Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
File: BcW97HMY-HHVPoZkgvQXM97wlCg.mft (raw, json)
Hash identifier: X49Jrp6k9gWQKHOjQbG0QjZFlr77z3nOkhndWM8oxVU=
Subject key identifier: DB:74:8F:6D:50:C5:B5:8D:4A:5A:CF:72:B8:9B:44:D7:44:D7:38:68
Authority key identifier: 05:C5:BD:EC:73:18:F8:71:D5:3E:86:64:82:F4:17:33:DE:F0:94:28
Certificate issuer: /CN=05c5bdec7318f871d53e866482f41733def09428
Certificate serial: 0197B88FA4AE5DAF55BFF5FB13693CF3F5AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
Manifest number: 0D16
Signing time: Sat 28 Jun 2025 22:01:50 +0000
Manifest this update: Sat 28 Jun 2025 22:01:50 +0000
Manifest next update: Sun 29 Jun 2025 22:01:50 +0000
Files and hashes: 1: BcW97HMY-HHVPoZkgvQXM97wlCg.crl (hash: 2nUFQhl7stxYOXKnTj+6xTOFelTMbSHXUf4DfvdB4NI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:a4:ae:5d:af:55:bf:f5:fb:13:69:3c:f3:f5:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05c5bdec7318f871d53e866482f41733def09428
Validity
Not Before: Jun 28 22:01:50 2025 GMT
Not After : Jun 29 22:01:50 2025 GMT
Subject: CN=db748f6d50c5b58d4a5acf72b89b44d744d73868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ef:4c:d1:8e:d9:47:db:8c:c8:65:ee:91:8e:
47:53:cb:00:47:70:88:17:fe:68:06:58:cb:37:e0:
d0:b3:5d:b8:c2:fa:8e:8a:34:24:ff:98:5d:d3:7e:
96:78:78:ff:29:28:3e:60:e2:e8:15:31:f7:e4:16:
54:c1:7e:5f:68:31:8d:b8:ec:b7:88:fb:11:d5:0c:
05:56:82:26:85:75:23:06:08:7a:c1:18:f1:06:a5:
56:dd:20:6c:b6:d2:d8:85:de:78:9b:d1:52:00:fb:
21:b8:09:6e:75:71:4d:5b:ca:9f:32:0d:3f:58:1f:
b2:72:f9:ba:3b:63:c9:c6:2f:17:8c:33:95:26:5d:
f5:c0:cc:1c:b8:12:27:76:fd:bc:8b:fb:2b:cf:f8:
32:57:c9:8a:89:48:13:24:ef:11:cc:ef:7c:83:27:
bc:30:e9:3a:51:d5:15:d4:a3:57:d6:fe:5a:ad:88:
50:a3:8d:28:e6:d0:03:3f:ab:0e:9d:da:12:de:21:
d3:47:91:5d:ae:79:b3:03:b3:19:35:b7:e7:7c:f8:
95:fa:e9:9a:d2:ba:83:7a:1b:ba:f1:82:d8:3a:df:
da:34:96:0b:0d:0a:f0:81:87:3d:2a:e1:0c:73:6c:
a0:e2:79:3b:af:fc:87:fc:7c:9d:9b:4d:9d:36:79:
87:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:74:8F:6D:50:C5:B5:8D:4A:5A:CF:72:B8:9B:44:D7:44:D7:38:68
X509v3 Authority Key Identifier:
keyid:05:C5:BD:EC:73:18:F8:71:D5:3E:86:64:82:F4:17:33:DE:F0:94:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:f8:ff:46:8c:87:2f:97:dc:33:34:ec:17:89:f9:e9:8c:fb:
13:c2:5e:02:6e:f5:ca:6b:13:87:65:da:be:79:79:26:bb:8b:
ba:84:02:7f:0d:2d:e6:93:2d:c5:1e:03:86:72:d9:8b:d1:f4:
b7:73:a6:4f:c3:84:c9:d4:af:62:31:88:0d:9d:05:cd:d8:ad:
09:13:30:9b:42:bb:08:06:8b:d5:25:64:b8:c9:e4:4b:ee:42:
ef:77:82:20:22:82:54:3b:c3:d9:27:e0:03:c2:3f:1e:08:f0:
db:87:c4:24:55:73:95:0d:d0:3d:43:ac:a6:9b:2e:00:f8:c7:
70:1b:26:8e:9c:b0:65:00:8d:dc:8c:79:06:fe:20:44:3e:15:
71:d2:75:44:e2:d7:02:47:df:1a:49:6e:0b:25:fa:c4:e8:b8:
96:7b:10:8c:01:50:3d:d5:1d:4c:74:f8:28:ed:f6:63:1b:d2:
fe:60:e8:74:a8:e2:c1:72:51:4e:06:4c:c4:8e:2c:ec:cb:3c:
7a:c4:76:ea:9c:e9:5c:1a:7a:2b:68:d8:dd:2b:d8:f5:90:6c:
69:9b:6f:e0:cc:ba:1d:37:64:ed:ec:08:2b:90:65:e2:da:30:
b9:70:0c:02:f2:b6:ca:60:0c:44:54:0c:1e:50:dd:41:12:6a:
88:d0:f8:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:28:18 2025 by rpki-client