Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
File: BCSFBLVFValEOwKjPTUakChju5k.mft (raw, json)
Hash identifier: L8QzmnWlWGsfCAmYpB4ubpkUdodv4q05j9Q8it3rCLc=
Subject key identifier: 45:B7:7E:2A:7E:7D:91:2F:1C:08:70:8A:4D:9F:92:75:A3:B1:CA:91
Authority key identifier: 04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
Certificate issuer: /CN=04248504b54555a9443b02a33d351a902863bb99
Certificate serial: 019922C3386A0A1CD49CC0A342C8C1824A05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
Manifest number: 1674
Signing time: Sun 07 Sep 2025 06:00:43 +0000
Manifest this update: Sun 07 Sep 2025 06:00:43 +0000
Manifest next update: Mon 08 Sep 2025 06:00:43 +0000
Files and hashes: 1: BCSFBLVFValEOwKjPTUakChju5k.crl (hash: OOGbD8bBW6K8OZeTLJ94NJ8NrxM2/8i4buKcDg39BfQ=)
2: b8vdOmpolmwnMi7asOpMYmI4_jA.roa (hash: 9A3fwbUf06Rc6Df5WmKqMxfDfFV1g3qJ0g03eRw6WqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:38:6a:0a:1c:d4:9c:c0:a3:42:c8:c1:82:4a:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04248504b54555a9443b02a33d351a902863bb99
Validity
Not Before: Sep 7 06:00:43 2025 GMT
Not After : Sep 8 06:00:43 2025 GMT
Subject: CN=45b77e2a7e7d912f1c08708a4d9f9275a3b1ca91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d3:fd:bd:08:fb:d2:01:a7:71:cb:3f:55:27:
61:2d:bf:3c:ad:ff:27:ae:14:a3:f7:b1:3f:14:e3:
a5:94:04:ec:4b:e2:7b:06:91:0f:1c:67:2e:85:1c:
98:96:f6:5f:9d:db:56:89:17:31:b5:e8:7f:75:32:
de:34:2e:86:dc:8c:3c:8b:4d:32:58:97:29:f3:75:
78:36:5d:71:04:bc:e0:17:3a:68:aa:2a:e0:c9:be:
a8:64:71:48:8c:31:a9:8a:b0:a2:e4:72:ee:13:40:
9e:9c:74:56:4a:70:ef:b6:34:d4:76:ea:d1:05:c2:
19:14:a6:e2:ee:35:28:92:49:1a:0f:50:30:32:a6:
75:cc:bc:c2:e3:da:e1:9a:13:20:23:39:ba:22:c9:
dd:22:78:e6:9a:27:e0:d8:cb:c3:74:fb:ef:1c:42:
26:cd:d4:96:68:94:61:8b:89:66:c6:58:24:f7:c7:
72:2a:cf:30:c5:1b:0e:4b:68:8c:6f:14:36:87:10:
6c:30:21:02:c5:bc:59:97:58:8b:62:75:58:0b:fe:
bb:eb:28:df:35:d3:a5:0a:f2:28:57:89:dc:58:16:
aa:6c:ee:d5:96:a9:ec:8a:57:4f:89:ad:9d:c3:4f:
f7:f9:68:fd:52:77:72:1d:6a:28:78:cd:62:a9:0e:
46:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:B7:7E:2A:7E:7D:91:2F:1C:08:70:8A:4D:9F:92:75:A3:B1:CA:91
X509v3 Authority Key Identifier:
keyid:04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:47:da:44:cc:6d:86:e4:01:2b:7c:e1:7f:30:c7:35:60:ce:
cd:32:20:3a:09:3d:f6:b8:e6:9e:bd:6c:a6:66:4a:be:1d:65:
89:78:b8:f3:53:48:ba:6a:69:6e:76:58:56:58:32:69:24:f0:
46:f7:53:47:8e:3c:19:57:af:e3:be:9e:2c:cb:87:37:e2:4e:
51:d4:05:2e:c9:aa:f6:84:11:92:a1:2e:b1:cb:8f:42:8d:5d:
33:c5:7c:17:7c:dd:80:42:6e:73:cc:a6:48:25:79:bd:cf:f1:
fa:d9:5a:88:fc:ec:e4:ad:61:10:87:72:e7:7b:6b:2d:77:9f:
c2:30:cf:e1:a8:75:4e:45:d5:2d:48:19:e7:55:30:56:2d:63:
3b:69:cd:df:ef:2e:a2:ce:1b:43:ad:01:ca:66:23:81:d5:49:
51:68:ff:8b:11:27:40:53:e8:7c:56:06:b2:c1:bd:8e:a3:e7:
21:83:b9:72:aa:12:f8:bf:a9:b8:1c:e4:49:62:04:58:f7:ea:
bd:5d:60:54:af:07:9c:8f:3d:b8:e8:af:e5:9c:24:0f:fb:d0:
c9:d7:7f:07:c3:a7:34:75:57:df:a9:85:80:e9:6d:86:f5:67:
2e:44:05:d1:f6:4a:75:f0:04:58:57:70:51:ff:cb:dd:51:bb:
f3:bc:3b:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:49:54 2025 by rpki-client