10:07:54:b7:47:5a:18:d1:91:61:76:
9f:c5:8a:0d:3e:55:4a:c0:a9:df:2d:90:94:b9:16:
aa:43:df:5e:fa:94:6d:ab:52:87:ec:43:b6:29:cb:
17:63:7a:97:c5:51:be:04:36:46:fa:ed:89:7f:7c:
bf:56:ed:f4:29:dd:cb:c9:25:1b:81:02:49:a7:8c:
51:f7:0f:d6:82:b6:1e:40:b4:99:de:bf:14:d6:c9:
07:2a:f4:9c:c2:52:4d:69:3c:89:e4:0c:bd:7d:99:
94:31:8a:19:96:01:e2:24:cc:67:c3:10:83:bf:e3:
e2:16:23:3c:c1:68:c2:3f:e6:b4:d5:58:e1:58:09:
4b:e4:cc:27:57:b1:1e:61:50:ea:b6:0a:69:73:2b:
d5:e2:f3:a6:7c:7f:12:81:2d:c6:33:81:27:cf:80:
00:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:4D:5D:AB:D8:DF:8F:9B:E3:34:08:F8:DB:23:C9:1F:C3:47:85:54
X509v3 Authority Key Identifier:
keyid:04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:9c:d7:9b:e0:cd:71:e5:4b:da:30:c6:a2:3a:38:e9:0b:6d:
a2:9d:dd:6a:2d:e8:3e:8e:ae:e6:5e:5b:8f:36:0c:8f:82:de:
81:0d:34:19:03:bb:a0:6e:d7:84:41:6d:01:e8:12:82:a5:77:
d4:89:9d:68:f3:9b:1e:27:8e:c6:37:96:50:3c:01:e5:f2:ce:
c3:ff:ae:81:3e:e1:89:69:41:23:74:ce:0e:75:86:af:83:47:
76:ce:95:a7:5b:e3:a8:29:6d:ee:3b:a8:cf:8b:6d:c2:e9:2d:
e6:0d:cd:a0:4c:78:a5:9b:8f:ac:62:4f:3f:0a:7a:48:71:0e:
3b:4e:81:ef:9a:4a:48:20:2c:0b:ad:c3:89:c9:14:35:7a:55:
45:ef:25:a1:0e:5a:8e:b8:7c:8d:c4:68:67:34:21:40:d0:e0:
68:f5:35:04:65:86:1e:8a:35:69:b9:00:b8:f4:18:51:72:3e:
42:a6:34:67:c4:e8:cc:c6:7a:d7:d9:42:26:a6:54:9f:f5:f8:
92:38:cf:b8:b8:3f:ac:6f:27:72:b9:6d:b0:2f:85:0d:77:08:
ce:3f:3f:a7:82:91:e3:5d:ac:8f:63:b1:24:17:f9:4b:78:59:
ea:0a:1d:a0:78:9e:4e:13:01:1f:b9:cc:ff:0e:68:9e:35:d6:
a1:01:6b:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:52:34 2025 by rpki-client