Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
File: BYmfOXZIcDij-mNDlSsUtNBysz0.mft (raw, json)
Hash identifier: YuEvpSOStv3zoWQ8uhIMPNQzVL5gqCAumjYwHASfr+g=
Subject key identifier: 72:DA:8D:23:2E:CE:B5:D8:37:32:E2:17:D6:B0:81:B6:A7:F6:44:F6
Authority key identifier: 05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D
Certificate issuer: /CN=05899f3976487038a3fa6343952b14b4d072b33d
Certificate serial: 0197B6A10834C7FB214F63CC547A74E9D860
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
Manifest number: 12E9
Signing time: Sat 28 Jun 2025 13:01:35 +0000
Manifest this update: Sat 28 Jun 2025 13:01:35 +0000
Manifest next update: Sun 29 Jun 2025 13:01:35 +0000
Files and hashes: 1: 0FPPBtsN210U9TcyUOoD4vT2QPY.roa (hash: fG8Q0h59H0I6+//7X6/ScKzAsNXNuiLvMcAt229Ohto=)
2: BYmfOXZIcDij-mNDlSsUtNBysz0.crl (hash: KbFPDfJ2lwzNaFSS92AzheciV36qn3jkDa4rNRVqQ+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:08:34:c7:fb:21:4f:63:cc:54:7a:74:e9:d8:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05899f3976487038a3fa6343952b14b4d072b33d
Validity
Not Before: Jun 28 13:01:35 2025 GMT
Not After : Jun 29 13:01:35 2025 GMT
Subject: CN=72da8d232eceb5d83732e217d6b081b6a7f644f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:dc:e1:3d:9a:9d:bd:3a:c1:65:cb:e6:32:02:
b4:d2:40:eb:ad:ab:7a:bb:67:e2:88:df:29:ee:79:
6e:3d:39:dd:fb:79:33:09:30:8d:af:ba:ef:5b:a7:
4d:78:3f:78:6d:71:10:a2:5e:67:25:4c:1c:f9:8a:
95:0e:65:dc:1c:be:55:74:68:3e:9f:f3:68:2c:08:
bb:04:81:26:6c:74:61:ae:ab:09:d8:2c:1b:00:79:
83:e5:ae:59:e5:35:cc:c2:26:72:9b:50:75:a4:74:
85:4d:4a:cf:6b:86:68:82:eb:18:ca:85:f2:8d:a8:
43:09:1d:29:05:cf:27:77:2a:04:66:23:6b:c2:1d:
24:65:4f:59:20:49:24:89:c8:ad:b1:1c:5e:20:39:
b3:e4:42:15:23:31:be:6f:c6:ae:8e:4d:6c:5d:07:
b3:a7:21:c8:44:a2:03:83:15:a0:f8:3a:9d:94:6e:
ea:da:d7:c6:6d:17:98:c9:b7:10:a2:d4:4e:30:39:
3c:ef:e5:0f:28:b9:bb:02:77:ff:39:3f:af:4a:73:
c1:bb:4f:66:e9:91:ff:22:70:eb:6d:77:c1:d2:bb:
90:9d:f6:de:ae:1a:76:42:8a:d5:e0:1c:80:4d:9c:
cb:b9:8f:1b:cf:4b:35:8e:de:52:29:58:2e:cd:df:
b9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:DA:8D:23:2E:CE:B5:D8:37:32:E2:17:D6:B0:81:B6:A7:F6:44:F6
X509v3 Authority Key Identifier:
keyid:05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:e7:d4:9a:e2:aa:af:f1:d7:bb:b9:87:42:d6:1e:13:31:38:
26:a6:75:d4:b7:2e:1f:5d:59:02:2f:90:dc:cc:79:3b:4c:24:
ba:5d:f3:7a:84:32:6e:be:87:51:57:05:b0:25:99:c7:54:9a:
41:22:e0:55:de:e5:a3:e6:44:6e:35:26:84:71:09:cc:5c:8d:
5c:51:a4:82:5e:48:0c:ac:20:1c:72:1e:53:ab:fd:f1:04:f3:
b2:90:7d:ea:bd:50:7c:73:c3:3d:d2:6b:8d:87:51:b2:e7:98:
8e:52:5a:a2:64:cf:3b:2c:47:0d:1d:27:e6:f9:ac:e9:dc:e9:
94:28:ac:67:01:c1:da:3d:69:b7:20:74:8e:f5:44:98:63:13:
50:97:f9:f4:b6:23:11:65:e4:04:a1:c1:51:66:30:09:a3:46:
53:2c:6f:80:c0:33:eb:e8:65:67:07:da:77:6f:a9:54:1b:bb:
cb:ec:0d:e0:2c:e0:78:41:96:ec:74:fe:27:0e:36:64:14:a1:
62:be:05:76:bd:16:c2:af:01:71:8b:b7:11:53:bc:db:da:16:
50:9c:fd:74:0d:29:21:6c:66:23:fa:cb:42:d6:ab:21:31:49:
ff:9b:8d:e4:dc:af:a5:c3:00:f2:5d:e6:c5:14:0f:fa:b7:16:
d9:61:a6:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:42:13 2025 by rpki-client