Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
File: BfWa7cKCluKRck95N954jichZAg.mft (raw, json)
Hash identifier: q2+kc3jtzMK+MUF32+HY9qibqUVDn6+Rg4/7IpTK4EQ=
Subject key identifier: 39:2E:3C:98:C0:1A:50:19:1C:9F:A1:51:69:5D:AB:3C:F2:09:E8:5E
Authority key identifier: 05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
Certificate issuer: /CN=05f59aedc28296e291724f7937de788e27216408
Certificate serial: 019A71B9553B4739BC9FE43A48CDC99C876E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
Manifest number: 163C
Signing time: Tue 11 Nov 2025 07:02:42 +0000
Manifest this update: Tue 11 Nov 2025 07:02:42 +0000
Manifest next update: Wed 12 Nov 2025 07:02:42 +0000
Files and hashes: 1: BfWa7cKCluKRck95N954jichZAg.crl (hash: +HSkg5vyUL/K69GBsjqp5jgISOrcgBla77wQM7RnqiI=)
2: u4-8TJgeQH4fa-D9xZl4ZB3jNoQ.roa (hash: tT+Wu4e7mtchTUuSJdCNjA8Yykw8lNY7Bv1xK7SFPsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:55:3b:47:39:bc:9f:e4:3a:48:cd:c9:9c:87:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f59aedc28296e291724f7937de788e27216408
Validity
Not Before: Nov 11 07:02:42 2025 GMT
Not After : Nov 12 07:02:42 2025 GMT
Subject: CN=392e3c98c01a50191c9fa151695dab3cf209e85e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ae:45:e3:17:4b:31:9a:af:5b:7b:15:0d:e9:
99:de:1b:cc:6f:ec:06:97:cc:b8:13:7d:97:b0:61:
7b:de:7b:2b:2e:eb:6d:d1:c6:08:7d:db:ff:d3:be:
39:51:b7:34:ce:b7:f1:07:ad:dd:2e:29:00:b9:6f:
13:d6:30:e2:54:5b:07:0d:8b:c2:a1:ee:4e:59:3d:
81:1d:e8:cf:7e:4c:eb:49:bf:27:38:9a:66:3d:ad:
de:d1:47:0f:99:23:34:39:01:d9:03:ec:f8:64:82:
cc:f7:b2:1d:ae:b1:46:cc:14:01:32:1f:57:b4:a1:
84:15:33:18:dd:d6:37:8a:e8:2a:e8:b8:2b:58:d2:
e9:0c:78:33:9a:d6:7c:9c:5a:72:e9:8c:f8:b8:0a:
e3:b4:3b:a7:e7:d0:00:7c:a7:d3:4e:11:ae:ac:91:
3b:07:23:e9:37:45:43:96:9a:94:50:6a:ae:ba:5f:
cd:72:5e:65:2f:c6:2c:1a:29:fd:1c:1b:8a:11:e7:
5a:d2:0f:53:30:49:5d:4c:a1:9f:69:64:8b:86:5c:
c1:c4:e0:f8:17:bf:c9:ff:58:a0:b1:30:a8:a0:e2:
de:72:69:e8:cc:c6:99:05:d5:19:57:be:49:56:6d:
68:58:a8:51:7f:52:58:56:aa:b0:eb:ba:c1:26:1b:
24:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:2E:3C:98:C0:1A:50:19:1C:9F:A1:51:69:5D:AB:3C:F2:09:E8:5E
X509v3 Authority Key Identifier:
keyid:05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:60:7d:24:4d:64:84:d2:95:23:a8:c9:64:ce:f5:e4:e4:45:
91:35:5d:ec:d3:a3:5f:d8:3f:f7:03:11:b9:84:01:33:ff:12:
b5:89:0c:c8:5f:c6:a2:f8:05:de:d7:80:11:9e:63:b3:21:30:
eb:5f:74:6f:9d:30:6e:c2:5e:40:92:03:1a:24:5b:59:11:81:
83:55:75:2c:c0:15:a2:85:2e:d7:19:b4:30:b3:d0:dd:e8:2b:
05:8f:48:db:9a:cb:8e:63:24:a2:87:1c:6a:4d:47:da:12:d6:
bb:a1:6e:07:31:3b:fd:2d:b4:a9:63:b2:fc:ff:9f:36:37:c6:
1b:6e:69:7b:c2:c9:9d:cb:a1:00:94:1e:2f:6f:2c:f2:c4:8a:
c3:45:39:a3:f6:76:b6:83:a6:83:b6:ad:0b:1a:e1:31:6a:7e:
78:e9:1c:cf:55:00:b3:fc:df:00:b0:00:ce:ca:40:80:56:ba:
12:c0:45:e1:91:dc:f2:49:4d:d7:b5:61:15:d3:d7:eb:75:53:
fb:74:32:b6:79:71:14:0e:95:d1:12:52:a8:fa:1f:07:f9:b4:
75:21:05:4a:7a:9f:c1:69:08:45:ab:6e:46:68:9f:e3:13:07:
39:04:18:c2:47:54:13:f3:3a:42:e1:81:cb:d6:3d:e4:cf:b4:
92:d2:84:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuVU7Rzm8n+Q6SM3JnIduMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1ZjU5YWVkYzI4Mjk2ZTI5MTcyNGY3OTM3ZGU3ODhlMjcy
MTY0MDgwHhcNMjUxMTExMDcwMjQyWhcNMjUxMTEyMDcwMjQyWjAzMTEwLwYDVQQD
EygzOTJlM2M5OGMwMWE1MDE5MWM5ZmExNTE2OTVkYWIzY2YyMDllODVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5a5F4xdLMZqvW3sVDemZ3hvMb+wG
l8y4E32XsGF73nsrLutt0cYIfdv/0745Ubc0zrfxB63dLikAuW8T1jDiVFsHDYvC
oe5OWT2BHejPfkzrSb8nOJpmPa3e0UcPmSM0OQHZA+z4ZILM97IdrrFGzBQBMh9X
tKGEFTMY3dY3iugq6LgrWNLpDHgzmtZ8nFpy6Yz4uArjtDun59AAfKfTThGurJE7
ByPpN0VDlpqUUGquul/Ncl5lL8YsGin9HBuKEeda0g9TMEldTKGfaWSLhlzBxOD4
F7/J/1igsTCooOLecmnozMaZBdUZV75JVm1oWKhRf1JYVqqw67rBJhskKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDkuPJjAGlAZHJ+hUWldqzzyCeheMB8GA1UdIwQY
MBaAFAX1mu3CgpbikXJPeTfeeI4nIWQIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi81ZTFkNDItMzU3NS00ZWMxLWJjN2Mt
ZDY0MzY4MjA4MTMxLzEvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi81ZTFkNDItMzU3NS00ZWMxLWJjN2MtZDY0MzY4MjA4MTMx
LzEvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwWB9JE1k
hNKVI6jJZM715ORFkTVd7NOjX9g/9wMRuYQBM/8StYkMyF/GovgF3teAEZ5jsyEw
6190b50wbsJeQJIDGiRbWRGBg1V1LMAVooUu1xm0MLPQ3egrBY9I25rLjmMkoocc
ak1H2hLWu6FuBzE7/S20qWOy/P+fNjfGG25pe8LJncuhAJQeL28s8sSKw0U5o/Z2
toOmg7atCxrhMWp+eOkcz1UAs/zfALAAzspAgFa6EsBF4ZHc8klN17VhFdPX63VT
+3QytnlxFA6V0RJSqPofB/m0dSEFSnqfwWkIRatuRmif4xMHOQQYwkdUE/M6QuGB
y9Y95M+0ktKEqA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:46:09 2025 by rpki-client