Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.mft
File: BcojF2aaRo1QmoqhkGvvp1v5wgE.mft (raw, json)
Hash identifier: eIM1zetYUQqtPehUtUefSD/ghkiDfuT0apkm/Q5FuKA=
Subject key identifier: 7C:AF:D7:BA:7C:83:9F:1E:B8:47:98:45:03:EA:27:58:26:A5:50:69
Authority key identifier: 05:CA:23:17:66:9A:46:8D:50:9A:8A:A1:90:6B:EF:A7:5B:F9:C2:01
Certificate issuer: /CN=05ca2317669a468d509a8aa1906befa75bf9c201
Certificate serial: 0197B88FA3828480888C0E48716760A77627
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BcojF2aaRo1QmoqhkGvvp1v5wgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.mft
Manifest number: 0CEE
Signing time: Sat 28 Jun 2025 22:01:50 +0000
Manifest this update: Sat 28 Jun 2025 22:01:50 +0000
Manifest next update: Sun 29 Jun 2025 22:01:50 +0000
Files and hashes: 1: BcojF2aaRo1QmoqhkGvvp1v5wgE.crl (hash: OpC5nRVq4X8lweTaCrSfpZ3JxNF/pL3z1ZYUGkUWW/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.mft
rsync://rpki.ripe.net/repository/DEFAULT/BcojF2aaRo1QmoqhkGvvp1v5wgE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:a3:82:84:80:88:8c:0e:48:71:67:60:a7:76:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ca2317669a468d509a8aa1906befa75bf9c201
Validity
Not Before: Jun 28 22:01:50 2025 GMT
Not After : Jun 29 22:01:50 2025 GMT
Subject: CN=7cafd7ba7c839f1eb847984503ea275826a55069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:97:17:f8:2d:97:6d:c3:98:30:6e:e9:24:da:
e7:b3:39:39:a5:03:df:2b:e0:4e:7d:1d:d7:19:9a:
17:5d:b6:72:89:92:48:2e:e1:a8:74:3a:05:c8:47:
f5:7b:66:07:6a:42:ef:a4:ca:76:d2:bc:c2:75:4c:
ef:dc:f2:2a:85:f9:cd:ed:d0:86:0a:07:66:ff:96:
1a:bd:ba:7f:d1:38:c5:b0:4e:8b:6e:d7:68:5d:52:
00:4a:93:63:3a:c8:45:b0:9a:b9:e2:c1:90:6f:2c:
c2:c6:34:b4:4f:da:b3:48:03:0b:b9:8f:88:83:66:
3e:10:0f:2c:4e:56:c6:3c:67:15:9f:0c:d2:5d:2f:
2a:64:09:72:8c:02:42:df:ba:4f:2a:5b:d5:71:b6:
c1:80:17:55:05:d0:a0:bd:10:ee:92:db:08:70:d0:
7a:21:13:47:7d:52:5b:8f:1b:1b:b4:95:65:4d:d7:
1e:b7:ad:9f:1e:08:cb:55:23:3d:fa:92:61:34:60:
41:0f:2a:be:f6:de:e2:21:8f:73:0a:30:75:e6:41:
29:bb:46:0b:93:8c:20:f0:b0:fd:77:9e:ce:c0:db:
8b:3d:36:6c:51:8e:29:d5:b9:72:c3:d2:8f:ce:8d:
14:68:bc:e1:6c:2e:c3:07:09:7d:a7:5d:76:69:3a:
b4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:AF:D7:BA:7C:83:9F:1E:B8:47:98:45:03:EA:27:58:26:A5:50:69
X509v3 Authority Key Identifier:
keyid:05:CA:23:17:66:9A:46:8D:50:9A:8A:A1:90:6B:EF:A7:5B:F9:C2:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BcojF2aaRo1QmoqhkGvvp1v5wgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:54:40:fe:8d:ea:c9:b5:1c:6d:17:0c:70:85:58:c3:45:d3:
55:e5:05:b5:2c:0a:a5:c4:0d:1c:ba:36:a3:bf:34:cc:62:0a:
54:d0:f5:23:3d:8b:6c:3c:75:3e:0a:5c:09:bc:d8:90:c6:7d:
53:51:43:8c:8b:23:76:c7:df:0a:0e:c9:11:be:54:29:5b:15:
a2:37:f0:d6:5f:d3:ea:b9:5e:ac:75:44:f4:4c:fc:59:2c:69:
78:22:39:42:c4:88:cb:f3:cb:c2:54:72:51:d6:46:a3:0d:be:
6e:c7:92:40:4a:df:6c:66:ff:2a:89:fe:6f:9e:8c:84:19:b0:
3c:9b:57:a5:a1:97:f4:fd:52:4c:02:2e:32:6a:a8:1f:18:59:
e9:1b:45:ca:0f:4c:95:c8:4d:b1:8b:ee:8c:d4:92:a6:38:9b:
68:0b:9d:9b:af:0d:98:2c:38:ea:0c:67:56:ef:cc:78:de:6a:
1b:82:59:ed:bd:ea:ba:89:f6:63:76:f0:6a:18:99:ca:d0:14:
56:1f:42:29:8f:75:7b:43:a0:d7:52:9d:f2:3f:3e:d0:d6:25:
cc:36:17:a5:c5:bf:d6:ab:39:d8:12:34:7a:55:c9:1e:ed:c1:
0a:63:42:52:f3:77:5e:2b:47:94:54:69:7c:a8:48:66:cc:2c:
45:f2:e3:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4j6OChICIjA5IcWdgp3YnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1Y2EyMzE3NjY5YTQ2OGQ1MDlhOGFhMTkwNmJlZmE3NWJm
OWMyMDEwHhcNMjUwNjI4MjIwMTUwWhcNMjUwNjI5MjIwMTUwWjAzMTEwLwYDVQQD
Eyg3Y2FmZDdiYTdjODM5ZjFlYjg0Nzk4NDUwM2VhMjc1ODI2YTU1MDY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp5cX+C2XbcOYMG7pJNrnszk5pQPf
K+BOfR3XGZoXXbZyiZJILuGodDoFyEf1e2YHakLvpMp20rzCdUzv3PIqhfnN7dCG
Cgdm/5Yavbp/0TjFsE6LbtdoXVIASpNjOshFsJq54sGQbyzCxjS0T9qzSAMLuY+I
g2Y+EA8sTlbGPGcVnwzSXS8qZAlyjAJC37pPKlvVcbbBgBdVBdCgvRDuktsIcNB6
IRNHfVJbjxsbtJVlTdcet62fHgjLVSM9+pJhNGBBDyq+9t7iIY9zCjB15kEpu0YL
k4wg8LD9d57OwNuLPTZsUY4p1blyw9KPzo0UaLzhbC7DBwl9p112aTq0ewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHyv17p8g58euEeYRQPqJ1gmpVBpMB8GA1UdIwQY
MBaAFAXKIxdmmkaNUJqKoZBr76db+cIBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmNvakYyYWFSbzFRbW9xaGtHdnZwMXY1d2dFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC9iZGVjYWEtZDE0MS00NmIyLTlkNDAt
MTMzMWU2NTFjNzlmLzEvQmNvakYyYWFSbzFRbW9xaGtHdnZwMXY1d2dFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC9iZGVjYWEtZDE0MS00NmIyLTlkNDAtMTMzMWU2NTFjNzlm
LzEvQmNvakYyYWFSbzFRbW9xaGtHdnZwMXY1d2dFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApFRA/o3q
ybUcbRcMcIVYw0XTVeUFtSwKpcQNHLo2o780zGIKVND1Iz2LbDx1PgpcCbzYkMZ9
U1FDjIsjdsffCg7JEb5UKVsVojfw1l/T6rlerHVE9Ez8WSxpeCI5QsSIy/PLwlRy
UdZGow2+bseSQErfbGb/Kon+b56MhBmwPJtXpaGX9P1STAIuMmqoHxhZ6RtFyg9M
lchNsYvujNSSpjibaAudm68NmCw46gxnVu/MeN5qG4JZ7b3quon2Y3bwahiZytAU
Vh9CKY91e0Og11Kd8j8+0NYlzDYXpcW/1qs52BI0elXJHu3BCmNCUvN3XitHlFRp
fKhIZswsRfLj/A==
-----END CERTIFICATE-----
Generated at Sun Jun 29 07:57:30 2025 by rpki-client