Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
File: BZ9RaALCYTCaYQSHcubq_VhnqZA.mft (raw, json)
Hash identifier: +R1VhWjsuFCKNMrgNawHNcRCExc7g7VnicG+Og8DkJc=
Subject key identifier: D5:31:AB:90:5D:2B:76:ED:67:D8:5E:F6:14:5C:4C:A1:4A:C0:AB:67
Authority key identifier: 05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
Certificate issuer: /CN=059f516802c261309a61048772e6eafd5867a990
Certificate serial: 0197B7B353C92B803E7A848E4C9E7D39EE12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
Manifest number: 1472
Signing time: Sat 28 Jun 2025 18:01:12 +0000
Manifest this update: Sat 28 Jun 2025 18:01:12 +0000
Manifest next update: Sun 29 Jun 2025 18:01:12 +0000
Files and hashes: 1: BZ9RaALCYTCaYQSHcubq_VhnqZA.crl (hash: dxBz7L8mQYTEz+4uT/45W6Z3wdbqIQnxwDwOwOyO+IY=)
2: RyM0TaDcy3MATcF4kZgnomIhcSc.roa (hash: u1hwu96g0Ti3Leptf/8mOz/le6P/VB383vy/UE8/YqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:53:c9:2b:80:3e:7a:84:8e:4c:9e:7d:39:ee:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=059f516802c261309a61048772e6eafd5867a990
Validity
Not Before: Jun 28 18:01:12 2025 GMT
Not After : Jun 29 18:01:12 2025 GMT
Subject: CN=d531ab905d2b76ed67d85ef6145c4ca14ac0ab67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:af:85:dc:21:c4:10:f1:15:86:05:f8:72:4d:
97:90:20:9a:34:8a:bf:16:77:a8:06:53:07:ca:7e:
4f:7f:1f:5a:58:0e:9e:96:33:9a:40:47:45:3d:8c:
38:92:b5:2b:ed:d9:4b:45:1d:bc:3b:0c:09:2d:63:
55:c2:f0:7c:d8:75:77:93:cf:ae:ef:b4:72:61:7c:
51:68:dc:06:cd:df:0d:6a:ba:71:74:9c:0b:40:de:
37:42:f3:e3:74:94:2c:63:d8:69:84:81:5d:a2:ba:
9c:cc:80:03:fd:75:a0:9b:6b:a9:8a:1c:cc:1d:1e:
14:c7:3f:08:29:92:2d:6e:f6:94:47:94:c1:73:fb:
ed:c1:5d:90:3b:8f:f0:da:24:5e:fe:a1:a3:50:bc:
97:e0:f9:aa:50:f6:f9:34:d4:7a:35:b1:46:b3:a2:
3f:87:5f:1e:39:05:0f:d7:8b:58:18:d1:0e:4c:4f:
71:1c:27:75:68:99:df:80:55:0c:3f:d5:87:7a:2f:
4e:cd:b4:c2:dc:d9:bf:2e:55:3b:00:17:dd:51:70:
22:20:c4:80:64:05:c1:25:a4:4a:c0:87:b9:0e:a7:
0f:14:ad:d5:59:74:ec:d4:67:94:f3:ea:ea:bd:9e:
1e:ce:75:db:f7:5f:ca:04:1f:45:51:a4:1e:89:65:
71:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:31:AB:90:5D:2B:76:ED:67:D8:5E:F6:14:5C:4C:A1:4A:C0:AB:67
X509v3 Authority Key Identifier:
keyid:05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:0c:16:26:3f:30:a4:92:cc:4f:78:58:32:08:68:77:d7:56:
be:1b:3d:59:a1:9c:5d:d8:52:c2:0a:83:f1:a5:8c:52:08:f8:
34:c1:4e:0a:e3:a2:ff:4b:04:e7:46:1f:4c:f0:ce:6a:1d:1f:
fb:34:52:87:1a:75:40:d6:9a:e4:a0:37:3e:e0:76:76:59:d2:
5f:c9:3c:25:97:5e:bc:19:24:1a:ae:54:a5:59:ef:3e:b6:e9:
d9:19:8e:f7:42:af:64:0a:e5:41:5b:91:e0:4a:90:fa:d5:97:
cb:bc:c3:71:db:8b:25:b0:14:89:66:8f:c3:58:e8:14:98:8d:
0b:39:f0:2b:a0:b6:9b:04:33:60:e0:21:47:de:d9:6f:9c:eb:
4f:58:e4:79:ef:66:d1:80:41:cf:36:a2:97:a5:df:b3:cf:05:
02:57:7a:61:07:0b:d6:1f:a3:25:9d:aa:64:06:13:33:b7:c6:
0d:aa:30:f9:79:8d:06:b2:55:6c:19:cd:24:04:4c:2b:78:e6:
a5:6d:c7:34:9d:ac:0a:7f:39:44:86:66:88:79:2d:ce:ee:ff:
83:3d:77:f6:d1:db:e0:6c:be:08:99:28:c7:d0:d1:1a:78:24:
aa:5e:3b:b9:74:fd:1b:ae:ea:8c:11:71:2c:ac:b0:b2:c5:a8:
c3:b0:89:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3s1PJK4A+eoSOTJ59Oe4SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OWY1MTY4MDJjMjYxMzA5YTYxMDQ4NzcyZTZlYWZkNTg2
N2E5OTAwHhcNMjUwNjI4MTgwMTEyWhcNMjUwNjI5MTgwMTEyWjAzMTEwLwYDVQQD
EyhkNTMxYWI5MDVkMmI3NmVkNjdkODVlZjYxNDVjNGNhMTRhYzBhYjY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm6+F3CHEEPEVhgX4ck2XkCCaNIq/
FneoBlMHyn5Pfx9aWA6eljOaQEdFPYw4krUr7dlLRR28OwwJLWNVwvB82HV3k8+u
77RyYXxRaNwGzd8NarpxdJwLQN43QvPjdJQsY9hphIFdorqczIAD/XWgm2upihzM
HR4Uxz8IKZItbvaUR5TBc/vtwV2QO4/w2iRe/qGjULyX4PmqUPb5NNR6NbFGs6I/
h18eOQUP14tYGNEOTE9xHCd1aJnfgFUMP9WHei9OzbTC3Nm/LlU7ABfdUXAiIMSA
ZAXBJaRKwIe5DqcPFK3VWXTs1GeU8+rqvZ4eznXb91/KBB9FUaQeiWVxjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNUxq5BdK3btZ9he9hRcTKFKwKtnMB8GA1UdIwQY
MBaAFAWfUWgCwmEwmmEEh3Lm6v1YZ6mQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlo5UmFBTENZVENhWVFTSGN1YnFfVmhucVpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy80MDg3Y2YtNzFlOS00MmNhLThjMzUt
OTUxYjE5ODU2NzFjLzEvQlo5UmFBTENZVENhWVFTSGN1YnFfVmhucVpBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy80MDg3Y2YtNzFlOS00MmNhLThjMzUtOTUxYjE5ODU2NzFj
LzEvQlo5UmFBTENZVENhWVFTSGN1YnFfVmhucVpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoQwWJj8w
pJLMT3hYMghod9dWvhs9WaGcXdhSwgqD8aWMUgj4NMFOCuOi/0sE50YfTPDOah0f
+zRShxp1QNaa5KA3PuB2dlnSX8k8JZdevBkkGq5UpVnvPrbp2RmO90KvZArlQVuR
4EqQ+tWXy7zDcduLJbAUiWaPw1joFJiNCznwK6C2mwQzYOAhR97Zb5zrT1jkee9m
0YBBzzail6Xfs88FAld6YQcL1h+jJZ2qZAYTM7fGDaow+XmNBrJVbBnNJARMK3jm
pW3HNJ2sCn85RIZmiHktzu7/gz139tHb4Gy+CJkox9DRGngkql47uXT9G67qjBFx
LKywssWow7CJ1Q==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:49:13 2025 by rpki-client