Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
File: BcW97HMY-HHVPoZkgvQXM97wlCg.mft (raw, json)
Hash identifier: L8qhJaSLhdmNEe7YFIMQllSiLxBfTsyjauX4pgajGKM=
Subject key identifier: 20:65:6F:7C:CA:08:D3:A5:B5:69:8F:57:B9:E2:96:BA:3D:77:06:1F
Authority key identifier: 05:C5:BD:EC:73:18:F8:71:D5:3E:86:64:82:F4:17:33:DE:F0:94:28
Certificate issuer: /CN=05c5bdec7318f871d53e866482f41733def09428
Certificate serial: 019873E3771C1ED58C348C56D8DC560F9FF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
Manifest number: 0D77
Signing time: Mon 04 Aug 2025 07:02:23 +0000
Manifest this update: Mon 04 Aug 2025 07:02:23 +0000
Manifest next update: Tue 05 Aug 2025 07:02:23 +0000
Files and hashes: 1: BcW97HMY-HHVPoZkgvQXM97wlCg.crl (hash: 4JYz3TCrWSNnEeq8HX9mMhFJIzNB9o0URivkiQZ4aoU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:77:1c:1e:d5:8c:34:8c:56:d8:dc:56:0f:9f:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05c5bdec7318f871d53e866482f41733def09428
Validity
Not Before: Aug 4 07:02:23 2025 GMT
Not After : Aug 5 07:02:23 2025 GMT
Subject: CN=20656f7cca08d3a5b5698f57b9e296ba3d77061f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:4b:22:5f:09:fa:23:7d:0b:97:fa:96:8e:dd:
48:8b:f6:f7:49:85:aa:23:2c:19:57:03:53:c5:78:
67:ca:4c:fa:2b:7e:75:ab:10:5c:b2:f0:6e:a7:cf:
2f:b5:60:49:8c:95:c2:d2:93:45:ba:5e:84:c7:38:
92:24:98:30:3a:5e:41:9b:ad:c2:5d:6e:dc:c2:55:
6f:93:03:fd:e0:fe:a8:41:98:74:c6:f1:66:62:e7:
03:09:b5:e2:d8:a2:2c:f8:a9:50:73:5b:fd:a8:9a:
52:c7:5e:90:95:de:73:66:c0:fb:50:8e:0e:1b:af:
7c:7b:88:3d:27:dc:41:3a:54:6b:ef:b1:ff:f5:aa:
80:eb:ca:a8:98:4b:d1:28:2e:b2:58:1b:9c:ff:73:
ce:cb:17:17:8e:18:20:9e:b0:b8:ad:8b:bb:bd:ca:
f6:a9:14:cb:18:e4:44:01:83:5f:82:57:cc:ef:22:
85:d0:dd:1a:e6:44:46:8d:6c:91:ab:ae:e3:59:0d:
f7:12:a1:2e:ec:c4:9a:ba:40:69:05:1d:7c:e4:ed:
04:7f:19:5c:c1:af:19:91:4e:03:db:21:46:9a:6f:
8d:42:d0:a8:68:15:9e:e1:00:05:43:96:23:62:86:
52:60:6f:02:72:0d:91:da:1a:d5:fd:4b:ec:85:57:
b8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:65:6F:7C:CA:08:D3:A5:B5:69:8F:57:B9:E2:96:BA:3D:77:06:1F
X509v3 Authority Key Identifier:
keyid:05:C5:BD:EC:73:18:F8:71:D5:3E:86:64:82:F4:17:33:DE:F0:94:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dd:6d:8c:fa:5c:53:01:8d:9b:e0:6c:48:e7:f2:b2:29:bd:a8:
a8:9e:67:74:76:dc:49:0c:e3:94:7c:6a:c0:ce:31:07:0a:e0:
88:60:1a:32:4a:28:2c:ce:5d:5c:17:3f:10:82:22:5f:43:88:
ed:03:79:c9:06:8e:69:d3:ec:45:aa:61:05:d0:11:5b:e4:80:
8b:1d:82:fe:26:dc:42:b3:99:27:c7:c2:ec:5e:11:f5:ad:e0:
99:74:b9:df:e7:e2:df:f4:51:c6:4f:8b:f3:e1:d7:d6:da:d6:
28:80:9f:78:d8:f7:fa:bb:50:4c:bf:5a:11:a9:63:63:62:db:
35:53:ee:2c:c7:7f:36:ae:84:f2:84:63:d3:be:40:11:bd:ef:
4b:3e:aa:2d:46:ad:6f:b0:00:d7:74:70:85:9b:e6:03:b8:b0:
08:95:3e:ed:b2:87:22:42:62:0a:dd:89:62:7d:54:e3:9f:2f:
32:29:2a:d5:2b:8a:ee:19:d5:c5:44:b2:2c:7e:36:fb:62:70:
7e:c7:aa:04:4b:eb:8d:78:27:70:c2:5d:fe:2a:1c:a0:f7:07:
8f:aa:a9:6e:27:e7:c0:68:88:8f:39:7d:5d:43:7b:4f:44:ee:
af:0d:2c:b6:1a:6e:e7:95:c8:dc:9f:81:47:3c:32:5c:a7:a5:
b0:15:b5:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:25:26 2025 by rpki-client