Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
File: BCSFBLVFValEOwKjPTUakChju5k.mft (raw, json)
Hash identifier: a0LmEkF7tFX3FVEx8t3iCIlRQkOEMGy5hFcymY54quw=
Subject key identifier: 3A:46:02:7F:0E:2A:20:C7:25:A3:34:A9:FA:23:E9:CC:15:92:99:8D
Authority key identifier: 04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
Certificate issuer: /CN=04248504b54555a9443b02a33d351a902863bb99
Certificate serial: 01974B8DC1AF5BF195817D9E2547F521F20F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
Manifest number: 1580
Signing time: Sat 07 Jun 2025 18:01:10 +0000
Manifest this update: Sat 07 Jun 2025 18:01:10 +0000
Manifest next update: Sun 08 Jun 2025 18:01:10 +0000
Files and hashes: 1: BCSFBLVFValEOwKjPTUakChju5k.crl (hash: tj4lZtMUcHSjsLS6GLVCPrm+EUMsB+aig0ue653GqQo=)
2: b8vdOmpolmwnMi7asOpMYmI4_jA.roa (hash: 9A3fwbUf06Rc6Df5WmKqMxfDfFV1g3qJ0g03eRw6WqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:c1:af:5b:f1:95:81:7d:9e:25:47:f5:21:f2:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04248504b54555a9443b02a33d351a902863bb99
Validity
Not Before: Jun 7 18:01:10 2025 GMT
Not After : Jun 8 18:01:10 2025 GMT
Subject: CN=3a46027f0e2a20c725a334a9fa23e9cc1592998d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e5:fb:31:87:09:1d:ca:8e:ba:d3:c9:87:70:
c6:30:29:1b:5e:f1:38:9e:19:84:63:96:22:08:4c:
c2:c8:10:28:7f:21:69:35:af:17:7c:30:28:c5:28:
cb:d0:ea:f6:14:e2:60:64:91:72:85:ec:c4:2a:17:
4a:1f:5d:0d:42:9b:72:a4:d8:d4:9f:79:26:83:c3:
47:d0:67:89:a7:58:08:df:64:c5:1c:45:d9:04:2b:
4d:13:8b:f6:94:55:23:98:98:d6:6c:1f:da:0d:fd:
e8:a2:81:5c:81:e5:de:3b:f4:28:98:cc:12:50:53:
24:5d:fb:06:ed:94:8c:49:a2:55:ea:0c:c0:6d:b8:
31:3e:60:2b:6b:f7:df:e8:3c:2a:ca:d2:6b:63:e3:
e8:fb:d4:f2:75:6e:8c:2a:2e:90:cb:1e:5d:67:6e:
91:9a:8f:9e:6b:58:8f:6c:ee:36:56:f2:49:c9:59:
f7:c1:7c:50:f3:f5:27:7f:9b:c5:c0:22:ba:35:20:
0f:ca:e3:55:d6:d2:12:cf:36:37:68:71:d6:14:37:
ad:b5:87:2d:e7:50:44:12:53:fc:1b:8e:ff:a3:5f:
d4:23:1c:ba:29:95:cb:61:4d:e3:44:96:4f:e8:1d:
7a:d8:fe:03:84:5e:e6:9b:c7:65:3c:fb:9a:93:e6:
db:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:46:02:7F:0E:2A:20:C7:25:A3:34:A9:FA:23:E9:CC:15:92:99:8D
X509v3 Authority Key Identifier:
keyid:04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:f7:11:94:c4:2b:f4:64:dd:a4:b8:d4:69:d8:c5:26:4b:61:
84:2e:b0:60:7a:62:3e:d9:a2:a9:4c:6a:1b:07:46:ed:c8:52:
49:4a:68:e1:3b:28:96:49:af:93:62:3e:c6:f7:50:14:2a:07:
59:41:a5:73:88:b5:91:9f:31:b3:4b:15:69:3a:8a:7c:f4:65:
8d:41:55:f4:e4:75:0e:a5:6c:27:85:53:ee:a6:4a:7d:db:c7:
6b:3e:7c:44:a0:19:b7:ec:66:19:6c:95:9e:1c:07:d3:ff:a0:
f5:5c:8c:c3:01:d6:98:65:5b:8d:21:ec:bf:d2:b0:b1:c7:4b:
d8:f6:b0:ab:85:67:53:e0:b6:a4:72:39:a3:df:8b:6b:7c:7b:
3c:83:a2:e4:47:43:14:bb:fd:e1:4b:9c:af:5b:9e:0c:5e:10:
c0:6b:fc:cc:2b:3b:d3:85:a9:71:ed:25:9f:42:a8:6e:21:7e:
cb:8f:05:b8:6c:f9:e5:bf:30:e7:cf:ce:77:3e:87:3f:30:f3:
2d:53:ac:60:ea:33:db:1e:f6:be:2d:6c:a2:8b:22:50:8c:88:
5e:4c:df:43:85:28:f5:63:fe:25:ae:1c:e0:3c:22:b8:eb:16:
ed:1f:fd:b3:7e:fa:46:05:0c:20:90:94:56:06:a4:7a:4b:5a:
40:a7:bc:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 01:45:32 2025 by rpki-client