Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
File: BsdGzX1N-VptA8qVVKdUdg1eTgY.mft (raw, json)
Hash identifier: +q3XIUPVuyxIh6uiWLalt/CIyoIBU/FvADqNBVvIRTg=
Subject key identifier: 96:47:EF:54:87:78:38:6E:37:19:06:CD:53:C4:EC:DA:42:F2:86:FB
Authority key identifier: 06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06
Certificate issuer: /CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06
Certificate serial: 01989F3A134096A466FE5F34FC360B1E6C7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
Manifest number: 06A4
Signing time: Tue 12 Aug 2025 17:00:39 +0000
Manifest this update: Tue 12 Aug 2025 17:00:39 +0000
Manifest next update: Wed 13 Aug 2025 17:00:39 +0000
Files and hashes: 1: BsdGzX1N-VptA8qVVKdUdg1eTgY.crl (hash: XzdT00X4WvL3T8c79P9DHJCWrBOjzaumxRCvlzNBBmw=)
2: X40tLgIMCQZAYRAwmZdn2JjY2Sg.roa (hash: eDaX3dI5fxxRGSOkAJcdOwrelUSaDgM3W7s+OAzNuqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:3a:13:40:96:a4:66:fe:5f:34:fc:36:0b:1e:6c:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06
Validity
Not Before: Aug 12 17:00:39 2025 GMT
Not After : Aug 13 17:00:39 2025 GMT
Subject: CN=9647ef548778386e371906cd53c4ecda42f286fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ab:de:e6:87:9d:d1:c3:fb:8d:cb:eb:fc:91:
1d:f0:2f:dc:67:89:cb:6c:8e:a2:06:2a:aa:0d:bc:
e9:6d:0c:19:66:72:90:60:91:53:e8:aa:a9:1f:51:
08:bc:ce:fa:09:18:aa:f4:67:1d:44:c8:ad:0e:c3:
f2:7a:dc:9a:5a:69:3c:c4:d5:aa:29:1e:7a:5b:a6:
9d:19:f5:50:4b:02:64:96:03:60:a7:c4:97:22:9d:
f2:20:ef:dd:01:3b:09:27:a6:da:46:26:fa:63:e6:
37:9d:a3:54:34:21:c5:ae:85:b1:c5:bd:1f:ff:b0:
15:7f:35:91:50:70:1e:24:69:02:92:c5:fd:a6:2d:
02:cd:2e:fb:9d:88:e1:1c:8f:78:48:97:c5:78:bf:
22:32:6e:68:43:31:35:c5:bc:90:ca:35:38:52:6d:
97:63:25:3e:af:43:77:f9:34:ee:b7:4a:c6:b2:97:
1b:5b:a2:f0:34:27:ea:e1:6e:26:f2:a8:13:84:c3:
0b:dd:02:45:89:c9:32:52:4c:0f:21:ca:28:bc:58:
01:d4:e2:6b:bb:af:4e:8e:e8:a9:87:ba:f9:ca:67:
55:0c:9d:7b:65:93:76:fc:8e:6e:23:64:4b:82:d9:
c8:66:e6:0c:6c:75:36:de:65:4a:bd:73:34:1c:b6:
d1:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:47:EF:54:87:78:38:6E:37:19:06:CD:53:C4:EC:DA:42:F2:86:FB
X509v3 Authority Key Identifier:
keyid:06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:00:b8:33:91:3b:0e:f3:4d:6d:fb:b7:14:d4:66:64:b3:0c:
b9:03:b2:6a:6b:a6:4c:00:1c:5c:75:21:7a:d5:58:ff:9a:46:
5d:80:f7:e5:ba:b7:3e:af:57:b1:f8:20:82:83:84:64:96:77:
f7:bb:e9:41:d9:00:6a:4b:11:77:a1:e0:2d:55:e4:69:85:b3:
ed:81:c9:a4:11:08:1c:e1:98:79:da:58:f8:c6:a5:89:86:b2:
fe:e5:2d:c6:e7:01:b4:40:e9:f6:fe:71:1a:c9:31:8f:e0:78:
0f:43:a2:45:cb:9b:c8:14:93:4d:30:b9:9b:ed:c8:83:f7:48:
c0:57:5c:e2:f1:d9:9d:f6:58:b6:8a:90:51:86:6f:ca:42:45:
e3:85:14:48:46:bc:80:5e:a6:59:c5:f1:aa:1a:e6:fd:6e:e3:
d6:2d:ec:27:86:e2:d0:ab:51:4f:ea:81:67:9a:86:ff:18:fb:
a6:85:55:8a:5f:41:89:fb:b7:d1:e4:57:cb:b6:77:ea:2e:34:
48:e6:34:99:63:e4:f8:ed:b2:64:2f:bf:e3:ef:aa:05:21:a0:
1e:2a:88:2a:42:1c:9b:e8:6f:78:f9:de:ab:0a:9d:58:38:9e:
76:5a:93:a2:31:35:62:99:98:4b:88:78:a8:4f:1c:8e:43:3d:
3f:6e:0e:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 22:46:22 2025 by rpki-client