Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
File: BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft (raw, json)
Hash identifier: tHjGzCcllxagkAQ0oZP0UvVg2ZlrTiq+qd9iTO/wjFI=
Subject key identifier: E1:CB:F2:84:5A:F3:A9:B7:5E:26:23:B9:1F:AB:DB:EC:AD:E6:63:E6
Authority key identifier: 04:B6:1E:51:40:CD:89:84:F7:FE:20:10:DB:59:EB:DB:2F:3E:D4:E6
Certificate issuer: /CN=04b61e5140cd8984f7fe2010db59ebdb2f3ed4e6
Certificate serial: 0198D66041A2257AE2B9579F0D1FAC1FB91E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
Manifest number: 0CA2
Signing time: Sat 23 Aug 2025 10:01:29 +0000
Manifest this update: Sat 23 Aug 2025 10:01:29 +0000
Manifest next update: Sun 24 Aug 2025 10:01:29 +0000
Files and hashes: 1: BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl (hash: ZIOmYHHc1OkzPXDtV7Mj5Bp3f+PRzKHMaSfar2X5VDM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:41:a2:25:7a:e2:b9:57:9f:0d:1f:ac:1f:b9:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04b61e5140cd8984f7fe2010db59ebdb2f3ed4e6
Validity
Not Before: Aug 23 10:01:29 2025 GMT
Not After : Aug 24 10:01:29 2025 GMT
Subject: CN=e1cbf2845af3a9b75e2623b91fabdbecade663e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:16:0b:10:6d:58:d9:91:2d:9b:24:23:fb:52:
e2:bf:6c:e4:32:63:6f:59:a6:3c:dd:95:8a:01:56:
c5:4c:59:5d:dc:e9:f7:04:f0:84:bb:0a:fb:48:23:
4e:01:7a:a5:94:93:36:1c:bd:4f:91:07:e2:42:ba:
bc:2d:5b:0c:f4:02:60:af:15:05:de:8c:c8:fa:d5:
51:77:8a:29:a7:c9:fc:5a:92:5a:2c:7f:96:13:cb:
70:92:e9:71:54:3f:09:24:27:46:95:af:5f:b8:e0:
48:44:74:25:16:a1:72:b0:8c:98:7a:0c:df:03:5a:
cd:fa:25:8c:08:5d:49:69:78:57:9a:93:0e:93:60:
7c:fb:39:b6:2f:e4:d2:16:8a:a5:87:4e:36:a0:58:
9f:99:7f:8d:f2:8c:47:b8:ff:d3:e8:63:49:28:23:
36:b3:bd:0c:2a:50:79:85:15:a7:06:20:9b:01:cd:
c9:8c:fc:e2:13:a7:50:b3:ba:b2:3d:2e:cb:a6:7f:
e7:fe:15:31:e5:c3:b0:58:f4:01:f2:42:7a:e9:a0:
97:60:0a:19:55:cb:95:a6:9c:c6:b3:8b:8b:0f:20:
c9:7f:64:61:70:5f:15:d4:c5:b3:b2:f0:04:60:20:
a0:60:b3:d6:0f:45:b2:59:43:a4:59:63:a6:f9:70:
9b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:CB:F2:84:5A:F3:A9:B7:5E:26:23:B9:1F:AB:DB:EC:AD:E6:63:E6
X509v3 Authority Key Identifier:
keyid:04:B6:1E:51:40:CD:89:84:F7:FE:20:10:DB:59:EB:DB:2F:3E:D4:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:9b:3d:26:1c:7f:61:72:15:2f:c7:55:2a:d9:b1:25:c7:ff:
b4:bf:31:56:66:fe:1c:21:9a:40:df:e9:54:5e:26:26:56:b5:
54:bd:8b:6e:28:c7:2f:8b:18:d3:98:8f:17:25:4d:73:6f:e8:
f0:76:5b:2b:0e:34:14:0d:53:45:25:3e:c8:17:77:3a:c3:ca:
d3:d2:49:7f:16:3e:a8:3c:46:7a:86:47:fb:86:8c:4b:a0:49:
e8:4b:99:2e:f2:67:e3:a3:5f:8e:79:a3:a6:15:fe:c0:9b:5f:
32:99:bd:da:8a:3d:72:e6:fe:31:0a:29:35:4a:e4:15:9a:5b:
75:00:2a:cc:5d:52:95:2f:68:05:69:28:17:b3:3c:8b:b3:a9:
9d:cd:8e:2b:94:7e:d9:19:59:3e:7b:1f:9c:7a:60:b1:5c:53:
4e:24:ea:c4:c7:c1:6f:54:2f:9f:d2:41:9e:1f:e1:60:b8:50:
1d:cf:88:8d:ea:9b:db:5b:8b:9f:8d:c4:54:f3:9a:1c:5b:98:
a7:a8:7c:74:a1:1c:52:2a:3f:64:88:32:68:2c:f5:9c:1b:97:
81:46:55:27:d7:ca:b2:d1:db:e5:fd:b9:da:e8:50:d5:86:7e:
5d:03:c5:93:d5:fb:fa:dd:b6:ec:86:bc:a6:30:1a:cf:18:e4:
7e:86:a3:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:00:12 2025 by rpki-client