Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
File: BcW97HMY-HHVPoZkgvQXM97wlCg.mft (raw, json)
Hash identifier: oS2bwW1LmWX81BaWmJ1g+HBCActpsV7zWL0RHxWotyQ=
Subject key identifier: 3D:C2:84:12:CA:DF:7E:6B:79:47:21:1C:52:F7:40:95:F3:51:25:97
Authority key identifier: 05:C5:BD:EC:73:18:F8:71:D5:3E:86:64:82:F4:17:33:DE:F0:94:28
Certificate issuer: /CN=05c5bdec7318f871d53e866482f41733def09428
Certificate serial: 0196C34C56159BF4DD4B11D44BDD23C0D47D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
Manifest number: 0C97
Signing time: Mon 12 May 2025 07:01:21 +0000
Manifest this update: Mon 12 May 2025 07:01:21 +0000
Manifest next update: Tue 13 May 2025 07:01:21 +0000
Files and hashes: 1: BcW97HMY-HHVPoZkgvQXM97wlCg.crl (hash: Q8q7yEzueNuHeYch94slQn11/yZrWPQfLGXZQMjQQeQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:4c:56:15:9b:f4:dd:4b:11:d4:4b:dd:23:c0:d4:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05c5bdec7318f871d53e866482f41733def09428
Validity
Not Before: May 12 07:01:21 2025 GMT
Not After : May 13 07:01:21 2025 GMT
Subject: CN=3dc28412cadf7e6b7947211c52f74095f3512597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:cc:b5:e0:bd:c8:17:0a:04:9f:71:f7:1f:df:
19:a4:4d:e6:3a:29:84:30:d6:b3:f9:84:0a:19:38:
d1:73:a0:8e:9d:9e:cb:aa:a6:1c:15:fe:6d:35:65:
35:ee:07:b8:89:6e:89:80:5b:29:a7:69:9f:fe:e9:
4f:25:58:df:25:1f:f8:1e:29:db:f9:67:ef:6c:5b:
2a:d9:4a:55:78:4b:ae:57:86:5b:24:eb:4a:58:c4:
14:ed:6f:53:2f:b7:23:53:ab:be:57:f2:90:a6:8c:
d5:44:94:95:71:0e:b8:44:1f:f3:99:7f:0b:94:5b:
e7:89:42:4e:9a:78:60:fa:88:43:e7:e7:c7:1c:0c:
87:57:ed:4d:36:b1:63:f6:a5:39:d2:f5:1f:4b:c7:
1d:0c:9b:95:27:ce:93:90:a7:b7:64:c1:1a:32:6d:
38:2f:09:60:ea:58:3e:c5:8e:2c:a4:8e:28:a3:94:
fe:f9:f9:53:84:a3:c7:3a:64:f7:08:13:09:f7:df:
9b:1e:b4:aa:70:31:2f:19:cb:55:fd:7a:3b:1f:3b:
a9:61:76:fe:ec:a5:33:2e:bb:59:d1:56:f8:54:44:
ac:0c:9c:6d:61:0c:34:3d:8d:e1:be:20:b7:2e:fd:
82:ac:7e:69:6c:bd:d7:b8:90:63:e1:c6:88:b7:ce:
0a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:C2:84:12:CA:DF:7E:6B:79:47:21:1C:52:F7:40:95:F3:51:25:97
X509v3 Authority Key Identifier:
keyid:05:C5:BD:EC:73:18:F8:71:D5:3E:86:64:82:F4:17:33:DE:F0:94:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:0a:71:e4:2b:33:23:74:0e:98:ab:3b:32:4a:67:35:f3:89:
25:19:8c:a7:82:fe:92:ad:9c:0f:9a:c4:ac:c2:80:54:fd:ba:
82:ab:fe:88:de:ff:f5:86:cd:ed:be:14:da:97:04:68:78:2a:
13:bd:59:d0:8c:8e:9c:d0:39:f4:d7:59:91:b7:d3:4e:b6:5c:
be:86:6a:ba:fa:d8:de:c3:07:47:f0:34:c2:b6:f4:ff:b4:10:
c8:69:eb:b9:96:e8:2b:f7:e1:08:43:d1:35:98:13:60:aa:3e:
8f:28:df:55:45:37:ee:0e:72:f8:eb:9f:7b:e9:c9:63:d1:1a:
95:dd:f7:60:cb:ce:7c:b3:3f:19:a9:ff:f3:db:a9:4e:d3:fd:
b6:0a:7f:38:a4:7f:47:6f:49:df:32:2b:29:97:ca:68:28:c2:
61:ad:b0:09:29:66:e4:90:1a:a9:f9:9c:8a:19:42:d5:ef:d2:
7b:99:c8:9e:e3:fe:39:b4:5d:bb:24:35:90:99:30:6b:34:bf:
e2:f6:e4:87:c9:85:bf:55:bc:d6:bb:1f:6f:1e:91:4b:09:c7:
d6:19:9d:9b:e0:e5:2d:47:84:83:30:b2:42:cc:66:93:a7:5c:
05:d5:1f:60:e7:26:2a:ce:7e:35:55:96:ef:a0:e0:b0:6c:a7:
8e:7b:f3:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:54:15 2025 by rpki-client