Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft
File: BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft (raw, json)
Hash identifier: wVvxv7HOssS0WxZWIq58/vHKxhYUsZ16g9cyxyJJJ+0=
Subject key identifier: 1A:74:72:79:A4:65:BD:36:1A:DC:D8:BA:B2:7B:1A:9C:4B:E9:DB:3D
Authority key identifier: 05:53:C4:33:F6:C2:25:01:9D:9C:B5:A4:33:00:12:F4:C7:7A:1F:3E
Certificate issuer: /CN=0553c433f6c225019d9cb5a4330012f4c77a1f3e
Certificate serial: 01976F2C2C98549042CEC2B9B400F98411E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft
Manifest number: 158D
Signing time: Sat 14 Jun 2025 16:00:55 +0000
Manifest this update: Sat 14 Jun 2025 16:00:55 +0000
Manifest next update: Sun 15 Jun 2025 16:00:55 +0000
Files and hashes: 1: BVPEM_bCJQGdnLWkMwAS9Md6Hz4.crl (hash: RM5B6CuqTQd6enp04AlC1vYrE9UhxIaIUvUVjHZE0As=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2c:2c:98:54:90:42:ce:c2:b9:b4:00:f9:84:11:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0553c433f6c225019d9cb5a4330012f4c77a1f3e
Validity
Not Before: Jun 14 16:00:55 2025 GMT
Not After : Jun 15 16:00:55 2025 GMT
Subject: CN=1a747279a465bd361adcd8bab27b1a9c4be9db3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:83:f0:d6:c8:0c:0d:46:78:eb:5a:46:a0:71:
31:1f:db:eb:f3:3f:65:9c:69:5e:4b:6e:5a:71:3c:
b9:c1:0d:c1:69:8e:38:2a:ab:9d:13:a2:f8:81:b6:
81:d9:b7:91:36:c8:0d:69:7e:3f:30:83:4a:b5:a3:
73:ba:c4:83:f4:ff:74:f8:d8:a0:5c:fc:5d:5d:ff:
0c:a1:ec:a1:82:cf:78:74:81:d8:b3:d3:2b:6b:d2:
8b:56:6b:73:6e:4d:c7:e9:c0:63:bc:43:61:68:87:
43:5d:b9:61:12:96:09:37:10:18:1b:0b:81:93:ec:
25:1c:39:40:17:db:17:8f:d2:4f:d3:4f:49:1d:4e:
75:bd:1c:8d:51:22:91:0a:84:67:83:2b:4c:71:66:
00:45:c7:17:17:1a:4b:bd:d9:c1:9f:9a:40:78:c8:
6d:7e:d7:a1:08:b2:d2:1c:f1:d9:c1:58:79:6b:44:
57:05:7e:31:71:3c:17:2e:23:a7:bc:83:54:93:40:
b1:74:86:35:a3:9a:2d:24:eb:04:44:3b:9c:c5:c3:
d1:61:1b:0c:8c:bd:7c:5a:98:bd:0e:33:7e:d8:83:
7c:0c:a2:33:d9:03:1b:5f:b3:0c:ca:a8:ed:4b:72:
9b:62:57:29:fd:62:ec:fd:98:f0:70:d3:f1:f5:7d:
5a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:74:72:79:A4:65:BD:36:1A:DC:D8:BA:B2:7B:1A:9C:4B:E9:DB:3D
X509v3 Authority Key Identifier:
keyid:05:53:C4:33:F6:C2:25:01:9D:9C:B5:A4:33:00:12:F4:C7:7A:1F:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:20:27:53:12:6e:ab:f9:0f:25:86:d3:34:63:62:de:19:1c:
e0:45:cb:95:e2:7c:d4:fc:fa:33:80:0b:ac:5e:90:28:2d:b9:
fa:4b:6d:55:78:a0:87:c5:65:0c:19:07:c7:17:bb:51:26:92:
88:ca:0d:5f:6f:97:0f:3a:7b:7c:de:d6:a2:7d:f8:5e:a0:c0:
6b:15:f8:6c:f5:e0:5a:98:ee:bc:9a:13:6e:db:49:09:ac:13:
4a:9c:90:eb:e5:57:1b:57:f5:83:7b:1e:b7:ac:7b:ff:ab:00:
75:37:07:65:8b:ac:cf:b9:cf:24:15:6a:e9:21:0a:0b:21:29:
c8:99:10:0e:d2:6b:6f:3c:4f:2a:be:44:22:30:5b:3d:16:42:
8b:90:1f:29:53:be:d6:4e:63:c8:fd:fd:9c:10:c0:3e:4d:0a:
a2:ed:b2:3b:76:c3:af:32:7b:0f:d5:87:fd:62:29:34:a9:0e:
e9:2b:15:68:b5:e2:34:3f:2e:c3:2d:1d:a9:17:44:af:31:1e:
5e:8a:cd:71:d3:a7:c4:bd:b8:5c:d7:62:c8:71:17:b5:95:e4:
1f:84:c4:03:6e:98:2c:74:1b:8f:e2:a7:4c:51:5c:5b:5e:3c:
7a:11:85:ac:91:c0:3c:87:3b:46:e8:81:b0:20:dc:2d:ab:2e:
7b:30:ff:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:40:24 2025 by rpki-client