Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
File: BPD3XK7T8miFrGVjD_qu53pw69k.mft (raw, json)
Hash identifier: 34MhOhnobaHqqPx/FQLvwXzEPmz7bOzV7lQXq0OaTDc=
Subject key identifier: 96:C2:9A:E4:7A:8F:4A:A7:1B:3F:EF:B2:AB:B4:36:55:6C:2C:52:A9
Authority key identifier: 04:F0:F7:5C:AE:D3:F2:68:85:AC:65:63:0F:FA:AE:E7:7A:70:EB:D9
Certificate issuer: /CN=04f0f75caed3f26885ac65630ffaaee77a70ebd9
Certificate serial: 0197B632A16393CE04CBE2423732AE35D27B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
Manifest number: 1354
Signing time: Sat 28 Jun 2025 11:01:00 +0000
Manifest this update: Sat 28 Jun 2025 11:01:00 +0000
Manifest next update: Sun 29 Jun 2025 11:01:00 +0000
Files and hashes: 1: BPD3XK7T8miFrGVjD_qu53pw69k.crl (hash: 2VVXDft3viC5lkoWdsXmbp8HlJhE6syJDcKji7vYkq8=)
2: ilRpOqqhCRrukRL5kvILbezdwjw.roa (hash: 09XWT+P0AZf+EnMM2PlCmZMY0UVdVh5S35frUm5Llew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:a1:63:93:ce:04:cb:e2:42:37:32:ae:35:d2:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04f0f75caed3f26885ac65630ffaaee77a70ebd9
Validity
Not Before: Jun 28 11:01:00 2025 GMT
Not After : Jun 29 11:01:00 2025 GMT
Subject: CN=96c29ae47a8f4aa71b3fefb2abb436556c2c52a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ea:3a:b8:14:36:ff:e9:16:46:cb:79:06:5f:
50:c4:43:d9:57:f3:e3:b2:ac:bb:06:13:4a:6b:1c:
9d:df:5a:67:dc:6c:6b:b5:17:6f:ff:15:e6:97:a0:
b2:f6:95:1c:78:47:7d:56:51:f1:d0:01:c5:df:f2:
a5:65:2b:26:26:f0:2e:e7:33:01:d5:cd:6d:55:d4:
c7:a5:d7:f2:75:9c:0c:c0:a4:6f:d1:e8:46:57:12:
20:91:87:00:57:9a:44:00:da:f3:ee:73:f7:49:fa:
0b:09:12:5d:38:bf:7c:f2:4f:f2:9b:da:d8:4f:60:
53:69:e3:8f:16:c1:32:fa:35:29:a0:9a:2b:70:f8:
28:bd:95:55:ac:9d:52:33:66:14:a3:c9:cb:f6:11:
dc:58:8e:aa:6e:0b:a8:01:c8:00:e0:85:d0:f3:59:
cb:7c:e6:9b:4a:a1:32:a5:d4:2d:57:31:1c:36:f5:
59:8e:7e:68:6a:3b:a9:c8:9d:6b:11:0f:f0:24:41:
c3:b9:38:9d:2e:53:b3:48:57:db:91:65:b7:0c:02:
cf:53:7a:0c:f1:8f:4b:f5:0e:01:ee:21:e5:0f:93:
47:2e:84:cb:82:60:0f:c2:95:76:d3:89:a5:50:e0:
4f:69:48:a0:23:22:f3:03:ef:05:d6:c7:bd:16:dc:
8b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C2:9A:E4:7A:8F:4A:A7:1B:3F:EF:B2:AB:B4:36:55:6C:2C:52:A9
X509v3 Authority Key Identifier:
keyid:04:F0:F7:5C:AE:D3:F2:68:85:AC:65:63:0F:FA:AE:E7:7A:70:EB:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:fa:9c:9e:e1:33:96:0f:f3:5d:81:11:4c:4f:ba:c0:8a:c9:
fd:7a:a0:be:1a:3a:19:2b:83:a0:37:81:d0:7e:ba:41:1a:d9:
ed:23:8c:4b:51:ce:89:58:9f:87:4b:f8:cf:27:e3:a0:01:22:
c3:64:87:5b:d3:11:ea:d5:9e:a0:e1:70:a1:f8:33:9d:2f:4d:
fa:41:5b:d4:11:cb:10:2a:14:bc:fc:dd:b4:69:37:00:d6:b6:
2a:cb:3d:f2:b6:00:5e:d1:6e:68:5c:52:d8:cd:c7:86:11:38:
cc:98:9f:77:06:1b:41:44:eb:bf:61:cb:ab:db:81:b8:16:57:
86:f8:b4:b5:7d:0c:91:7a:bf:a2:19:58:8e:48:b3:71:ba:3c:
88:b3:cb:9f:89:f8:b0:4d:17:47:6a:53:80:92:64:da:53:b6:
26:e8:9c:78:48:c0:01:e6:da:21:e7:a1:ec:f0:33:79:c2:b2:
02:e4:06:f0:ab:3b:4d:9b:a3:1a:78:5c:a9:68:d8:db:b1:8a:
47:98:97:e4:db:65:1f:6a:ae:af:69:ad:45:9e:cb:c0:2e:c8:
30:72:fb:c9:d3:28:d7:68:bd:61:f0:a1:b7:64:98:87:eb:05:
58:b7:49:76:b4:23:67:8e:94:4e:38:9b:64:38:0d:48:d3:5e:
c7:e7:3c:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2MqFjk84Ey+JCNzKuNdJ7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0ZjBmNzVjYWVkM2YyNjg4NWFjNjU2MzBmZmFhZWU3N2E3
MGViZDkwHhcNMjUwNjI4MTEwMTAwWhcNMjUwNjI5MTEwMTAwWjAzMTEwLwYDVQQD
Eyg5NmMyOWFlNDdhOGY0YWE3MWIzZmVmYjJhYmI0MzY1NTZjMmM1MmE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Oo6uBQ2/+kWRst5Bl9QxEPZV/Pj
sqy7BhNKaxyd31pn3GxrtRdv/xXml6Cy9pUceEd9VlHx0AHF3/KlZSsmJvAu5zMB
1c1tVdTHpdfydZwMwKRv0ehGVxIgkYcAV5pEANrz7nP3SfoLCRJdOL988k/ym9rY
T2BTaeOPFsEy+jUpoJorcPgovZVVrJ1SM2YUo8nL9hHcWI6qbguoAcgA4IXQ81nL
fOabSqEypdQtVzEcNvVZjn5oajupyJ1rEQ/wJEHDuTidLlOzSFfbkWW3DALPU3oM
8Y9L9Q4B7iHlD5NHLoTLgmAPwpV204mlUOBPaUigIyLzA+8F1se9FtyLQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJbCmuR6j0qnGz/vsqu0NlVsLFKpMB8GA1UdIwQY
MBaAFATw91yu0/JohaxlYw/6rud6cOvZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlBEM1hLN1Q4bWlGckdWakRfcXU1M3B3NjlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9hYzg1ODctZGIwZC00ZmUxLWEzOWQt
NDUyZWY2YWJlMDBmLzEvQlBEM1hLN1Q4bWlGckdWakRfcXU1M3B3NjlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC9hYzg1ODctZGIwZC00ZmUxLWEzOWQtNDUyZWY2YWJlMDBm
LzEvQlBEM1hLN1Q4bWlGckdWakRfcXU1M3B3NjlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJPqcnuEz
lg/zXYERTE+6wIrJ/Xqgvho6GSuDoDeB0H66QRrZ7SOMS1HOiVifh0v4zyfjoAEi
w2SHW9MR6tWeoOFwofgznS9N+kFb1BHLECoUvPzdtGk3ANa2Kss98rYAXtFuaFxS
2M3HhhE4zJifdwYbQUTrv2HLq9uBuBZXhvi0tX0MkXq/ohlYjkizcbo8iLPLn4n4
sE0XR2pTgJJk2lO2JuiceEjAAebaIeeh7PAzecKyAuQG8Ks7TZujGnhcqWjY27GK
R5iX5NtlH2qur2mtRZ7LwC7IMHL7ydMo12i9YfCht2SYh+sFWLdJdrQjZ46UTjib
ZDgNSNNex+c8/w==
-----END CERTIFICATE-----
Generated at Sat Jun 28 18:52:02 2025 by rpki-client