Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
File: BZqsWXzkoNE7edIrO_GKSJnddk8.mft (raw, json)
Hash identifier: Yt/HAVG2swdqX/ypicLlt68H1lIAxMOGR21XKu7UaXA=
Subject key identifier: 57:B4:3F:C3:C9:6D:9A:45:F9:E9:94:EC:52:2C:ED:F9:80:16:4D:13
Authority key identifier: 05:9A:AC:59:7C:E4:A0:D1:3B:79:D2:2B:3B:F1:8A:48:99:DD:76:4F
Certificate issuer: /CN=059aac597ce4a0d13b79d22b3bf18a4899dd764f
Certificate serial: 01989336BB53328095442E1F0B56B049C59F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
Manifest number: 0AB5
Signing time: Sun 10 Aug 2025 09:01:34 +0000
Manifest this update: Sun 10 Aug 2025 09:01:34 +0000
Manifest next update: Mon 11 Aug 2025 09:01:34 +0000
Files and hashes: 1: BZqsWXzkoNE7edIrO_GKSJnddk8.crl (hash: Z4AoiDkXlgsd3b0go9WXr2uDYM1vBS1MO7Ni26cHFcg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:36:bb:53:32:80:95:44:2e:1f:0b:56:b0:49:c5:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=059aac597ce4a0d13b79d22b3bf18a4899dd764f
Validity
Not Before: Aug 10 09:01:34 2025 GMT
Not After : Aug 11 09:01:34 2025 GMT
Subject: CN=57b43fc3c96d9a45f9e994ec522cedf980164d13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1e:ee:e2:1b:2f:ef:c7:ce:d2:df:30:d3:da:
63:5a:5e:32:c7:e0:2b:43:68:d3:65:48:86:aa:c1:
1c:6d:4b:48:f0:a2:84:31:2c:d1:2a:67:4a:05:c5:
98:8c:be:d3:ad:7c:7e:db:d3:72:ef:1a:39:4e:2f:
2c:06:ac:18:e4:a8:25:54:5e:af:88:e1:d5:88:9e:
b5:e2:4b:be:b4:76:71:20:e3:a2:6b:7b:fa:5e:4d:
57:9e:3a:85:9c:ad:22:02:e7:f7:55:b4:8f:1e:8c:
57:ce:5c:f6:ff:69:0a:4a:92:32:4e:04:d6:5e:c3:
f5:4a:29:6b:76:21:a5:c3:b3:5a:7e:40:e8:61:e5:
30:4f:ac:42:0a:a2:c7:fa:0e:4d:51:ea:47:24:54:
31:f3:14:57:50:e0:13:ec:a9:10:d9:b9:28:5b:f9:
69:09:9d:c6:71:f8:00:13:dd:92:27:25:b4:68:ca:
b6:88:bf:06:7c:65:e7:26:f2:23:df:1d:fb:c0:b3:
32:f1:a7:5f:87:9c:b3:ad:88:87:d0:35:1a:52:2d:
b7:16:22:3f:67:83:4c:d5:c1:76:a9:01:98:a9:77:
a6:4f:1a:1a:6d:94:47:e0:c5:2a:0d:21:5c:e2:27:
98:8e:4e:86:d8:93:90:af:a2:66:a9:e8:83:7f:01:
d1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:B4:3F:C3:C9:6D:9A:45:F9:E9:94:EC:52:2C:ED:F9:80:16:4D:13
X509v3 Authority Key Identifier:
keyid:05:9A:AC:59:7C:E4:A0:D1:3B:79:D2:2B:3B:F1:8A:48:99:DD:76:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:b7:a8:7b:3e:90:59:e6:f3:53:be:87:fb:cb:55:1a:1c:e7:
4f:e5:89:e3:4a:13:67:87:ae:1d:45:8e:9f:b6:34:6b:e6:4d:
88:45:70:f6:55:4d:36:34:36:66:d1:ff:0a:1f:cf:1a:b0:46:
f2:b6:e5:8d:20:43:c7:28:1d:2c:9a:1a:ef:d9:b7:e1:3f:be:
f8:a1:17:25:57:d8:82:fc:ba:46:1b:dd:1e:99:7d:cb:a9:c8:
03:52:19:78:7f:eb:d6:e4:a9:df:6f:f9:e9:d8:7a:f3:f2:ce:
b3:40:4a:1a:7c:02:0d:45:0d:15:07:a3:52:d1:3a:f9:e6:7d:
9d:43:f6:ea:e6:19:ca:04:bf:76:01:8e:09:eb:13:c1:da:60:
94:78:49:2a:bd:aa:c3:a2:af:b1:6e:64:cf:cc:12:f1:2f:e5:
f2:4e:61:22:ff:38:32:89:2c:55:60:2b:97:59:ce:3a:25:e8:
f8:bd:e1:7c:84:e2:56:74:bb:15:95:35:5f:74:7f:21:8d:70:
e7:88:8d:2f:01:93:87:65:e6:2d:67:1e:2d:dd:2b:68:82:03:
00:59:c5:70:4b:8a:13:fe:7b:87:37:f3:5e:bb:5c:9d:31:d0:
0a:19:6a:fa:c8:51:3a:72:94:1e:1d:d8:4f:67:ce:51:ec:d2:
81:2a:d2:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:45:36 2025 by rpki-client