Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
File: BCSFBLVFValEOwKjPTUakChju5k.mft (raw, json)
Hash identifier: mo/4ivKh0QA0Kp5GRPf1iSSQeWg2mQ2bbRM6tJJADLU=
Subject key identifier: 27:B5:1D:28:EF:C0:5E:F0:E1:4D:EB:2F:EA:65:64:09:0B:14:23:73
Authority key identifier: 04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
Certificate issuer: /CN=04248504b54555a9443b02a33d351a902863bb99
Certificate serial: 019A70DC5CC17CC5270D09FFC2BE480E6B60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
Manifest number: 1721
Signing time: Tue 11 Nov 2025 03:01:21 +0000
Manifest this update: Tue 11 Nov 2025 03:01:21 +0000
Manifest next update: Wed 12 Nov 2025 03:01:21 +0000
Files and hashes: 1: BCSFBLVFValEOwKjPTUakChju5k.crl (hash: VmPuq1Sy1IjnHsiROnwT3GcgMLWtpJ5GvErE2PZqGJU=)
2: b8vdOmpolmwnMi7asOpMYmI4_jA.roa (hash: 9A3fwbUf06Rc6Df5WmKqMxfDfFV1g3qJ0g03eRw6WqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:5c:c1:7c:c5:27:0d:09:ff:c2:be:48:0e:6b:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04248504b54555a9443b02a33d351a902863bb99
Validity
Not Before: Nov 11 03:01:21 2025 GMT
Not After : Nov 12 03:01:21 2025 GMT
Subject: CN=27b51d28efc05ef0e14deb2fea6564090b142373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d4:43:86:40:9f:61:eb:e6:8f:c3:cf:1b:52:
d4:e2:35:98:44:b9:08:ef:6a:54:ed:82:8b:55:1f:
58:a8:b4:53:e2:01:c3:3e:33:2c:cf:80:f7:b5:0b:
3f:73:94:05:aa:68:c1:b5:68:3c:10:44:9e:d2:f4:
0a:1d:39:cc:e4:bd:ea:18:a2:ff:05:6e:5d:a1:50:
5f:5d:cf:8b:df:5d:b3:1d:ca:d4:25:94:23:ec:9b:
3c:5f:90:b4:b4:d9:67:27:36:4f:76:59:8d:e2:79:
95:32:50:c2:95:ee:6d:a8:9c:0c:02:b7:7d:48:24:
34:91:62:45:97:ae:55:04:c5:bc:17:f6:b2:7d:71:
bb:f7:32:d0:9b:f4:e1:0b:f7:20:77:31:3f:bf:4e:
96:f4:ac:cd:8a:a9:03:56:29:c6:48:d2:2c:e4:5e:
86:21:4c:7d:bd:4b:e4:b1:39:be:b3:52:5e:7e:76:
f7:e1:71:1b:0f:1c:aa:18:3a:7e:0e:a3:56:53:55:
34:cb:12:5f:c1:c9:1f:e8:fe:23:12:79:cb:07:4d:
7b:4d:f7:c4:2e:51:eb:99:ee:8c:47:ae:b4:24:d8:
9f:12:f0:49:38:7b:3d:f1:8f:e4:16:81:b2:28:71:
57:3e:83:31:d7:49:8a:18:d6:cd:20:a6:f5:6f:c5:
9e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B5:1D:28:EF:C0:5E:F0:E1:4D:EB:2F:EA:65:64:09:0B:14:23:73
X509v3 Authority Key Identifier:
keyid:04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:fc:df:81:4e:c9:e4:06:21:9f:43:b3:fe:12:cd:10:82:ab:
e0:33:94:1f:88:c5:84:71:54:86:b9:70:88:c3:aa:04:2e:37:
59:1f:c5:6a:0a:6f:a4:f7:f3:14:64:2d:35:98:ab:ec:d5:35:
b1:bf:0b:d4:ec:f0:d0:5e:b6:e0:66:9a:a4:4a:31:ad:92:98:
c9:98:f6:ee:0b:e1:2b:7e:5e:1d:92:e9:70:2f:4b:25:2b:29:
86:a9:ac:52:dc:02:dd:c0:0b:02:93:af:e0:3c:e3:73:f2:1e:
d1:40:87:ea:77:54:40:f7:c6:6a:ca:ba:e3:b0:85:2a:32:f6:
2f:49:ee:db:9a:f9:5c:69:1b:38:55:6e:7c:12:85:dc:4c:d0:
e0:18:21:da:4b:44:52:0c:cc:84:48:17:b8:e4:ee:4a:66:0d:
30:6f:69:10:b8:3d:c6:36:50:9f:e6:6a:fd:b3:ac:b5:5d:48:
b2:7e:44:c2:69:b1:87:f4:a3:4e:9a:bd:a8:a0:b6:ee:68:56:
82:30:b6:42:d2:b3:dc:e9:dd:ab:c5:3f:b8:55:3a:18:c7:dd:
90:22:4e:60:09:dd:53:ae:77:5a:a3:45:27:8a:8b:fe:7a:8d:
69:73:15:43:fb:9e:30:80:68:e1:fb:cb:54:fa:a2:89:f0:b3:
95:e6:bb:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:39:16 2025 by rpki-client