Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft
File: BqTBjS4g22T_nbUpKzefU4t2oVE.mft (raw, json)
Hash identifier: CDGghHoW8G+b4aXvowTdxmhjvqUKmyuLx4ZebYb9uwU=
Subject key identifier: A1:00:95:28:1B:70:76:F4:6F:3D:40:9C:EE:E9:7A:6F:0F:F7:87:8F
Authority key identifier: 06:A4:C1:8D:2E:20:DB:64:FF:9D:B5:29:2B:37:9F:53:8B:76:A1:51
Certificate issuer: /CN=06a4c18d2e20db64ff9db5292b379f538b76a151
Certificate serial: 01978BB56235F61F0090F0C97D4EC4A9955E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft
Manifest number: 0C9C
Signing time: Fri 20 Jun 2025 05:00:09 +0000
Manifest this update: Fri 20 Jun 2025 05:00:09 +0000
Manifest next update: Sat 21 Jun 2025 05:00:09 +0000
Files and hashes: 1: BqTBjS4g22T_nbUpKzefU4t2oVE.crl (hash: LUCXoY2Cs6lTO2uSPV9I1dfmtxepf4eVvnpqTQ3h+/A=)
2: wr12a9AIrcr_aNyfTvBnBd_4UPk.roa (hash: q/68eMJ+gUB4PpFkh+pkPW+TmRs5+PPrtN+mSwC3zqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft
rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Jun 2025 04:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:8b:b5:62:35:f6:1f:00:90:f0:c9:7d:4e:c4:a9:95:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06a4c18d2e20db64ff9db5292b379f538b76a151
Validity
Not Before: Jun 20 05:00:09 2025 GMT
Not After : Jun 21 05:00:09 2025 GMT
Subject: CN=a10095281b7076f46f3d409ceee97a6f0ff7878f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:34:31:93:29:30:e3:03:dc:f5:a9:1d:de:a8:
f5:a9:35:e3:44:08:fb:c1:75:ca:3c:fd:16:3e:62:
e1:0e:2c:4d:0f:9f:d7:c4:b8:cc:1d:31:4e:a2:32:
c0:91:f2:55:bf:93:2a:75:24:12:6d:4f:d7:b9:ec:
1f:fc:eb:9e:e4:fd:f3:f9:1e:06:2b:e6:7b:f5:22:
97:44:e6:0a:07:83:3b:83:ca:fb:4c:2b:57:c5:ab:
4d:8b:3c:39:dd:59:10:06:69:e8:f1:67:28:f1:75:
ca:48:9a:9f:9a:ae:3c:fe:b6:ae:c2:ad:d0:c1:b0:
41:e2:16:e8:19:76:26:e5:c7:4e:67:f0:aa:19:54:
f4:85:e5:f4:20:a3:7f:7b:d8:7c:57:14:6d:33:9c:
7e:08:fe:ce:a1:ed:8f:93:1e:a3:1a:2b:e0:74:eb:
5c:76:d8:98:1e:32:ca:60:bd:58:65:58:db:db:5c:
5c:5e:9b:f1:b8:b3:8b:30:da:a2:ca:10:9f:cf:e9:
6e:05:cc:89:1a:38:97:11:20:6e:e7:67:b3:1d:b4:
9a:96:02:67:d6:5c:98:9e:98:9e:1f:8c:7d:87:e4:
5b:49:66:db:6d:7c:9a:b5:83:df:96:19:47:f3:75:
ce:40:91:27:7e:aa:be:d7:cd:30:7e:18:05:b7:53:
86:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:00:95:28:1B:70:76:F4:6F:3D:40:9C:EE:E9:7A:6F:0F:F7:87:8F
X509v3 Authority Key Identifier:
keyid:06:A4:C1:8D:2E:20:DB:64:FF:9D:B5:29:2B:37:9F:53:8B:76:A1:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:0f:00:7b:0e:50:0d:64:ee:78:b1:c7:bb:64:63:45:40:dc:
ad:73:51:92:da:af:1c:b0:c9:e7:97:5f:ac:ea:e1:7e:7b:85:
e8:4c:74:b0:fc:5b:a0:cf:af:d9:1c:d0:69:11:aa:69:3b:2f:
d2:21:eb:94:8e:48:d5:cd:be:4c:5e:2f:b8:d5:03:6d:ef:08:
7f:0b:99:dc:cf:f4:4a:c9:02:cb:15:3e:55:a0:7f:5f:06:bb:
b8:33:28:9e:b5:82:80:7e:26:96:28:13:39:56:45:9f:ef:1f:
8c:92:a5:d7:33:d6:2c:fa:d3:a1:54:6f:14:f5:5b:3e:95:84:
6f:9d:ca:ad:a1:95:27:40:d1:4f:be:6c:0a:ca:09:3c:e2:73:
9f:7b:1a:6a:d5:12:4e:5f:a4:6e:1a:82:6b:49:2d:38:be:0c:
e8:72:aa:97:31:42:de:b9:c2:3e:4e:f7:58:c2:a4:f3:4e:d6:
fc:dd:58:fd:48:cb:44:a2:fb:c8:eb:fd:eb:55:22:1b:19:1c:
a9:02:78:f4:5e:6c:e3:2b:c9:b8:2d:d5:68:4a:fb:44:fa:5c:
a0:54:70:b5:48:74:1c:54:47:2a:10:16:41:9a:8d:19:e1:6c:
f5:44:a3:cf:fc:69:da:31:35:e9:d7:c1:47:e9:d0:3e:1d:b2:
44:6c:3d:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 20 10:35:47 2025 by rpki-client