Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
File: BXEVMhUM58l6fqSMDXekLm8NX8M.mft (raw, json)
Hash identifier: I6pOqYmmw0Ep7pmkiAoMrDXeReSkfaPCpK2x/Yh8HM8=
Subject key identifier: 04:0B:5F:8E:EB:AD:34:6E:30:13:E6:4A:C9:98:11:3D:46:0B:09:8F
Authority key identifier: 05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
Certificate issuer: /CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Certificate serial: 019889C4FE2D50B0F07C465F248B6D81C76D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
Manifest number: 06A9
Signing time: Fri 08 Aug 2025 13:00:45 +0000
Manifest this update: Fri 08 Aug 2025 13:00:45 +0000
Manifest next update: Sat 09 Aug 2025 13:00:45 +0000
Files and hashes: 1: BXEVMhUM58l6fqSMDXekLm8NX8M.crl (hash: g1STJ0H+3EezrxfpWDEBGfwyiwFxDVJr66RpTWkmWzQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:c4:fe:2d:50:b0:f0:7c:46:5f:24:8b:6d:81:c7:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Validity
Not Before: Aug 8 13:00:45 2025 GMT
Not After : Aug 9 13:00:45 2025 GMT
Subject: CN=040b5f8eebad346e3013e64ac998113d460b098f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d5:a8:3d:3e:2a:0f:d9:4f:0f:e8:92:db:fc:
22:56:b5:c9:06:3e:a6:04:48:05:d6:50:f1:79:6f:
5f:02:c8:fb:5f:53:8e:1f:52:5f:5f:a7:46:2b:fa:
29:4a:9b:c0:f7:6f:5a:e1:99:d5:a5:20:c6:f7:8b:
bd:86:21:3e:86:d1:b8:e6:42:f5:df:2a:ba:e6:14:
b2:c5:78:2f:46:18:a3:5f:ff:36:c6:30:aa:df:5b:
36:31:b9:1d:b0:17:08:ce:24:ec:e1:9f:23:c3:82:
f5:3f:af:3b:41:a2:af:c7:7c:ab:b7:53:a4:8b:eb:
1f:d8:de:b7:8b:09:a8:e5:54:50:77:40:ee:15:a7:
cc:9e:38:48:74:1d:a9:03:f2:fe:4b:fe:0c:bb:5e:
a5:b7:49:32:24:21:d2:08:b3:3f:46:f2:7e:c9:1a:
18:20:82:0e:be:af:5b:8d:8e:f2:f7:a9:50:9c:45:
ad:bd:fc:b6:59:8f:25:cf:63:cf:2d:55:fe:3e:6d:
ac:08:2b:58:9a:c6:f0:41:5d:dd:a1:7f:4b:11:93:
85:e0:2a:e7:20:f7:12:1f:7b:62:58:f9:94:22:b9:
f1:00:37:9c:3a:62:3a:9c:83:53:aa:e9:2f:85:8b:
21:eb:ab:93:9b:d4:f6:4e:e2:f7:23:0c:71:b0:ee:
9f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:0B:5F:8E:EB:AD:34:6E:30:13:E6:4A:C9:98:11:3D:46:0B:09:8F
X509v3 Authority Key Identifier:
keyid:05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:a9:36:09:fc:8a:d1:f1:61:c9:86:fa:7f:21:bc:dd:bd:37:
6d:e7:1f:34:ec:f8:0c:3b:a8:c8:c5:f3:7a:06:65:47:6d:d8:
0a:a3:41:fa:63:b4:fb:a2:5e:9b:cb:2a:58:31:43:a8:97:ac:
54:b4:c0:ee:e3:23:26:ca:65:b6:cd:a4:ef:a6:06:65:60:6b:
e0:35:f0:0c:85:d1:2f:4a:36:af:ef:66:47:35:82:88:b5:06:
29:62:3f:d9:04:0f:79:f7:dc:fe:d1:de:bb:8d:e7:16:98:39:
a8:6f:fc:31:82:0a:67:65:4d:13:0e:1c:55:36:c1:86:e5:77:
d1:64:7c:a9:53:3f:15:05:71:ac:73:14:07:7c:24:37:09:b1:
d2:72:f8:bc:bb:3f:78:b2:34:4e:d0:86:da:67:48:d6:74:e0:
2c:2b:2a:08:99:a1:f8:22:88:b0:c9:fd:a0:06:38:03:62:74:
81:6d:d6:15:e8:e7:cb:90:78:19:e7:cb:48:24:f7:04:9b:05:
ef:9d:fb:6b:4d:f7:db:37:4f:99:95:66:03:87:e4:46:29:9c:
61:4b:7f:01:bf:b2:04:4d:80:bf:e5:43:a5:09:4a:ec:dd:2e:
4a:d0:7c:45:41:75:ac:42:7c:ed:75:96:00:22:ba:15:04:53:
7f:1f:2a:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 19:26:53 2025 by rpki-client