Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
File: BEMrQbKmzMlHFxP39wfXac1Mfb8.mft (raw, json)
Hash identifier: 789geEL6x/e9GAdWfnJ6Vvhasupvq7NLlEeaGUQCvPg=
Subject key identifier: 80:AA:B7:E4:9F:47:D5:67:C6:C2:8B:E9:21:7B:60:FB:0A:48:71:0E
Authority key identifier: 04:43:2B:41:B2:A6:CC:C9:47:17:13:F7:F7:07:D7:69:CD:4C:7D:BF
Certificate issuer: /CN=04432b41b2a6ccc9471713f7f707d769cd4c7dbf
Certificate serial: 019778663D940A13A3EB5E2B1A452098C840
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BEMrQbKmzMlHFxP39wfXac1Mfb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
Manifest number: 01F9
Signing time: Mon 16 Jun 2025 11:00:55 +0000
Manifest this update: Mon 16 Jun 2025 11:00:55 +0000
Manifest next update: Tue 17 Jun 2025 11:00:55 +0000
Files and hashes: 1: BEMrQbKmzMlHFxP39wfXac1Mfb8.crl (hash: l/GVsCwqFvcvLtrAR0Q1l/Y/94WhyIDQhMNPq8YWetg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BEMrQbKmzMlHFxP39wfXac1Mfb8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 11:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:66:3d:94:0a:13:a3:eb:5e:2b:1a:45:20:98:c8:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04432b41b2a6ccc9471713f7f707d769cd4c7dbf
Validity
Not Before: Jun 16 11:00:55 2025 GMT
Not After : Jun 17 11:00:55 2025 GMT
Subject: CN=80aab7e49f47d567c6c28be9217b60fb0a48710e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ef:d1:b5:a6:bd:f3:bb:57:e1:6c:2d:bb:71:
4d:88:55:0a:4c:a9:9f:f9:4c:d7:9a:da:78:58:ab:
d4:71:c7:54:2f:3c:5b:85:58:d4:0a:f6:b8:fd:ff:
42:4b:37:b5:c5:8b:3f:75:4d:85:51:6f:f8:bc:44:
fd:9c:10:1b:a0:01:cf:40:2f:0d:3b:76:f0:f8:6b:
9f:bc:ab:d9:04:ad:ed:0c:44:a3:41:ea:54:07:f8:
b9:da:b0:19:b9:e4:85:08:45:4e:4e:5d:c0:39:cc:
8d:9d:e8:d8:06:c0:a7:e1:a5:21:f1:46:8d:0b:28:
8f:89:9a:49:c0:95:b3:48:6c:c0:25:65:a3:31:07:
d8:a1:ac:a3:17:ba:9f:d2:67:ce:2a:50:48:75:76:
29:ec:42:ef:8d:a6:0d:19:0d:1c:a7:a5:ec:02:01:
d5:12:b5:f0:a7:c1:cb:89:5a:98:fc:7c:ae:2f:8b:
7b:5c:9f:18:40:87:0b:24:27:7b:88:7c:f4:41:eb:
b4:05:44:91:a7:05:b7:be:70:64:18:c1:cb:e4:ae:
d3:3b:6f:8a:32:b1:b5:e0:9e:fe:3b:3f:cc:fd:da:
14:15:79:eb:0e:cc:ba:b3:6a:84:48:f1:8f:47:e2:
16:60:f8:a3:81:df:6c:2a:a7:f2:79:a4:89:f7:22:
c9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:AA:B7:E4:9F:47:D5:67:C6:C2:8B:E9:21:7B:60:FB:0A:48:71:0E
X509v3 Authority Key Identifier:
keyid:04:43:2B:41:B2:A6:CC:C9:47:17:13:F7:F7:07:D7:69:CD:4C:7D:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BEMrQbKmzMlHFxP39wfXac1Mfb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:6c:c9:47:4f:2d:66:ce:6c:71:e3:7c:6c:69:bb:3a:47:3c:
0f:65:11:e4:b6:1c:52:b2:9b:41:cd:11:94:27:34:a0:77:66:
45:69:e5:fc:e3:68:b6:41:22:12:81:5a:87:b7:37:48:06:e1:
53:82:f6:dc:d0:62:e0:7a:35:5b:8e:cf:13:71:f5:d3:09:c6:
c9:14:13:36:c9:62:3d:67:b9:21:89:b9:1a:29:c1:5c:96:7d:
bd:83:a0:b6:c6:2e:e7:d1:b9:83:6c:40:80:1d:39:e9:79:56:
98:a1:35:b6:1d:51:91:6a:b9:96:0b:f8:c0:e7:af:53:28:cd:
18:ee:31:ac:2b:54:d2:7b:19:f1:13:fd:90:07:49:1f:0b:48:
11:40:3d:cf:d9:f4:77:af:c7:94:eb:28:61:48:e8:a0:5b:4c:
84:41:25:84:78:a1:18:76:73:38:a0:39:18:de:4a:6e:5f:c0:
88:d0:e4:04:9a:97:cd:e6:5f:5b:69:25:a7:40:2c:33:9a:32:
63:bc:ff:61:44:2a:9b:10:5d:98:ab:a0:16:0d:70:fc:72:e7:
17:86:d2:16:20:49:4e:e9:8b:06:55:f4:52:e2:a6:77:b6:bc:
d8:6c:1f:59:ba:3f:ea:c9:4b:92:aa:94:5a:05:55:ba:74:8c:
d0:0f:9a:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 20:54:56 2025 by rpki-client