Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft
File: BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft (raw, json)
Hash identifier: 3X4yKy8VjyskcVwnS0N9RSnlywtctYF9kvuO2KpM7cY=
Subject key identifier: 2B:9E:A0:95:D2:50:5D:35:35:CB:22:67:9D:95:51:0F:3F:45:C1:07
Authority key identifier: 05:53:C4:33:F6:C2:25:01:9D:9C:B5:A4:33:00:12:F4:C7:7A:1F:3E
Certificate issuer: /CN=0553c433f6c225019d9cb5a4330012f4c77a1f3e
Certificate serial: 019A50E35C00F2BDF3667D08CE7D500C6F36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft
Manifest number: 170B
Signing time: Tue 04 Nov 2025 22:01:08 +0000
Manifest this update: Tue 04 Nov 2025 22:01:08 +0000
Manifest next update: Wed 05 Nov 2025 22:01:08 +0000
Files and hashes: 1: BVPEM_bCJQGdnLWkMwAS9Md6Hz4.crl (hash: Ttu3qXg+Slacwi4yqyomQw5icf1/Ml5g1sLGINKYkkY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e3:5c:00:f2:bd:f3:66:7d:08:ce:7d:50:0c:6f:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0553c433f6c225019d9cb5a4330012f4c77a1f3e
Validity
Not Before: Nov 4 22:01:08 2025 GMT
Not After : Nov 5 22:01:08 2025 GMT
Subject: CN=2b9ea095d2505d3535cb22679d95510f3f45c107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:48:c0:0b:ad:02:94:03:50:2f:33:8d:74:ec:
51:97:2c:05:cb:de:d6:3d:37:15:dc:f9:dd:8a:c9:
9d:b9:fd:6d:b4:b5:0a:58:ec:b6:4b:60:5e:53:ed:
bc:92:52:5c:1b:a5:5b:7a:b6:9d:e3:69:b8:b8:c3:
29:24:48:eb:16:54:d8:6b:1a:08:4d:af:d9:f5:0a:
62:0c:f3:aa:b6:11:d8:23:5c:dc:c9:96:1b:e6:18:
f7:5f:d8:0e:e6:27:c5:32:a9:14:8d:8d:65:7c:ba:
06:93:f9:63:31:fd:f7:3d:af:ea:d0:e0:67:c1:77:
22:4a:c6:6c:1f:66:45:04:dd:af:62:80:29:98:6e:
65:46:d9:77:8b:97:f2:3e:23:1c:45:18:dd:7f:b4:
7e:c4:aa:ad:b8:27:cf:2b:b6:c4:61:c2:6a:be:da:
d6:5b:fc:b0:cc:06:54:03:71:24:04:7a:f9:a4:78:
01:f5:40:79:b7:f8:16:f5:23:69:2a:63:0e:1b:98:
53:27:b6:82:7d:d1:3d:8c:11:11:06:b0:af:c2:a3:
f9:1e:58:4e:2c:95:7f:e5:6a:c6:65:de:50:75:6e:
a9:60:0b:87:45:57:9d:d5:6c:d7:2c:52:b3:c0:ff:
7f:65:9a:ce:bf:57:75:92:b3:99:d1:b9:35:4e:bf:
74:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:9E:A0:95:D2:50:5D:35:35:CB:22:67:9D:95:51:0F:3F:45:C1:07
X509v3 Authority Key Identifier:
keyid:05:53:C4:33:F6:C2:25:01:9D:9C:B5:A4:33:00:12:F4:C7:7A:1F:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:0b:47:c1:70:63:4d:cf:96:65:e8:7f:df:d4:c9:9d:30:1c:
98:10:05:0e:33:60:1c:ca:c1:d3:e9:5f:2a:11:ef:dd:35:19:
0b:8b:cd:fd:39:e2:87:89:c5:e8:c8:73:65:4c:7e:2e:0d:37:
8c:a5:b8:b7:f7:de:dc:47:0a:5b:78:e0:9c:04:f5:6a:83:73:
30:7d:3d:86:82:e8:14:2a:2e:fe:e6:6a:db:2e:e5:6d:7e:be:
10:4c:51:fc:4e:74:66:bc:52:59:69:58:9a:8a:c5:cf:7d:93:
8d:36:aa:a1:46:b9:39:53:1c:7f:5f:5e:3e:3a:d4:3d:65:fe:
69:20:b3:30:b7:20:1d:19:73:33:b4:a6:7e:4c:6e:ee:dc:d8:
5b:7a:4e:1a:8b:9a:a4:42:8e:fc:7e:27:f8:e3:b9:4f:df:f8:
e3:8c:70:5b:73:15:b9:1e:de:71:7a:e5:73:cb:9c:6f:15:fa:
df:11:73:9b:b9:db:79:b8:3c:7b:70:d4:42:16:4b:6b:f2:0d:
61:ca:fa:89:c4:b6:8a:71:3f:1b:a8:a9:0e:29:8b:86:4f:7b:
c7:6b:f0:cd:ef:24:0f:eb:74:45:f1:4b:1b:30:e3:59:29:be:
2f:58:f4:0a:51:6d:b1:c1:a9:e8:b6:55:31:29:67:68:ce:5c:
9a:b8:7c:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:56:09 2025 by rpki-client