Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bbaca1-f557-4104-b5fa-1740630fcc45/1/bmjBuQ5F-RurjWB4ju0ly0oBD-g.mft
File: bmjBuQ5F-RurjWB4ju0ly0oBD-g.mft (raw, json)
Hash identifier: JuvQvD1bSyLoY8JodG5YWEO6ESH5Y9ZS15X84Hfptjo=
Subject key identifier: 80:DF:34:D8:32:6F:4A:05:F7:65:88:A7:E9:30:77:C6:64:CC:20:BF
Authority key identifier: 6E:68:C1:B9:0E:45:F9:1B:AB:8D:60:78:8E:ED:25:CB:4A:01:0F:E8
Certificate issuer: /CN=6e68c1b90e45f91bab8d60788eed25cb4a010fe8
Certificate serial: 019896DC6A6406ABBB0C11ACEEA7029CBF0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bmjBuQ5F-RurjWB4ju0ly0oBD-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bbaca1-f557-4104-b5fa-1740630fcc45/1/bmjBuQ5F-RurjWB4ju0ly0oBD-g.mft
Manifest number: 0575
Signing time: Mon 11 Aug 2025 02:01:24 +0000
Manifest this update: Mon 11 Aug 2025 02:01:24 +0000
Manifest next update: Tue 12 Aug 2025 02:01:24 +0000
Files and hashes: 1: bmjBuQ5F-RurjWB4ju0ly0oBD-g.crl (hash: +wRgYu7hxo+aU4gYy2fJX+zFmebLM440fd22q586GfM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/bbaca1-f557-4104-b5fa-1740630fcc45/1/bmjBuQ5F-RurjWB4ju0ly0oBD-g.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/bbaca1-f557-4104-b5fa-1740630fcc45/1/bmjBuQ5F-RurjWB4ju0ly0oBD-g.mft
rsync://rpki.ripe.net/repository/DEFAULT/bmjBuQ5F-RurjWB4ju0ly0oBD-g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:dc:6a:64:06:ab:bb:0c:11:ac:ee:a7:02:9c:bf:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e68c1b90e45f91bab8d60788eed25cb4a010fe8
Validity
Not Before: Aug 11 02:01:24 2025 GMT
Not After : Aug 12 02:01:24 2025 GMT
Subject: CN=80df34d8326f4a05f76588a7e93077c664cc20bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:58:58:ab:75:2a:13:d2:80:30:6e:cb:af:33:
d2:6f:71:e1:f7:04:4a:d8:04:d2:95:1a:7d:07:26:
84:72:a5:8e:93:43:5f:1b:19:2c:4b:8d:12:13:9e:
8f:65:e0:93:13:d6:f2:8c:69:3d:47:30:57:62:7a:
7f:07:4e:f1:f3:f7:88:1b:13:03:34:64:c2:30:a7:
2b:5d:7f:cf:0c:b6:78:28:e2:5b:92:70:f1:74:38:
2a:d0:16:e2:8e:1d:00:37:bd:04:1d:10:3a:b5:c1:
47:97:47:98:4d:b5:01:16:a3:63:24:04:dc:29:f2:
79:d2:f6:c3:f0:5e:c9:7d:4d:e1:87:c7:5f:27:3b:
29:91:ae:4c:c6:cb:dd:ee:35:0b:50:70:e1:01:f3:
06:8d:71:2d:e5:a7:d5:f7:e4:7e:f7:72:3c:0a:d4:
c2:95:f2:c4:c2:e1:72:d7:3c:80:84:6b:13:73:f2:
78:19:13:b6:d9:cf:c4:af:ec:5c:67:3e:4c:98:e6:
fa:e0:f3:86:06:c3:79:4c:c8:93:c5:5e:5e:1b:2e:
f0:95:2a:9d:c6:48:f6:ca:60:75:90:e9:cb:a4:b8:
b3:9e:e7:ab:f3:95:d0:f7:81:e4:c6:d9:1c:58:99:
d8:ca:f4:39:a7:85:4c:9b:11:55:41:ed:1c:f9:c8:
5c:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:DF:34:D8:32:6F:4A:05:F7:65:88:A7:E9:30:77:C6:64:CC:20:BF
X509v3 Authority Key Identifier:
keyid:6E:68:C1:B9:0E:45:F9:1B:AB:8D:60:78:8E:ED:25:CB:4A:01:0F:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bmjBuQ5F-RurjWB4ju0ly0oBD-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bbaca1-f557-4104-b5fa-1740630fcc45/1/bmjBuQ5F-RurjWB4ju0ly0oBD-g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bbaca1-f557-4104-b5fa-1740630fcc45/1/bmjBuQ5F-RurjWB4ju0ly0oBD-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:5a:18:9d:f4:dc:ff:b9:2d:7e:e6:59:ab:77:36:d3:31:6f:
5f:13:56:1e:a3:65:2a:60:1b:81:b0:d5:c2:c5:4a:5e:ad:68:
69:86:08:52:1a:c1:3d:91:79:1b:99:74:a5:9b:89:a6:d1:79:
0b:05:4c:7e:17:32:82:8c:27:16:ca:66:ca:1c:bc:83:21:a9:
90:b4:b1:8c:6a:f5:75:72:98:de:bf:33:a2:88:f5:6d:07:d8:
13:ac:34:79:9f:07:5b:19:52:8c:e2:1c:40:58:61:9c:67:93:
ab:73:b9:33:8c:93:2c:58:95:d6:09:18:e0:e4:23:8a:0d:a8:
17:e4:02:a5:ad:9e:71:00:bd:b0:25:cc:25:9e:cf:07:04:58:
5d:33:ca:ef:53:d1:35:1e:fe:28:1e:6e:af:67:48:48:17:8e:
d3:0b:54:e3:a5:2a:8b:1e:a5:c4:39:96:3e:77:54:fc:ba:86:
1c:35:27:60:b1:89:d4:25:dd:06:6a:01:35:be:c0:cc:d1:d4:
89:e8:9c:7c:c0:cc:82:6e:ce:9f:d6:41:cf:08:43:fa:3d:a8:
c2:55:be:d0:01:a2:fc:e0:dd:a8:a7:73:c9:1b:5b:19:72:e8:
e6:da:fc:15:a2:cb:c7:55:68:41:c4:75:28:30:1f:6b:4c:d7:
0a:c2:f7:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 04:11:46 2025 by rpki-client