Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
File: BKnP8kmB1yY9G31jd59dZz3ivbw.mft (raw, json)
Hash identifier: SOw9R0yx0354FZLFn6/6lK7vGih1wSwfaNPQhZvUBhs=
Subject key identifier: D7:F1:77:96:17:6D:C1:5F:04:66:3D:62:D0:35:33:70:FF:DF:D0:F0
Authority key identifier: 04:A9:CF:F2:49:81:D7:26:3D:1B:7D:63:77:9F:5D:67:3D:E2:BD:BC
Certificate issuer: /CN=04a9cff24981d7263d1b7d63779f5d673de2bdbc
Certificate serial: 01977D1E76C939CA87B3991CD380FCB43C1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKnP8kmB1yY9G31jd59dZz3ivbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
Manifest number: 159A
Signing time: Tue 17 Jun 2025 09:00:37 +0000
Manifest this update: Tue 17 Jun 2025 09:00:37 +0000
Manifest next update: Wed 18 Jun 2025 09:00:37 +0000
Files and hashes: 1: BKnP8kmB1yY9G31jd59dZz3ivbw.crl (hash: 6xrFzTdjBk62iDb3/OX/6cGQJYMmm4wSyrkwe3+ku+c=)
2: zx1XMXhbE28ZMTwu9AxINedJc60.roa (hash: 4bo9B0lLSnpXpzHGQAUAoXEmUUE4IbZbuOepJknUA+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BKnP8kmB1yY9G31jd59dZz3ivbw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7d:1e:76:c9:39:ca:87:b3:99:1c:d3:80:fc:b4:3c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a9cff24981d7263d1b7d63779f5d673de2bdbc
Validity
Not Before: Jun 17 09:00:37 2025 GMT
Not After : Jun 18 09:00:37 2025 GMT
Subject: CN=d7f17796176dc15f04663d62d0353370ffdfd0f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8e:10:20:e4:58:77:ee:71:71:96:f7:ad:61:
b8:71:99:e5:11:5d:27:bd:3a:24:10:9f:e0:14:2e:
a2:73:58:42:72:79:36:0e:0e:63:84:59:8d:f1:50:
9f:66:67:1e:68:47:9f:a0:bb:aa:53:a7:cc:b5:95:
cc:04:66:71:b4:b1:6f:85:88:1e:e5:c9:4b:24:97:
7c:43:8a:4a:86:1f:1f:e0:a5:d2:70:bd:b7:48:74:
93:ea:d6:bf:aa:3a:2a:5f:31:19:d0:ac:2e:af:f7:
4a:93:0a:83:af:1a:b3:7f:72:31:a7:99:e2:99:a6:
4b:f4:6b:aa:ac:69:cb:2a:3c:60:3d:22:93:c7:74:
5c:13:44:01:d7:32:79:22:9c:69:3f:8c:55:53:bb:
f8:15:1a:7d:6c:52:38:ad:83:97:7f:9e:6b:b8:18:
0d:4a:da:03:4a:58:cb:49:03:2a:f5:40:aa:2e:7b:
85:b2:3a:8a:21:1f:5a:10:76:14:77:54:c3:cc:9a:
23:f9:94:a4:71:95:3e:8d:35:6c:52:aa:e0:40:01:
69:cf:c3:14:0e:72:8b:1c:08:78:b8:69:50:31:88:
77:42:75:cc:89:72:d8:e5:38:6f:54:d2:0e:14:00:
09:27:7d:a5:69:cc:54:38:c1:a8:65:2e:15:b1:77:
97:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F1:77:96:17:6D:C1:5F:04:66:3D:62:D0:35:33:70:FF:DF:D0:F0
X509v3 Authority Key Identifier:
keyid:04:A9:CF:F2:49:81:D7:26:3D:1B:7D:63:77:9F:5D:67:3D:E2:BD:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKnP8kmB1yY9G31jd59dZz3ivbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:e9:99:ec:a9:52:4f:b7:b5:05:cf:4a:b2:29:24:88:66:95:
73:bc:2a:33:55:82:48:1c:35:69:ba:37:70:4e:eb:ab:0a:58:
c8:11:1e:1b:1b:a6:f7:e8:c3:61:8e:c3:b5:4f:03:93:fa:5c:
2b:81:ed:d0:69:21:a7:1d:c8:ac:49:b2:df:5a:d0:d2:58:48:
97:85:32:b9:3f:ef:c6:1f:bc:2e:19:ec:2e:68:23:ec:fd:33:
d1:68:d7:f7:d1:88:a4:3b:8a:e5:aa:3f:58:20:10:80:dc:6b:
ad:5e:8a:66:ce:13:45:74:36:d5:67:85:bb:e3:40:f5:b4:01:
c7:ef:e9:f8:21:ea:b7:fb:0c:62:ea:60:50:c0:63:92:6d:a0:
56:cf:25:05:0f:70:df:77:af:4f:19:a4:41:2a:7c:3b:a2:e6:
9a:2b:f3:13:67:20:6d:cb:0e:6d:56:bc:aa:32:92:b8:ef:45:
09:64:5c:4d:4d:48:25:aa:dd:e6:0f:11:6a:e0:8f:e5:b0:06:
d2:a1:74:56:de:85:e5:5d:61:07:ff:3d:57:8f:b7:25:e5:7a:
fa:d1:ee:54:a1:00:8d:e9:34:22:7e:9d:a2:fc:b9:75:83:ad:
27:87:80:69:25:bc:e0:2a:85:d3:3b:f9:a6:47:46:68:c2:29:
b4:4a:ea:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 17:27:04 2025 by rpki-client