Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.mft
File: BzzBj8cG31qZM7C-INzLBGdb9HQ.mft (raw, json)
Hash identifier: CN5OfLruyVCm5skc7scc/M90lPLa7242UndB+4N/4sY=
Subject key identifier: 6F:97:5E:C3:94:A1:66:29:6E:52:A8:E6:34:ED:69:F6:06:A9:7D:01
Authority key identifier: 07:3C:C1:8F:C7:06:DF:5A:99:33:B0:BE:20:DC:CB:04:67:5B:F4:74
Certificate issuer: /CN=073cc18fc706df5a9933b0be20dccb04675bf474
Certificate serial: 019873E1EFD04AA9B2F7271E2D221B20BE0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzzBj8cG31qZM7C-INzLBGdb9HQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.mft
Manifest number: 12F1
Signing time: Mon 04 Aug 2025 07:00:43 +0000
Manifest this update: Mon 04 Aug 2025 07:00:43 +0000
Manifest next update: Tue 05 Aug 2025 07:00:43 +0000
Files and hashes: 1: BzzBj8cG31qZM7C-INzLBGdb9HQ.crl (hash: 9L2CesVR/nYwsSNCysFXzNO3g0nxQH2vUbpRKb5J4s0=)
2: goFsxxYVVDsH1YxnuVEoHVEyuUQ.roa (hash: H+4TEC+hHsfjX7/LNloV4KRFUkMNXemYneHOCftwWZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/BzzBj8cG31qZM7C-INzLBGdb9HQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e1:ef:d0:4a:a9:b2:f7:27:1e:2d:22:1b:20:be:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073cc18fc706df5a9933b0be20dccb04675bf474
Validity
Not Before: Aug 4 07:00:43 2025 GMT
Not After : Aug 5 07:00:43 2025 GMT
Subject: CN=6f975ec394a166296e52a8e634ed69f606a97d01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:41:3d:3e:a7:2c:29:c5:ca:26:31:b9:88:86:
d4:da:a6:ef:fc:f4:50:c6:70:ca:47:2f:5a:96:85:
aa:10:1d:d5:ce:6b:49:5f:e7:6f:05:1c:d9:9a:b1:
19:24:42:7d:2c:d6:73:e3:73:35:83:89:70:2e:91:
7f:fc:f2:97:7d:1b:70:66:bc:5b:a1:2f:27:69:8f:
8e:4d:f3:9a:e7:33:95:67:2b:57:1f:48:7e:54:61:
2e:17:49:2b:20:e4:85:da:35:ef:53:21:88:cf:db:
eb:41:b3:4e:96:ff:5c:0f:d5:de:1a:33:55:c6:1d:
25:3b:f4:84:d7:a5:2d:d6:b7:8e:79:02:8c:dc:3c:
bf:85:ec:71:f1:c0:53:94:7c:bf:4d:f4:61:8f:10:
ed:31:4b:21:c1:b2:8b:8b:45:88:e0:8d:fc:3f:02:
ef:e3:c2:af:82:1b:a6:25:1b:85:24:06:07:a2:e1:
b8:49:e1:00:5e:6c:ad:00:04:e2:a1:90:c6:6b:e1:
59:c8:34:7d:9c:f5:6a:c0:29:b0:80:c6:ba:d6:d2:
72:96:8c:fc:c8:6e:52:90:d9:19:64:38:f5:60:68:
67:7d:fd:52:b7:5f:29:37:25:b9:20:7e:a5:df:ba:
f3:a9:81:e3:62:d9:47:f4:c6:ae:7d:ad:97:68:33:
61:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:97:5E:C3:94:A1:66:29:6E:52:A8:E6:34:ED:69:F6:06:A9:7D:01
X509v3 Authority Key Identifier:
keyid:07:3C:C1:8F:C7:06:DF:5A:99:33:B0:BE:20:DC:CB:04:67:5B:F4:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzzBj8cG31qZM7C-INzLBGdb9HQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:a1:3d:21:4b:82:9e:f2:2a:0c:70:f4:ac:33:dd:9b:7a:41:
7c:c7:0e:f6:ba:9c:30:ec:1b:94:a0:77:4b:0d:2f:31:38:32:
41:c6:02:3b:7b:46:c0:7a:7d:48:fd:41:87:dd:c7:5c:a9:f5:
57:22:b4:44:44:d5:02:2e:ac:7f:03:76:7f:94:f8:5b:24:80:
7d:fa:1c:65:a7:98:28:e2:75:b0:5c:6c:29:07:0e:7e:4c:7e:
da:48:70:e5:c4:12:69:27:9b:cf:68:2d:20:dd:0f:36:7d:5f:
af:3a:0a:87:20:7b:f5:6c:9e:92:00:7f:dd:f9:88:9d:02:d9:
10:8c:2e:b4:61:cc:c5:6b:ff:25:f5:d5:9a:47:c7:9a:9c:85:
95:2f:32:12:83:74:bd:73:29:78:df:74:d6:e3:cf:9e:eb:f4:
31:7d:93:e5:e1:d8:65:b8:90:75:2a:83:da:4a:d2:a1:b8:4e:
ac:6e:48:ea:a9:08:d7:23:e3:ac:e6:64:9f:5e:ce:fa:92:1c:
de:56:ca:35:3c:5f:b2:78:66:dc:db:dc:ab:2d:3b:84:af:b2:
23:ba:37:bb:c1:39:3b:9e:17:f6:75:71:f8:2c:83:e3:fa:a0:
19:1d:6b:7f:10:0e:80:c7:57:c4:11:38:c3:40:5e:9a:8a:79:
af:bf:7e:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:14:17 2025 by rpki-client