Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
File: BfCLdPURftOAcj2eQp7LSqU4Ulo.mft (raw, json)
Hash identifier: DLhTz0WUiK2tiZEckFPT3hbd4Rs/mPcpsD+NqSdQxj4=
Subject key identifier: 12:AE:7D:B2:02:73:C0:A0:D2:82:B4:96:E3:85:1E:1A:4C:92:58:9D
Authority key identifier: 05:F0:8B:74:F5:11:7E:D3:80:72:3D:9E:42:9E:CB:4A:A5:38:52:5A
Certificate issuer: /CN=05f08b74f5117ed380723d9e429ecb4aa538525a
Certificate serial: 019935A559E1E51157B6D30FEFB11155E0E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
Manifest number: 167F
Signing time: Wed 10 Sep 2025 22:00:52 +0000
Manifest this update: Wed 10 Sep 2025 22:00:52 +0000
Manifest next update: Thu 11 Sep 2025 22:00:52 +0000
Files and hashes: 1: BfCLdPURftOAcj2eQp7LSqU4Ulo.crl (hash: m7EcU162BhdCWoAuV6iowSKwU+qWkEr992RGs1mEA2s=)
2: cadUElPbaF409FA_2Wg_Q_GYDPU.roa (hash: NuxwFEiNd/qBOlqeuoFPvUGS7VeCKWQWl9Silhu16kg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 22:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:a5:59:e1:e5:11:57:b6:d3:0f:ef:b1:11:55:e0:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f08b74f5117ed380723d9e429ecb4aa538525a
Validity
Not Before: Sep 10 22:00:52 2025 GMT
Not After : Sep 11 22:00:52 2025 GMT
Subject: CN=12ae7db20273c0a0d282b496e3851e1a4c92589d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:58:f1:02:9f:f6:89:a4:c3:94:3e:4d:49:3e:
8c:8f:78:e5:9d:e8:50:06:96:51:52:c7:1b:6f:ca:
56:46:0d:34:b7:5b:c1:dc:a8:31:de:14:86:50:91:
04:24:a2:d2:de:9d:80:e9:fb:58:12:af:cd:32:0a:
ed:29:0a:32:7b:d2:ba:bb:e2:c6:4e:31:75:8f:d3:
2b:45:9b:a6:2f:6b:bd:cc:51:26:63:34:c4:90:5b:
45:b3:2b:d5:d5:a1:dd:e3:11:d6:ff:fe:c0:12:3c:
c3:a9:42:c7:28:90:d5:5f:ad:2d:e3:2b:09:f6:a1:
b4:44:80:9f:39:2e:64:1f:c1:68:4e:4f:a3:4f:54:
0a:ed:65:40:a4:8b:59:9c:82:33:33:28:20:c1:9d:
dc:12:82:e8:43:e7:3f:90:25:2b:4e:6c:be:3f:c2:
70:e7:78:37:e6:d4:d1:a8:40:18:99:0a:23:a0:71:
38:9f:e2:f9:c4:88:1c:23:a3:aa:af:8d:a0:7e:58:
88:e5:ed:9e:fd:79:b6:e3:7c:7a:0d:c8:17:ab:92:
5c:47:97:9b:0d:9b:ea:9b:d2:75:71:1b:5b:8f:66:
2c:71:d2:d7:ab:db:55:9b:ac:c7:af:b1:b8:3b:09:
61:84:3e:2a:34:73:b8:90:4c:e2:41:45:a2:29:9c:
b1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:AE:7D:B2:02:73:C0:A0:D2:82:B4:96:E3:85:1E:1A:4C:92:58:9D
X509v3 Authority Key Identifier:
keyid:05:F0:8B:74:F5:11:7E:D3:80:72:3D:9E:42:9E:CB:4A:A5:38:52:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:89:df:cc:0d:1f:ea:2e:7d:c9:b5:ba:40:c1:bf:88:60:61:
6c:1a:fb:30:76:0a:b0:35:ec:c1:c2:ca:4a:51:29:ea:5d:74:
ad:f2:49:ec:73:ab:4d:9d:dc:06:13:63:a4:26:d4:61:82:98:
5a:b4:4f:91:69:bf:6b:e7:23:f1:4c:38:38:66:b5:c9:b9:32:
91:dd:48:57:f6:58:36:36:8e:0b:1f:a9:e2:64:8c:b6:d8:6c:
c4:9c:0b:1d:0f:3c:4f:62:e2:30:bf:f9:4a:3e:84:f2:67:6e:
d0:45:32:22:f2:a6:cb:1b:7d:1e:81:9f:8d:aa:36:34:07:f2:
06:42:f7:16:59:25:c2:2f:06:97:ab:7f:ed:1b:e5:60:68:15:
74:73:4c:0a:bf:75:fc:3d:84:98:b1:21:c8:dc:b8:eb:f5:a0:
76:00:52:72:68:41:f6:8e:77:e3:29:93:7c:43:84:88:38:15:
eb:67:4b:2a:ac:0e:25:fc:e1:05:af:4e:a4:49:d7:75:cf:a1:
cb:5b:5b:1d:dd:9b:97:d8:b8:b6:f1:81:29:a8:b6:6b:6d:36:
5b:a6:7a:f4:bc:13:a8:9e:15:09:5e:10:56:9f:88:85:ef:7e:
5b:8a:63:36:17:f7:33:a1:3f:eb:6d:9c:5f:82:53:58:cd:6e:
53:c2:7d:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 07:00:31 2025 by rpki-client