Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
File: BcW97HMY-HHVPoZkgvQXM97wlCg.mft (raw, json)
Hash identifier: LXTLG9kfR8EHa2C6le8sPWz/Uj/5ueoFg0tCeqUbhZI=
Subject key identifier: 28:A9:9D:42:E3:CF:B0:C8:E8:26:62:92:E2:31:78:5A:2A:2F:BD:79
Authority key identifier: 05:C5:BD:EC:73:18:F8:71:D5:3E:86:64:82:F4:17:33:DE:F0:94:28
Certificate issuer: /CN=05c5bdec7318f871d53e866482f41733def09428
Certificate serial: 019778D4238E98603B2740FFFA14DF477DDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
Manifest number: 0CF5
Signing time: Mon 16 Jun 2025 13:00:58 +0000
Manifest this update: Mon 16 Jun 2025 13:00:58 +0000
Manifest next update: Tue 17 Jun 2025 13:00:58 +0000
Files and hashes: 1: BcW97HMY-HHVPoZkgvQXM97wlCg.crl (hash: k0GHeQTYv1Bte3NF/DCj8joi+Wst73Gl8tFWkbRNOx4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 13:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:d4:23:8e:98:60:3b:27:40:ff:fa:14:df:47:7d:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05c5bdec7318f871d53e866482f41733def09428
Validity
Not Before: Jun 16 13:00:58 2025 GMT
Not After : Jun 17 13:00:58 2025 GMT
Subject: CN=28a99d42e3cfb0c8e8266292e231785a2a2fbd79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:55:36:45:65:95:a9:74:5e:3b:f3:3c:9b:07:
1c:dc:7b:5c:4a:99:9b:da:3a:79:19:fd:4f:de:08:
47:bb:66:78:fc:cb:53:ca:f9:b6:d4:d2:e6:ed:da:
21:69:3f:82:80:25:77:ea:68:27:10:bf:d3:38:b4:
45:1b:dd:d9:c8:f3:bf:5d:4c:fa:4a:db:aa:62:4b:
a4:1e:2a:5c:8d:d7:20:38:2a:98:55:b6:44:50:0b:
1e:ab:3f:2d:4c:7c:56:f0:81:06:0a:a8:15:12:7a:
b1:b1:da:ef:ce:fe:38:18:3e:3e:23:0b:e7:aa:43:
0d:25:51:08:2b:ea:48:25:33:63:4e:43:0f:d5:a9:
23:97:b9:21:25:1b:aa:de:4d:7b:96:52:06:d7:b8:
05:12:35:10:95:64:b5:4d:e1:82:9e:34:d5:3b:6d:
be:39:6c:86:dc:28:e0:fa:22:ce:2a:da:ce:b6:d8:
7b:e3:f0:1f:73:f3:77:bd:03:37:29:62:75:58:8c:
d2:ba:e8:16:25:2d:17:cf:39:59:75:56:d8:4e:bb:
03:2c:0f:60:73:b0:d4:6a:af:a0:82:73:be:72:cf:
2d:9b:53:89:9f:d7:a1:4d:81:69:32:d5:01:56:75:
5b:36:52:a0:41:a7:61:24:93:48:08:07:f3:43:32:
a3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:A9:9D:42:E3:CF:B0:C8:E8:26:62:92:E2:31:78:5A:2A:2F:BD:79
X509v3 Authority Key Identifier:
keyid:05:C5:BD:EC:73:18:F8:71:D5:3E:86:64:82:F4:17:33:DE:F0:94:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:72:ed:92:bd:c1:8e:42:84:b3:5c:38:de:77:2f:ed:c5:45:
41:52:b4:03:85:8d:7a:de:24:bc:83:7e:a7:9b:6a:38:4d:4f:
e1:6c:b6:40:c4:9b:37:13:f8:c5:2d:c9:38:41:e9:8a:2a:9f:
a8:78:3e:67:22:9f:1b:f2:2c:10:dd:2f:99:63:1c:dc:5d:8c:
12:87:c4:f5:75:62:56:40:d2:6a:fb:91:02:92:0c:4d:98:10:
8a:6e:a2:94:a9:47:c1:c8:b0:32:1c:b3:b3:40:6a:ca:ef:6c:
e8:8f:7c:b8:8d:3f:54:de:51:ea:f2:b0:35:1e:c4:dc:4c:67:
bf:a4:cd:37:9c:93:1a:a3:8d:04:dc:e2:e4:19:a6:6f:72:8a:
08:26:22:08:d2:5f:2b:e2:10:5c:00:ac:7f:15:31:3c:90:e1:
7f:48:de:18:00:61:d9:23:1d:9a:57:b8:b3:d5:46:7b:34:fa:
cc:69:15:5e:ab:f9:06:0c:84:7d:8f:0a:74:71:8d:fc:15:ab:
c0:d6:3a:af:de:6d:f1:7c:bc:1f:68:8a:2f:59:92:f9:09:2b:
01:7a:b7:83:ae:0e:7a:12:b4:a5:9f:71:39:8d:97:e2:fb:02:
6b:ed:83:c8:a2:19:49:c5:46:5a:f8:c9:85:d8:b9:1b:5a:51:
de:34:77:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 21:02:16 2025 by rpki-client