Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
File: BcW97HMY-HHVPoZkgvQXM97wlCg.mft (raw, json)
Hash identifier: bEtVAp+DzekKK7iid4cezj16axiuFf7dPng/ZSdXY6M=
Subject key identifier: 68:DD:74:63:74:C3:C7:F0:AD:E5:CA:43:CC:45:49:91:83:44:39:EC
Authority key identifier: 05:C5:BD:EC:73:18:F8:71:D5:3E:86:64:82:F4:17:33:DE:F0:94:28
Certificate issuer: /CN=05c5bdec7318f871d53e866482f41733def09428
Certificate serial: 0196876EABB254D1CC071A498E95DFAA81DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
Manifest number: 0C78
Signing time: Wed 30 Apr 2025 16:01:39 +0000
Manifest this update: Wed 30 Apr 2025 16:01:39 +0000
Manifest next update: Thu 01 May 2025 16:01:39 +0000
Files and hashes: 1: BcW97HMY-HHVPoZkgvQXM97wlCg.crl (hash: lHEIV6azrgl9JNRZp4tIcBYWDdWEn4J4Av8qijymrXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 13:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:87:6e:ab:b2:54:d1:cc:07:1a:49:8e:95:df:aa:81:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05c5bdec7318f871d53e866482f41733def09428
Validity
Not Before: Apr 30 16:01:39 2025 GMT
Not After : May 1 16:01:39 2025 GMT
Subject: CN=68dd746374c3c7f0ade5ca43cc454991834439ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fd:5c:da:58:94:d6:4b:97:4c:8e:4f:ff:ff:
65:12:2b:56:3b:62:dc:c6:ee:30:d1:7f:5a:14:9f:
38:70:4e:49:87:10:c5:60:67:ae:c8:52:b1:2c:2f:
cd:a4:73:85:fa:e6:4b:7d:82:07:17:44:cf:65:a6:
0c:20:e8:96:bd:72:43:cc:f0:04:4a:ab:4c:80:93:
d0:84:d9:6a:c7:e5:e4:ac:b8:6f:1c:89:67:6e:c4:
36:81:53:29:1e:aa:72:9b:72:11:60:a1:e9:94:d7:
da:c2:3c:9b:66:b7:8d:b3:5e:3f:8a:ec:c5:96:d2:
9d:94:b6:1b:21:61:e4:03:39:eb:e4:7a:cb:8d:8f:
c2:ce:7a:13:55:67:db:ea:e0:6f:96:b5:6e:d0:3d:
3e:08:be:20:9c:e6:64:80:81:21:c0:94:46:bb:4d:
fb:14:b3:63:06:59:65:54:c4:78:64:77:48:f4:f1:
88:03:69:3d:29:b4:2d:f1:81:db:19:9e:cb:09:e2:
ca:70:2b:67:af:7a:80:1b:24:4e:79:62:94:d1:33:
f9:26:43:9a:ea:82:bb:7f:3e:b2:15:6c:6d:7b:4f:
b4:9d:e8:a0:cf:66:f7:02:39:bd:bc:20:8f:59:ac:
b7:99:b1:44:6c:f2:44:15:e7:e2:30:2b:e7:81:49:
e0:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:DD:74:63:74:C3:C7:F0:AD:E5:CA:43:CC:45:49:91:83:44:39:EC
X509v3 Authority Key Identifier:
keyid:05:C5:BD:EC:73:18:F8:71:D5:3E:86:64:82:F4:17:33:DE:F0:94:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:9a:fa:d3:fb:f4:58:55:ec:f4:83:3a:31:52:19:2e:22:c9:
20:9a:35:e5:74:b2:5e:fd:32:ba:73:c3:4b:53:c3:70:ba:52:
2e:9e:d9:1f:c3:4d:cb:23:ca:4a:31:db:58:db:df:7f:9b:3f:
9f:ee:4f:25:24:4e:14:16:2f:69:fb:17:38:6d:8b:3f:17:c2:
7a:68:f3:40:55:19:88:6f:79:95:c1:db:13:dc:a1:9c:ef:fb:
ea:dd:9b:e3:c8:73:78:1a:cf:65:a2:1d:25:29:6f:ec:ec:87:
cd:fd:08:9c:e6:a6:f1:28:cb:5d:07:28:51:ed:0b:62:6d:5f:
0e:1b:c8:bb:51:14:e1:f0:b2:bb:79:56:e3:c5:6e:77:dc:4b:
db:51:24:72:b9:95:24:6a:c0:77:b5:f2:3a:b3:68:95:46:a8:
7a:64:d9:e2:1c:63:d0:f1:eb:12:2d:78:50:64:74:c3:c8:cb:
10:e5:8b:72:00:76:b7:b8:cc:5b:c0:e5:26:fc:ac:73:34:2e:
cf:71:48:05:6c:ec:fb:ae:a3:02:b0:6f:cc:92:81:c0:28:c9:
7d:0a:e9:86:f0:08:d8:8f:6f:9c:64:77:4a:69:da:03:97:b5:
92:80:f8:b5:ae:c9:cc:68:a3:23:82:a5:20:d3:e8:34:57:6f:
19:b8:b6:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaHbquyVNHMBxpJjpXfqoHbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1YzViZGVjNzMxOGY4NzFkNTNlODY2NDgyZjQxNzMzZGVm
MDk0MjgwHhcNMjUwNDMwMTYwMTM5WhcNMjUwNTAxMTYwMTM5WjAzMTEwLwYDVQQD
Eyg2OGRkNzQ2Mzc0YzNjN2YwYWRlNWNhNDNjYzQ1NDk5MTgzNDQzOWVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtv1c2liU1kuXTI5P//9lEitWO2Lc
xu4w0X9aFJ84cE5JhxDFYGeuyFKxLC/NpHOF+uZLfYIHF0TPZaYMIOiWvXJDzPAE
SqtMgJPQhNlqx+XkrLhvHIlnbsQ2gVMpHqpym3IRYKHplNfawjybZreNs14/iuzF
ltKdlLYbIWHkAznr5HrLjY/CznoTVWfb6uBvlrVu0D0+CL4gnOZkgIEhwJRGu037
FLNjBlllVMR4ZHdI9PGIA2k9KbQt8YHbGZ7LCeLKcCtnr3qAGyROeWKU0TP5JkOa
6oK7fz6yFWxte0+0neigz2b3Ajm9vCCPWay3mbFEbPJEFefiMCvngUngHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGjddGN0w8fwreXKQ8xFSZGDRDnsMB8GA1UdIwQY
MBaAFAXFvexzGPhx1T6GZIL0FzPe8JQoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmNXOTdITVktSEhWUG9aa2d2UVhNOTd3bENnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8zZWJkMGMtMjk5MS00NTgzLWJmZWMt
NzEyMmZlYWZjOGM3LzEvQmNXOTdITVktSEhWUG9aa2d2UVhNOTd3bENnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS8zZWJkMGMtMjk5MS00NTgzLWJmZWMtNzEyMmZlYWZjOGM3
LzEvQmNXOTdITVktSEhWUG9aa2d2UVhNOTd3bENnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr5r60/v0
WFXs9IM6MVIZLiLJIJo15XSyXv0yunPDS1PDcLpSLp7ZH8NNyyPKSjHbWNvff5s/
n+5PJSROFBYvafsXOG2LPxfCemjzQFUZiG95lcHbE9yhnO/76t2b48hzeBrPZaId
JSlv7OyHzf0InOam8SjLXQcoUe0LYm1fDhvIu1EU4fCyu3lW48Vud9xL21EkcrmV
JGrAd7XyOrNolUaoemTZ4hxj0PHrEi14UGR0w8jLEOWLcgB2t7jMW8DlJvysczQu
z3FIBWzs+66jArBvzJKBwCjJfQrphvAI2I9vnGR3SmnaA5e1koD4ta7JzGijI4Kl
INPoNFdvGbi2Mw==
-----END CERTIFICATE-----
Generated at Wed Apr 30 18:44:40 2025 by rpki-client