Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
File: bZYBl_5YkhTCJZ9q6olsThAH6YY.mft (raw, json)
Hash identifier: 1AN5v8O4jh7AIiH9yo94EZhj5hpGUo7aC7rAL3qLXhE=
Subject key identifier: 4A:00:99:F6:FC:FD:75:AC:5D:64:54:79:F7:DC:01:62:59:99:1B:82
Authority key identifier: 6D:96:01:97:FE:58:92:14:C2:25:9F:6A:EA:89:6C:4E:10:07:E9:86
Certificate issuer: /CN=6d960197fe589214c2259f6aea896c4e1007e986
Certificate serial: 01976D3D82F40BF7DCD136BE5518B6DC5C1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
Manifest number: 082C
Signing time: Sat 14 Jun 2025 07:00:37 +0000
Manifest this update: Sat 14 Jun 2025 07:00:37 +0000
Manifest next update: Sun 15 Jun 2025 07:00:37 +0000
Files and hashes: 1: bZYBl_5YkhTCJZ9q6olsThAH6YY.crl (hash: Z/vlPeDF+J4LUVITKbT3Y0KNkLeTqPEc/MrMBp3ikFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:82:f4:0b:f7:dc:d1:36:be:55:18:b6:dc:5c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d960197fe589214c2259f6aea896c4e1007e986
Validity
Not Before: Jun 14 07:00:37 2025 GMT
Not After : Jun 15 07:00:37 2025 GMT
Subject: CN=4a0099f6fcfd75ac5d645479f7dc016259991b82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:11:b4:4f:8e:52:18:5d:1a:ae:c8:90:01:28:
a5:07:ce:73:f3:03:05:1a:d1:d0:f2:6d:48:7e:e2:
17:f9:77:46:03:b8:7a:c0:4f:4d:ca:29:77:66:60:
2c:86:e0:53:65:30:02:2b:77:73:81:a3:54:c6:a3:
55:a9:78:a8:c2:e5:7c:d1:45:42:7c:69:34:3c:be:
ef:75:99:b5:a5:1d:be:12:d0:60:1d:a8:21:67:b2:
6b:c4:08:f6:b0:3f:7e:95:b2:41:3a:d9:c5:b5:da:
8c:c4:d6:ee:9c:9a:73:3c:16:41:15:6b:f5:81:d2:
18:d1:b6:5e:b8:21:28:f9:91:ea:09:30:57:41:8f:
29:40:ee:64:f5:3e:28:98:23:1b:1f:53:ad:2b:5f:
c0:88:2d:4d:26:1d:83:30:0f:17:0a:de:dd:07:96:
5d:2a:f2:9c:c1:38:fa:8c:02:37:93:ca:3a:2a:72:
61:c7:b4:c7:1f:de:2a:79:6f:6b:a1:e2:d3:73:09:
fa:90:1e:2e:b5:84:25:c8:3c:69:cb:d9:78:5f:58:
26:e0:dd:c7:b7:67:f4:83:73:49:82:bd:59:ec:45:
3d:f1:7c:73:92:b4:58:d0:86:1d:86:20:08:60:ec:
72:97:f9:4e:f3:31:f1:4a:96:90:4f:c2:2c:10:22:
b5:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:00:99:F6:FC:FD:75:AC:5D:64:54:79:F7:DC:01:62:59:99:1B:82
X509v3 Authority Key Identifier:
keyid:6D:96:01:97:FE:58:92:14:C2:25:9F:6A:EA:89:6C:4E:10:07:E9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:4a:c0:b2:b7:58:b8:aa:53:d8:5d:6c:e2:7e:31:a5:69:ea:
ac:c6:74:a4:fd:7b:bc:15:01:90:24:cb:04:47:b9:d2:58:be:
ad:e7:a1:5d:d5:be:b2:cd:e7:d4:dd:b4:0e:03:41:87:b3:e3:
70:87:08:b8:8b:ba:97:c3:41:41:b9:64:6f:83:ec:1d:d0:3c:
17:59:bf:31:6b:09:56:f2:7f:7a:36:f6:ec:1b:31:24:48:68:
8d:0f:dd:2d:12:55:ce:1c:33:bd:be:e7:cd:02:8b:8b:29:7b:
e3:d7:38:3b:6d:fd:e5:8e:f0:77:26:00:56:6f:32:66:01:43:
b1:8d:94:7a:e6:19:a3:f5:98:81:76:d8:17:13:d2:4a:bb:7f:
97:4c:d0:15:2f:49:4e:9d:0d:ab:43:fd:48:fa:63:e6:d7:1d:
14:37:5e:47:34:c4:6c:8f:c7:5c:2d:2a:19:e2:27:26:ca:c9:
4f:71:fd:33:4c:67:78:05:a2:8a:cb:c0:f8:3b:65:27:84:64:
c4:52:0b:6c:47:0b:78:8e:c7:b2:b5:39:c0:94:69:5e:74:89:
09:f7:00:1b:0d:7c:7f:fc:51:46:ca:e5:38:e5:33:f4:89:fc:
c7:f7:7f:46:22:bb:5e:2e:f1:23:b7:9e:e5:23:9a:d5:ba:86:
6d:18:3e:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:17:56 2025 by rpki-client