Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
File: BZ9RaALCYTCaYQSHcubq_VhnqZA.mft (raw, json)
Hash identifier: x9KCmOlmyQ+T7Bk+oVcGUXo8qZRecRbm/CXTk1NnbGo=
Subject key identifier: 4C:CD:87:17:D0:E0:72:A3:53:57:EC:94:FF:23:8A:E1:E7:53:88:13
Authority key identifier: 05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
Certificate issuer: /CN=059f516802c261309a61048772e6eafd5867a990
Certificate serial: 0198D583FCFC9B5E535DB091703E560BD6A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
Manifest number: 1506
Signing time: Sat 23 Aug 2025 06:00:53 +0000
Manifest this update: Sat 23 Aug 2025 06:00:53 +0000
Manifest next update: Sun 24 Aug 2025 06:00:53 +0000
Files and hashes: 1: BZ9RaALCYTCaYQSHcubq_VhnqZA.crl (hash: xI8QF4HtqAHEUiJNyYH3/Vcyp5Ng0VVWJS7ozTOHK+Q=)
2: RyM0TaDcy3MATcF4kZgnomIhcSc.roa (hash: u1hwu96g0Ti3Leptf/8mOz/le6P/VB383vy/UE8/YqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:fc:fc:9b:5e:53:5d:b0:91:70:3e:56:0b:d6:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=059f516802c261309a61048772e6eafd5867a990
Validity
Not Before: Aug 23 06:00:53 2025 GMT
Not After : Aug 24 06:00:53 2025 GMT
Subject: CN=4ccd8717d0e072a35357ec94ff238ae1e7538813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1a:c2:fd:16:bf:0e:c5:34:40:0c:68:b3:df:
62:1b:6a:8e:8b:80:fb:1f:1c:fd:c7:55:32:d4:19:
36:71:c1:56:8c:85:2e:c7:5d:06:06:11:55:68:18:
05:6b:66:61:e9:3a:13:b9:bd:ce:b3:18:cb:a5:06:
80:83:1f:d5:39:50:c1:c3:94:e5:b0:e9:0d:2e:64:
f5:38:76:4c:6b:3f:c9:90:39:88:f2:9b:18:89:76:
46:70:21:77:91:3d:12:7d:1a:f8:0d:9c:d3:24:98:
de:43:57:2d:df:03:b6:28:d5:c3:1d:23:cd:26:26:
65:4f:29:81:fd:c4:e2:e9:66:8a:d8:f6:7b:b1:df:
aa:2d:d9:ad:aa:7c:f2:c9:bd:18:86:31:ad:2b:be:
1a:25:78:a2:f1:72:38:fb:4e:e1:51:68:ea:ed:73:
f8:a0:af:ed:26:91:90:ae:7a:b7:7a:4b:ea:eb:92:
bd:64:d8:68:3d:90:ce:66:bb:4a:a6:a6:b6:93:30:
25:ce:6a:0f:f9:3d:31:95:7b:b9:57:52:a6:41:ea:
64:c8:11:02:e3:40:81:e4:51:37:a7:51:fe:72:72:
cc:5f:ce:0d:0a:f0:d3:6c:98:48:6e:b7:71:06:3d:
86:25:74:a4:e0:09:6f:1f:40:b2:73:d7:50:25:b4:
04:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:CD:87:17:D0:E0:72:A3:53:57:EC:94:FF:23:8A:E1:E7:53:88:13
X509v3 Authority Key Identifier:
keyid:05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:af:b1:c3:fe:8f:48:5b:b3:4d:3b:b0:be:ee:08:47:1b:1e:
d2:a8:aa:bc:b0:db:1d:96:d4:cf:75:45:d9:ba:82:4d:01:c0:
d8:76:a3:82:58:10:f3:a0:91:1b:43:5a:d8:e3:76:5a:4e:50:
cf:8f:b8:2b:bb:29:84:64:78:d7:88:ce:f3:50:3d:ca:50:ef:
8c:d9:6b:5d:3a:96:40:e0:b7:ee:9d:a7:58:bd:a2:03:a2:f5:
d8:37:7d:e8:c2:d3:07:f7:9b:8e:df:bf:d9:26:b5:d0:cb:0b:
17:39:ad:b2:51:15:c5:b4:73:a7:46:d2:bd:a9:eb:db:4e:09:
0f:3d:02:3a:76:1e:68:05:2b:f2:02:2c:59:1e:08:96:6f:c4:
bf:db:c3:a0:2b:6e:e5:14:17:0a:79:f3:ed:ff:16:b1:90:52:
63:1a:14:49:05:e4:67:31:ac:79:46:0d:f4:e8:13:f0:e0:ee:
da:68:00:2c:79:f6:28:70:9d:cd:9f:75:f2:c4:81:77:41:53:
d8:0b:96:07:d7:27:06:ef:71:c1:5e:f1:d1:f0:63:78:44:b4:
54:83:38:2f:0e:20:fd:af:d8:a1:1e:88:07:66:ea:e9:c1:17:
41:6b:48:a6:f5:1d:f2:0d:1d:44:1e:b6:ef:23:06:7a:62:63:
00:d3:8c:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:42 2025 by rpki-client