Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
File: BfCLdPURftOAcj2eQp7LSqU4Ulo.mft (raw, json)
Hash identifier: wELtWhE3G8utgHdEi5zv5obJsQSvtYh7KwOPvgzcQoM=
Subject key identifier: 98:E5:FE:7B:21:64:30:C3:6E:59:3C:C3:D7:E8:73:04:A9:C8:3C:D6
Authority key identifier: 05:F0:8B:74:F5:11:7E:D3:80:72:3D:9E:42:9E:CB:4A:A5:38:52:5A
Certificate issuer: /CN=05f08b74f5117ed380723d9e429ecb4aa538525a
Certificate serial: 019A251CC1D40554ABA6B17A0B8CE022D027
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
Manifest number: 16FB
Signing time: Mon 27 Oct 2025 10:00:32 +0000
Manifest this update: Mon 27 Oct 2025 10:00:32 +0000
Manifest next update: Tue 28 Oct 2025 10:00:32 +0000
Files and hashes: 1: BfCLdPURftOAcj2eQp7LSqU4Ulo.crl (hash: 1ak4FuD3vD1QXx5t1oesYkpKUo4r5860Xq4JQwNdiJc=)
2: cadUElPbaF409FA_2Wg_Q_GYDPU.roa (hash: NuxwFEiNd/qBOlqeuoFPvUGS7VeCKWQWl9Silhu16kg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 10:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:1c:c1:d4:05:54:ab:a6:b1:7a:0b:8c:e0:22:d0:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f08b74f5117ed380723d9e429ecb4aa538525a
Validity
Not Before: Oct 27 10:00:32 2025 GMT
Not After : Oct 28 10:00:32 2025 GMT
Subject: CN=98e5fe7b216430c36e593cc3d7e87304a9c83cd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:75:6e:29:04:8a:27:ef:47:c9:49:db:51:9f:
e5:67:fb:b4:f4:e4:42:7f:d5:fd:0d:ee:b3:67:e6:
ec:73:cc:42:c9:78:9e:1b:88:9c:9e:af:e1:37:75:
9a:a1:e7:e3:bf:df:1e:5c:f7:23:2d:ba:19:ee:20:
6f:37:8d:9c:6d:14:d9:69:f8:93:ca:38:6e:ee:3b:
02:c1:11:65:d7:3c:d8:d0:58:bf:02:7f:2b:63:ec:
a2:3d:01:06:55:92:4e:93:ef:24:28:60:25:bb:12:
81:a8:f2:0c:5a:f8:4b:16:2a:d4:8a:70:d7:e2:13:
b6:37:5b:f1:3d:76:77:64:0e:43:a9:ae:e1:5c:af:
6d:d7:ec:57:65:ef:f6:a9:0c:32:52:c9:87:dd:c8:
33:e9:0d:21:09:dd:46:a4:bc:ad:3f:22:bc:c2:ff:
20:cd:c8:a4:49:0b:07:9f:d2:79:25:88:12:9c:f4:
19:89:3c:2b:20:f5:a0:ad:dd:95:66:00:fb:03:e6:
8c:c2:52:ad:71:63:81:24:63:51:21:8c:be:8d:e4:
63:ff:63:a7:6e:d8:39:0c:8e:d8:94:d6:a5:a6:74:
bf:b4:70:56:4b:d6:fe:ff:1e:9d:74:57:fd:52:d3:
15:d0:e7:b9:80:18:ee:76:d5:9f:9d:c9:af:fe:f3:
09:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E5:FE:7B:21:64:30:C3:6E:59:3C:C3:D7:E8:73:04:A9:C8:3C:D6
X509v3 Authority Key Identifier:
keyid:05:F0:8B:74:F5:11:7E:D3:80:72:3D:9E:42:9E:CB:4A:A5:38:52:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:9f:6f:b9:60:20:4e:a3:0a:2b:2c:88:68:86:b8:29:81:8f:
6f:e0:e6:1a:ce:40:36:f9:c9:eb:13:69:1a:dd:5b:ac:d8:06:
85:28:4a:e6:35:b3:7a:68:67:4e:68:f0:e8:d8:f7:6f:77:4b:
c6:8f:00:94:98:b1:8f:e1:ed:4e:99:2c:b2:a2:d8:6c:6c:02:
4d:3a:c9:8c:5a:09:20:73:ff:fc:3e:24:fa:e8:da:3b:34:8e:
31:83:5f:53:44:1a:a0:4c:84:ad:73:74:06:7c:38:75:c7:13:
8a:35:19:cc:74:a1:fc:25:68:8e:fe:76:42:93:c5:e2:b8:f9:
5b:1b:eb:ff:b9:71:1b:68:36:e1:8f:cc:86:65:3f:c6:7b:0b:
01:e0:34:6e:1d:0f:1f:92:b9:5f:b2:20:19:e4:e6:23:42:82:
2d:d8:bb:9f:38:34:6d:52:62:4d:32:0b:01:db:7f:d8:9b:fb:
d2:26:ad:ed:5f:21:4b:ae:e1:dc:a0:b6:9f:2b:3a:1b:9c:95:
34:a6:c7:f6:92:0c:93:36:57:33:e5:e3:ae:08:f6:56:6a:a6:
17:47:61:9d:9f:92:a9:fb:9f:6a:c9:66:d7:d5:64:fd:66:3a:
7f:22:37:01:33:96:5e:5d:a4:01:0f:8e:d3:27:a6:3b:3d:59:
2f:49:e2:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 17:03:04 2025 by rpki-client