Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft
File: BqTBjS4g22T_nbUpKzefU4t2oVE.mft (raw, json)
Hash identifier: 9+FHCZIWP3/XOPSfW9pEL3bnRZCL1a2STfY1Qyln5aE=
Subject key identifier: 87:61:89:DE:6D:BE:5C:AB:9C:10:87:24:F2:37:DA:AB:1A:65:D4:F1
Authority key identifier: 06:A4:C1:8D:2E:20:DB:64:FF:9D:B5:29:2B:37:9F:53:8B:76:A1:51
Certificate issuer: /CN=06a4c18d2e20db64ff9db5292b379f538b76a151
Certificate serial: 01989825B6E0502BB7698B8F6B8059DCA015
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft
Manifest number: 0D27
Signing time: Mon 11 Aug 2025 08:01:05 +0000
Manifest this update: Mon 11 Aug 2025 08:01:05 +0000
Manifest next update: Tue 12 Aug 2025 08:01:05 +0000
Files and hashes: 1: BqTBjS4g22T_nbUpKzefU4t2oVE.crl (hash: aQuhwczal2ly861HRWHrcdwZrIVDCMCVmDFoNoOlIY4=)
2: wr12a9AIrcr_aNyfTvBnBd_4UPk.roa (hash: q/68eMJ+gUB4PpFkh+pkPW+TmRs5+PPrtN+mSwC3zqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft
rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:98:25:b6:e0:50:2b:b7:69:8b:8f:6b:80:59:dc:a0:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06a4c18d2e20db64ff9db5292b379f538b76a151
Validity
Not Before: Aug 11 08:01:05 2025 GMT
Not After : Aug 12 08:01:05 2025 GMT
Subject: CN=876189de6dbe5cab9c108724f237daab1a65d4f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:37:78:7d:a8:ad:91:4e:0b:6e:d3:74:9e:f4:
f6:68:5c:9a:5d:73:5c:f8:be:dc:40:be:e4:fc:f1:
0c:26:3e:3b:5c:0a:59:68:3d:5d:f7:2c:53:5c:e1:
52:7e:1a:fa:e7:5d:a4:05:7f:6f:2c:d4:ea:66:8b:
e5:b8:ae:54:ed:87:6c:f8:ac:ce:dd:f6:f4:7b:ec:
41:9c:11:32:6d:20:6a:bf:9e:06:44:5a:c3:60:2d:
e8:dd:cb:32:bf:51:18:c6:98:98:97:e0:ac:90:d4:
46:ea:60:4b:9f:29:d5:fd:e6:98:d1:fc:d5:98:5c:
a3:45:18:99:5b:b4:6c:97:50:cf:b0:5d:a9:a1:cf:
07:13:8b:74:f9:24:c2:6c:6e:b3:81:46:0a:74:73:
32:94:7f:2d:c0:bb:92:cd:15:96:06:fb:1f:29:47:
ff:0e:75:07:11:db:f8:ac:3f:fb:be:f1:d2:71:79:
43:86:7d:2f:f1:6a:35:86:74:c2:f8:ac:83:19:aa:
84:7c:d3:c8:4e:fa:15:5e:a9:86:bc:54:f6:4b:8d:
e0:cc:a5:d3:4f:22:64:3d:13:bd:9e:3e:8d:35:d9:
a4:a8:87:c9:a9:f0:99:77:3a:d5:53:63:65:d2:c9:
ca:63:91:dc:ad:1b:df:58:26:bf:b4:eb:52:63:b4:
9b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:61:89:DE:6D:BE:5C:AB:9C:10:87:24:F2:37:DA:AB:1A:65:D4:F1
X509v3 Authority Key Identifier:
keyid:06:A4:C1:8D:2E:20:DB:64:FF:9D:B5:29:2B:37:9F:53:8B:76:A1:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:71:c5:b4:4f:0c:76:c6:58:02:86:31:2a:6e:e2:d9:3f:10:
3c:b4:3c:9d:9a:16:7f:1c:80:33:05:15:a9:9e:6f:f0:d8:a7:
f0:79:d7:4d:2c:8a:1b:71:04:39:42:10:1a:f8:48:2d:cc:68:
fb:23:bd:1f:83:64:db:2e:de:3f:86:ee:43:5f:7d:78:e4:9f:
31:e3:13:5e:0f:a3:d5:4f:e8:08:0e:f6:a6:d4:31:b3:e2:61:
43:54:3e:fb:16:61:cb:6e:64:66:f2:6c:f1:a6:a7:50:70:02:
70:bf:45:ca:ac:5f:69:dd:c1:dd:78:90:2d:06:4e:42:3e:2f:
d4:2e:5c:d8:b1:1e:9c:31:60:a6:65:50:8a:ff:40:54:0c:79:
6d:81:e4:ab:6a:2b:2e:77:13:9e:dc:e6:cd:1e:a3:31:6a:18:
9c:93:6c:1c:3a:7e:9e:73:62:40:cc:bc:a3:2f:f9:02:d1:28:
68:e9:48:34:c0:29:f3:fc:54:0d:93:e4:25:16:9b:d7:bf:ae:
33:12:7b:27:ad:e0:c8:15:a8:9a:14:1c:7d:9e:c7:8d:cd:88:
28:5d:8d:35:f2:56:35:e4:17:ab:31:89:49:6d:cf:3b:63:3e:
0c:ef:3e:88:fe:60:71:4c:60:56:6a:ad:3b:03:25:f8:e7:15:
25:21:c6:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 09:52:17 2025 by rpki-client