Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
File: BGelYhGyHprHzcj7Y58xCpLCEEw.mft (raw, json)
Hash identifier: gwtp8uzLkOUfHTtywBW9DxxCz5l9jqRmoJvMUdSLsHM=
Subject key identifier: 46:20:91:96:ED:12:F3:A0:BB:D4:84:81:26:78:42:C8:3D:B1:85:B4
Authority key identifier: 04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C
Certificate issuer: /CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c
Certificate serial: 01976D74518B9C8B3AB28176747EC07564E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
Manifest number: 0C70
Signing time: Sat 14 Jun 2025 08:00:28 +0000
Manifest this update: Sat 14 Jun 2025 08:00:28 +0000
Manifest next update: Sun 15 Jun 2025 08:00:28 +0000
Files and hashes: 1: BGelYhGyHprHzcj7Y58xCpLCEEw.crl (hash: 7tKT/oOWGNQz6dyFGeEq7v1EEBpyTXFOW1LcJdcZDfE=)
2: vBbw-4MxcReP3ao6MqHjBCu3GcI.roa (hash: W28uSnDMlGVkrCQsXwIvXwkvC/TrS+441MfK9XqL5Zo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:74:51:8b:9c:8b:3a:b2:81:76:74:7e:c0:75:64:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c
Validity
Not Before: Jun 14 08:00:28 2025 GMT
Not After : Jun 15 08:00:28 2025 GMT
Subject: CN=46209196ed12f3a0bbd48481267842c83db185b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:24:0b:b6:3f:fc:ff:d9:18:cd:c3:28:8e:75:
55:7a:c9:5a:22:3a:20:32:52:8c:32:04:2f:8c:6c:
b8:5f:6d:ef:25:74:38:0f:42:c1:8b:95:8c:cc:c2:
76:68:0b:17:b5:c8:25:52:77:01:05:8b:6f:b2:87:
6d:ad:6f:04:b8:b9:56:cf:45:56:11:0a:54:f9:d1:
8e:db:b7:e7:01:d1:88:87:7d:79:5f:37:7e:df:e1:
da:b9:af:50:6d:ba:f7:82:dc:1e:f6:c7:4c:69:4e:
bb:f7:4b:1f:8d:3b:d2:b5:b4:e2:97:ad:36:e8:9a:
ce:0f:72:33:11:38:cd:bf:d3:b3:76:c4:f5:ad:88:
b0:81:31:15:d6:fe:88:d5:15:37:37:46:12:30:84:
62:98:42:a4:55:c8:fc:c9:b7:1f:8d:47:1d:71:58:
a8:71:81:e5:e2:f7:73:53:37:56:f6:88:b9:19:aa:
03:55:89:6a:bb:51:8f:95:e1:9a:26:25:8d:22:14:
76:58:65:19:79:f0:63:67:89:f9:d8:31:11:cd:e8:
f7:33:c1:cc:f3:b4:b4:d2:be:c2:26:26:9c:d2:21:
cb:26:28:53:f9:65:ec:25:2f:07:cd:66:26:f0:d3:
4c:5c:da:73:4d:43:28:ae:4f:fc:bd:ee:4d:14:10:
a9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:20:91:96:ED:12:F3:A0:BB:D4:84:81:26:78:42:C8:3D:B1:85:B4
X509v3 Authority Key Identifier:
keyid:04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:33:b0:4d:6b:db:a8:91:45:52:e4:47:7d:0c:1e:96:a6:15:
5f:e1:2e:58:af:2d:1a:ae:54:cb:77:24:4d:4c:d9:5d:83:ea:
49:28:6d:d8:e7:a5:61:30:72:8c:52:02:94:76:8f:13:af:89:
9a:39:13:40:4e:ab:a6:08:35:d8:2a:f0:53:5b:3e:2b:91:24:
4d:a2:10:1f:42:a0:06:4c:e8:38:6a:f7:a9:85:ff:48:1b:8d:
ec:49:9a:37:ed:99:20:10:a6:c6:15:3b:68:21:67:20:6d:38:
08:10:f9:c4:11:f4:9e:a6:8e:00:be:d2:1c:3e:cf:47:3f:c3:
7c:ca:a8:4c:45:9b:2a:0f:47:09:17:26:c8:d5:a1:4b:f7:c8:
9f:d6:26:bd:7f:ee:82:8b:7d:39:8d:cb:fe:7a:68:21:57:a9:
a3:50:78:7d:1d:5d:60:66:01:8e:63:c7:34:86:35:0e:00:2e:
9b:f2:40:1f:7d:d3:ac:bb:ab:70:1d:f8:5c:3e:63:61:ac:6f:
ef:f2:78:e5:3e:f1:53:b5:57:95:cd:e9:bf:0a:e4:6e:85:02:
52:51:c5:24:cd:27:df:c0:8f:98:74:72:76:fb:7c:06:d4:8c:
36:46:1a:ab:d4:15:23:19:d7:4b:06:b7:73:19:8f:69:f3:60:
e6:8c:22:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:07:06 2025 by rpki-client