Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
File: BEMrQbKmzMlHFxP39wfXac1Mfb8.mft (raw, json)
Hash identifier: rlsIGB77iTQLjJgnOPdlwVsYINNeEuqo2MIVo0zkYjI=
Subject key identifier: D4:AC:2E:37:07:15:C9:AE:ED:51:55:47:39:C1:56:D6:77:13:D5:C5
Authority key identifier: 04:43:2B:41:B2:A6:CC:C9:47:17:13:F7:F7:07:D7:69:CD:4C:7D:BF
Certificate issuer: /CN=04432b41b2a6ccc9471713f7f707d769cd4c7dbf
Certificate serial: 019880F9520EB127E83C42890BA0FCC6E439
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BEMrQbKmzMlHFxP39wfXac1Mfb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
Manifest number: 0282
Signing time: Wed 06 Aug 2025 20:01:19 +0000
Manifest this update: Wed 06 Aug 2025 20:01:19 +0000
Manifest next update: Thu 07 Aug 2025 20:01:19 +0000
Files and hashes: 1: BEMrQbKmzMlHFxP39wfXac1Mfb8.crl (hash: eVrFBvEjb3YG0XmMuKBx2Rlvgp+yjhrll4UClJ/vOzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BEMrQbKmzMlHFxP39wfXac1Mfb8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:f9:52:0e:b1:27:e8:3c:42:89:0b:a0:fc:c6:e4:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04432b41b2a6ccc9471713f7f707d769cd4c7dbf
Validity
Not Before: Aug 6 20:01:19 2025 GMT
Not After : Aug 7 20:01:19 2025 GMT
Subject: CN=d4ac2e370715c9aeed51554739c156d67713d5c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0d:b8:f7:52:5d:e5:08:74:7b:f1:f8:40:9e:
c9:4e:a8:6d:b6:27:77:ef:5c:dd:b0:80:df:73:c5:
c9:c7:86:20:e6:a8:27:ff:b5:24:f2:14:68:81:7a:
57:1f:1a:42:61:f3:29:22:66:30:92:3c:36:8b:4f:
c5:1b:f4:bd:b0:4d:d2:6e:8f:19:18:db:05:21:7f:
8a:c2:29:f9:2d:d0:75:1f:ec:ad:7f:6f:21:ff:a4:
19:7f:4a:b7:e4:a2:61:cf:80:a7:c6:da:d9:c0:5a:
db:9c:19:bf:a5:87:9a:fc:4c:78:14:9b:69:bf:46:
f3:d4:82:c5:2d:1b:b6:90:f4:f6:59:36:eb:dc:ea:
b5:88:ee:ab:13:9c:79:79:e9:ad:b3:cd:15:02:09:
f2:5f:4f:2e:fb:fb:b5:17:5c:f9:37:34:bf:3f:e5:
2e:d1:35:b1:36:ef:95:85:33:b4:b3:cd:5c:b6:7b:
f0:91:23:66:7f:3f:79:4c:60:95:80:02:2c:16:a5:
30:74:ce:76:67:f1:fe:6d:a4:c5:0c:2e:9c:e7:42:
71:2d:8a:f3:51:a4:2b:47:73:31:df:40:2a:28:27:
a1:7c:86:a1:91:b0:7b:52:da:8f:b1:2d:2b:df:7c:
2d:68:77:f0:76:bc:84:5a:a3:d6:df:48:91:ad:d0:
25:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:AC:2E:37:07:15:C9:AE:ED:51:55:47:39:C1:56:D6:77:13:D5:C5
X509v3 Authority Key Identifier:
keyid:04:43:2B:41:B2:A6:CC:C9:47:17:13:F7:F7:07:D7:69:CD:4C:7D:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BEMrQbKmzMlHFxP39wfXac1Mfb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:94:2d:ce:47:15:03:14:b2:e8:fa:93:a1:84:d9:59:b6:51:
c4:00:47:82:72:be:d7:6a:fa:7b:ea:f5:ae:ff:cc:a4:6a:31:
57:1c:e8:65:71:b8:26:43:04:83:9a:1b:41:f9:a0:84:6a:09:
1f:9e:5d:ab:eb:26:c1:69:8b:a8:39:e5:3e:3f:dd:19:08:fd:
84:d7:9c:6e:c0:e1:60:af:af:e2:9a:6f:1f:ef:36:77:3a:36:
db:5f:d0:a6:2e:93:53:b1:4e:fc:34:b8:6c:5e:4d:38:1a:5b:
dd:42:03:6f:53:14:ef:57:ee:67:c5:80:1c:cf:9a:2a:88:be:
21:ee:fd:48:7e:7b:1e:34:cd:db:ec:fc:a4:ce:f5:de:df:35:
a7:83:7f:56:92:21:3a:1c:9e:4b:a4:51:2d:ad:0f:61:ef:08:
bb:d5:ab:f2:07:ab:96:bd:11:61:d8:f7:66:93:9e:75:a6:e9:
b5:8e:6d:b4:6f:08:68:8c:58:bf:25:fd:6f:aa:ea:c4:7d:38:
e3:aa:10:6e:20:b2:40:9e:19:b4:6c:8f:fb:25:dc:c9:01:85:
d0:a4:8a:10:c2:b6:74:de:38:38:ed:e3:7c:62:90:9b:08:e9:
f0:88:28:1d:ca:5b:5c:3c:95:b3:4a:43:1b:09:7e:59:99:81:
80:75:64:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 04:24:58 2025 by rpki-client