Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
File: BaQevhJyohyuDqGzXcCD-taKXX0.mft (raw, json)
Hash identifier: aqRn9P5i9lk/cat30e3YtNiIN1nI2AptotknaDxYMoU=
Subject key identifier: 10:98:37:2B:25:79:D8:81:BE:15:7C:4A:74:09:AE:5D:E4:D1:BD:AD
Authority key identifier: 05:A4:1E:BE:12:72:A2:1C:AE:0E:A1:B3:5D:C0:83:FA:D6:8A:5D:7D
Certificate issuer: /CN=05a41ebe1272a21cae0ea1b35dc083fad68a5d7d
Certificate serial: 01988EEBD12A3B8F19A9B3FFD6360D006C3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
Manifest number: 1622
Signing time: Sat 09 Aug 2025 13:01:15 +0000
Manifest this update: Sat 09 Aug 2025 13:01:15 +0000
Manifest next update: Sun 10 Aug 2025 13:01:15 +0000
Files and hashes: 1: BaQevhJyohyuDqGzXcCD-taKXX0.crl (hash: rg0211NagOZ0pSL5IgFJILDICAYY66VAYEXeE7j2SxY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 13:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:eb:d1:2a:3b:8f:19:a9:b3:ff:d6:36:0d:00:6c:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a41ebe1272a21cae0ea1b35dc083fad68a5d7d
Validity
Not Before: Aug 9 13:01:15 2025 GMT
Not After : Aug 10 13:01:15 2025 GMT
Subject: CN=1098372b2579d881be157c4a7409ae5de4d1bdad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:01:d7:00:15:fe:5b:bd:6f:e8:63:12:9e:a3:
86:74:db:b0:4a:bd:01:d0:f0:5c:22:ed:ae:3e:b2:
cb:84:83:6d:c0:e8:d4:42:1d:7c:c9:7d:46:3a:c4:
ce:dd:d7:cd:47:23:b4:9d:0a:74:e2:1a:3e:2a:22:
d2:3c:00:c3:88:88:78:d5:df:32:a5:9a:74:12:53:
0c:47:48:77:9d:3e:54:4b:d8:94:01:e1:79:d2:be:
08:da:d7:6c:d6:0d:22:14:f5:e8:a1:e8:9f:20:94:
f3:14:52:5e:e9:9d:78:b5:0b:e3:7a:47:09:31:ea:
f8:f0:38:c9:2d:a1:19:5b:f5:96:de:0f:00:21:2c:
f1:7e:b6:e7:d9:1a:8b:30:35:ed:ee:6f:e1:2a:3c:
2c:5d:50:b0:dd:75:b5:e0:51:93:e3:2c:29:d7:12:
e0:c2:cf:00:88:0e:1e:13:41:3d:97:0a:e4:76:61:
01:39:cb:d1:29:fd:1c:32:ab:b0:bb:34:c5:ee:86:
94:6d:5e:b1:bd:c4:b9:d6:87:df:f5:66:86:2f:3f:
42:ff:89:b9:65:59:ce:21:ff:2d:27:ca:d0:c1:7c:
2c:75:e2:01:7b:eb:9e:ea:76:71:9a:a3:0c:00:2e:
93:e3:61:91:98:42:9a:6f:2e:22:f7:a3:9a:69:90:
8a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:98:37:2B:25:79:D8:81:BE:15:7C:4A:74:09:AE:5D:E4:D1:BD:AD
X509v3 Authority Key Identifier:
keyid:05:A4:1E:BE:12:72:A2:1C:AE:0E:A1:B3:5D:C0:83:FA:D6:8A:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:99:f9:a9:7a:c4:7f:98:9c:f9:62:d3:f9:6b:6d:73:ad:16:
be:f8:c4:00:89:67:c7:03:1a:bd:02:37:65:a8:bf:cc:ad:b2:
e2:e5:aa:a6:e0:16:66:88:5e:31:03:e1:ef:34:76:84:2a:b2:
76:cb:45:09:08:d9:38:65:a2:59:49:f8:ea:0e:fb:44:57:e3:
d7:6f:c2:23:d2:aa:a1:b0:c6:d7:1e:8f:bf:75:aa:2e:6e:ed:
09:08:86:93:ea:7c:07:85:f2:66:19:31:80:1c:45:b4:8d:c8:
3b:7b:39:68:48:ba:7c:e7:a2:fd:36:0c:76:35:5d:62:e2:63:
4e:23:fd:b9:4a:17:26:e5:ad:68:12:9c:38:0a:ba:c6:d4:2d:
41:3c:64:71:c3:4a:58:5f:43:16:4e:c7:15:f7:e6:8d:d3:09:
d0:92:bb:f9:64:28:43:38:fc:4a:cb:ff:a5:ec:77:db:0d:66:
37:3e:f6:76:31:f5:70:9b:58:af:f9:d1:2d:ec:d5:12:ab:bf:
47:47:52:38:9c:6a:1d:73:c6:6e:4c:42:df:0c:2c:07:cf:c4:
f2:62:f6:26:b9:5d:3a:55:12:80:85:50:e0:a6:ae:41:10:5e:
e8:ba:90:09:b8:a3:38:5c:55:5f:bc:c4:25:31:4a:7f:de:c2:
ed:e4:97:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 22:44:58 2025 by rpki-client