Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
File: BSAFu2w9aGW4nBDzOwuZS3Svljs.mft (raw, json)
Hash identifier: +rpQpHSHk3zDslKdlRa2eoZyecRnJcKT2W8jpmYBt24=
Subject key identifier: 70:ED:E8:52:AD:FF:C3:08:F2:93:5E:19:4E:02:24:83:88:39:B6:CC
Authority key identifier: 05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
Certificate issuer: /CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Certificate serial: 0197B8904DD7EEB1DD8AF992DF48A77B8C2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
Manifest number: 15B8
Signing time: Sat 28 Jun 2025 22:02:34 +0000
Manifest this update: Sat 28 Jun 2025 22:02:34 +0000
Manifest next update: Sun 29 Jun 2025 22:02:34 +0000
Files and hashes: 1: BSAFu2w9aGW4nBDzOwuZS3Svljs.crl (hash: pVV59pSP/kIkHHYpgM8wWBwAvn8PkKeJG2SfU1USkkE=)
2: ir1RS50i8n6-S2GFn7ZgzEJxgqk.roa (hash: c+oT6rdCWtyUihO7r4CT9JSZ34sdZ4eqqblxSm+cQz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:02:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:4d:d7:ee:b1:dd:8a:f9:92:df:48:a7:7b:8c:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Validity
Not Before: Jun 28 22:02:34 2025 GMT
Not After : Jun 29 22:02:34 2025 GMT
Subject: CN=70ede852adffc308f2935e194e0224838839b6cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7a:31:20:1e:fb:a3:ae:13:37:ff:27:5e:46:
3f:06:da:10:62:0f:85:8e:ae:33:67:b3:7a:b4:4e:
cd:60:9d:6e:ba:79:27:23:64:31:a7:71:e9:fc:67:
5c:b1:02:be:e6:a4:54:ee:f9:21:63:db:77:91:59:
ca:c0:98:17:ed:3f:0f:6c:c4:5e:54:8e:3a:83:b1:
d9:c0:97:3f:f6:03:ac:88:42:c5:05:3a:92:91:de:
b9:b0:a9:97:f0:58:b4:ab:9c:86:18:af:69:8b:1d:
2a:39:e9:e4:41:83:53:a2:d5:5f:d3:54:b8:17:44:
a7:19:92:db:51:6d:3a:fa:94:de:a5:0a:48:65:60:
b0:1b:46:91:f0:67:0f:fa:12:c5:aa:d4:dc:6c:b4:
1b:ab:8f:45:b9:06:f9:a9:0b:27:04:82:be:31:5b:
ac:b2:f2:94:56:20:13:06:69:ee:9f:66:25:2e:4c:
67:3f:a7:53:97:1d:e4:26:fb:98:d6:e6:1c:ad:10:
22:cc:97:71:85:ae:b1:32:5b:13:97:51:14:ac:39:
c6:80:12:3c:57:82:3f:94:9d:08:72:c5:6b:3f:ef:
c1:f5:61:63:95:ff:07:8e:8e:9f:e1:bc:7c:2b:bd:
81:f9:19:db:9b:2f:41:fd:43:08:ec:86:f1:a2:f2:
ae:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:ED:E8:52:AD:FF:C3:08:F2:93:5E:19:4E:02:24:83:88:39:B6:CC
X509v3 Authority Key Identifier:
keyid:05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:6d:e4:b2:5d:44:2a:ee:79:7f:d2:97:e6:a3:48:d1:a8:c8:
14:c5:3e:28:9c:dd:02:43:ef:05:c2:7c:c0:ee:a5:db:7d:84:
e3:24:60:86:82:5f:b1:41:08:57:00:2e:83:66:f5:6e:e5:33:
67:f4:e0:15:d5:54:81:e3:f1:ec:55:63:4d:21:ba:7d:71:f6:
a8:66:6a:27:69:63:6e:c5:a9:30:c9:79:72:d5:da:55:88:cd:
1b:0e:c0:00:7b:52:aa:4d:fd:e6:7a:29:57:36:fe:ff:83:80:
87:5d:ec:8d:11:ee:08:be:df:86:d4:9e:58:e9:91:2a:0d:6c:
83:ac:7d:ef:a3:6e:56:7f:81:fc:f2:67:08:9e:d2:16:68:e5:
36:49:59:f6:49:99:ee:23:34:2b:a2:3a:63:4a:14:2f:70:57:
87:40:7b:07:9d:e6:14:9e:0c:67:44:42:e4:7d:20:48:02:f1:
42:1c:be:c3:1e:ed:d3:d3:b8:55:bf:20:d2:f0:fb:59:d3:be:
d8:ef:c2:33:e4:93:84:b1:9b:48:41:52:54:ae:0b:1f:34:48:
e2:2c:9a:d5:9a:f6:aa:a1:1f:d5:d8:fc:14:75:77:1e:4a:fb:
4c:30:9a:c5:4a:d8:c2:ba:86:fa:43:d7:51:f6:52:e4:f6:5c:
23:05:5f:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:18:54 2025 by rpki-client