Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.mft
File: BpSFf1Ib4h4SZzna13O05qGKxps.mft (raw, json)
Hash identifier: Orb8J/fwv/m2VJsH/eR4XiNmpOjHkiKghUJkMXMSBMg=
Subject key identifier: 10:F4:4C:88:AF:20:1E:1F:3B:1F:5D:45:36:3D:A6:FD:F3:21:1C:F3
Authority key identifier: 06:94:85:7F:52:1B:E2:1E:12:67:39:DA:D7:73:B4:E6:A1:8A:C6:9B
Certificate issuer: /CN=0694857f521be21e126739dad773b4e6a18ac69b
Certificate serial: 01976D3DE3893EC4061B9583029BDC8FFF8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpSFf1Ib4h4SZzna13O05qGKxps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.mft
Manifest number: 08CF
Signing time: Sat 14 Jun 2025 07:01:01 +0000
Manifest this update: Sat 14 Jun 2025 07:01:01 +0000
Manifest next update: Sun 15 Jun 2025 07:01:01 +0000
Files and hashes: 1: BpSFf1Ib4h4SZzna13O05qGKxps.crl (hash: JkExzSeU52cvyRFErVG64smQID7KCMJ2Rx/Lrx3/LFU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.mft
rsync://rpki.ripe.net/repository/DEFAULT/BpSFf1Ib4h4SZzna13O05qGKxps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:e3:89:3e:c4:06:1b:95:83:02:9b:dc:8f:ff:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0694857f521be21e126739dad773b4e6a18ac69b
Validity
Not Before: Jun 14 07:01:01 2025 GMT
Not After : Jun 15 07:01:01 2025 GMT
Subject: CN=10f44c88af201e1f3b1f5d45363da6fdf3211cf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a2:7f:9a:43:bd:63:5f:1d:61:79:11:e8:8c:
90:6b:e2:55:55:57:b0:f0:4c:8a:1b:3c:87:9a:dd:
45:71:90:52:16:e2:76:6e:41:87:39:e7:b1:8d:39:
f0:c0:c4:31:79:54:ef:34:58:79:af:41:18:54:32:
47:cb:7d:c2:ca:8b:6d:a3:3e:4e:55:1f:c2:a1:a3:
4c:cf:a7:3c:54:9c:d8:43:76:56:d8:75:24:15:78:
c4:5b:1a:d4:59:9d:c4:27:7a:24:f5:77:d8:20:60:
1b:9f:56:5c:1d:25:79:41:62:4c:80:0a:3b:7a:18:
67:b5:51:4a:cf:12:34:25:c6:b3:1c:2f:57:05:f4:
5f:6c:61:d7:7f:00:d4:e0:26:bf:a5:73:6f:d4:9f:
11:70:1b:80:7f:fd:f7:98:fe:88:c9:70:cc:8b:33:
3c:3d:67:eb:5b:d5:32:56:0c:1b:96:52:b9:7f:58:
3b:3c:e6:6c:e1:1c:65:11:14:29:2e:13:d5:9e:be:
9a:ab:bf:ad:1c:d0:c6:ef:78:e4:8c:ee:eb:53:33:
b0:cf:95:f8:85:fc:7c:26:83:c9:1a:15:22:69:d4:
2f:69:c0:85:77:73:e8:e4:73:04:ab:33:b5:ce:ba:
3d:ad:e5:f4:be:cc:b6:93:f2:50:28:e4:80:e7:37:
12:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:F4:4C:88:AF:20:1E:1F:3B:1F:5D:45:36:3D:A6:FD:F3:21:1C:F3
X509v3 Authority Key Identifier:
keyid:06:94:85:7F:52:1B:E2:1E:12:67:39:DA:D7:73:B4:E6:A1:8A:C6:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpSFf1Ib4h4SZzna13O05qGKxps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:51:b6:04:8b:27:1b:3b:49:f4:2e:cf:a8:eb:75:ae:3d:a2:
e6:57:22:88:f3:1b:95:8c:89:85:bf:c2:b5:02:30:13:32:37:
34:d1:3a:fb:77:60:d5:ba:f9:8c:fd:1d:74:ca:e4:f5:51:93:
e6:4a:c2:2b:e0:fb:0c:53:ca:5e:7b:b7:75:43:74:b1:89:ac:
12:f1:18:af:2c:e6:be:c8:0e:ac:ed:f1:8b:e3:84:1d:67:25:
ff:2f:f5:61:dd:38:0f:af:f1:c3:b9:db:05:38:0c:7d:53:68:
ab:40:bb:72:8d:6d:fa:7b:cb:94:80:e7:56:d0:d0:dc:40:5b:
f5:e7:76:7e:fc:6e:90:b4:dc:41:da:f2:2e:c7:31:71:9e:a0:
32:9c:27:86:43:69:83:f2:b8:1e:64:34:c3:ba:8f:16:2c:70:
46:f0:a1:a4:74:56:02:1e:fa:93:eb:6c:b2:88:bc:99:e0:23:
3e:75:b9:c3:c2:bd:71:f5:4a:f2:2a:be:68:73:43:b8:a3:94:
c3:3f:d6:59:9c:27:fc:da:41:52:94:dd:86:db:86:aa:7f:7e:
fe:f4:41:1b:11:1d:ac:f9:d7:4e:7f:39:4a:15:8c:89:55:68:
6a:7c:ee:bf:06:13:18:9a:aa:26:16:84:90:0d:d9:82:d1:59:
5c:6a:b1:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:46:35 2025 by rpki-client