Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
File: bf7PoOZpJZXPvqUmYHbo5T79lGE.mft (raw, json)
Hash identifier: 9+1kxewMF9nAr8z7SWOUQxNtLi0O4EG8UN9F6ow7bBA=
Subject key identifier: 26:D6:37:C0:83:69:2D:2A:9D:C1:FC:30:FC:EE:FE:41:55:2D:5A:31
Authority key identifier: 6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
Certificate issuer: /CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Certificate serial: 01993424DE45D69F5E71103F4DAB960D7F45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
Manifest number: 0F16
Signing time: Wed 10 Sep 2025 15:00:55 +0000
Manifest this update: Wed 10 Sep 2025 15:00:55 +0000
Manifest next update: Thu 11 Sep 2025 15:00:55 +0000
Files and hashes: 1: 3nKPvfyefhBBthk-LrRdD-jfvW0.roa (hash: 1vR7bznA03xVBTq7D8itXQ6xNZUvjtjklTS5nPcHTr0=)
2: 8JVtNiH742v8cd9f6HB8HsLnHqc.roa (hash: en+F0ICvUKwr0qrq9ILAxUcATJZUAoxaoEpiR8+7A9M=)
3: GzE_PF4lRurN113fXZhaZRzDRYM.roa (hash: b8RRWDnlm3gv9H+fLurnrwDRk5Rn7Ig722jB2SuqPOg=)
4: O1rsJf608w55c6uzax6qELf-V10.roa (hash: eTLBCFWFUORcPgLfQZK3GxMskhs+vxERoSr/SRYqzwQ=)
5: W0ytEpzp3PGLQgQDEe1kmGvhrx8.roa (hash: Rx2fPbh4hFdhpWyNIm7FiwaS49uoStv5r5BjlCfRWrA=)
6: bf7PoOZpJZXPvqUmYHbo5T79lGE.crl (hash: mZh1k/kr5thhVoCW5a78tZa56WqBNK/9+Zr2lfG/kDc=)
7: gnZzs6ma6bupZv_QFfeHC2w5vfs.roa (hash: tmmh6VOJ4XQ6zqxdY06hmFVr0WRGDB+DoX6nJefrwl4=)
8: qfLtpL022R2vNSfmfA6qR_jq_6k.roa (hash: 99hvsDHWBX451/OxAu/FvLR5vG5KLyjpmEGTCKGnQ6c=)
9: s5XW1sPa3LVHkVbaHF8KM4lyi3k.roa (hash: kYlioc7r4tkKKuXQwZeSGnhgTGO7wN8mLbsZJSv0XnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:24:de:45:d6:9f:5e:71:10:3f:4d:ab:96:0d:7f:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Validity
Not Before: Sep 10 15:00:55 2025 GMT
Not After : Sep 11 15:00:55 2025 GMT
Subject: CN=26d637c083692d2a9dc1fc30fceefe41552d5a31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f6:42:2d:9d:81:56:60:0f:73:4e:19:6d:5d:
85:8c:c0:64:2d:ca:7a:68:e2:58:03:51:87:b5:d1:
38:e4:19:32:41:f1:35:2a:e7:c8:92:63:53:3a:7d:
0e:17:3c:79:7f:e5:68:11:8d:22:e0:23:7b:04:d7:
2e:d8:bb:d3:18:0d:72:62:5a:88:2c:af:62:73:9d:
67:ff:96:14:5c:2b:9f:ae:2b:da:47:4b:f2:5b:ad:
ad:61:5f:7a:bc:44:b1:bb:cf:2c:97:03:87:96:92:
98:3a:65:89:68:d6:b3:63:61:69:ad:1b:93:b9:18:
99:62:a3:c6:4f:61:f3:e1:17:19:5e:e5:41:b1:2b:
12:a5:e3:75:49:a2:d0:28:1d:e5:3d:ad:d4:4d:08:
b5:cd:40:9c:78:68:7f:1c:b3:09:13:eb:e1:4d:20:
2c:48:98:1d:15:f1:36:df:10:b8:3b:b8:69:02:34:
fb:05:c7:9f:13:dd:a9:37:fb:24:05:f6:84:eb:4b:
29:84:5f:bd:df:8b:d1:c6:7f:c4:f8:57:15:68:a5:
c5:85:c0:58:70:9a:29:0e:60:8d:0e:5d:93:25:ed:
10:cb:c6:19:c5:b1:f7:ed:49:7e:d6:4e:04:43:16:
59:9d:10:cb:7b:ab:c2:11:12:cb:31:19:96:53:cd:
65:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:D6:37:C0:83:69:2D:2A:9D:C1:FC:30:FC:EE:FE:41:55:2D:5A:31
X509v3 Authority Key Identifier:
keyid:6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:40:e9:e6:1f:ac:93:d0:d4:60:e4:d7:ef:bb:2f:49:8b:6d:
b4:f5:83:92:3c:68:8a:77:aa:9a:cd:09:00:65:c1:b9:15:db:
7b:d6:66:f9:d0:1d:ff:59:2a:10:7f:87:47:be:7e:e0:2b:4e:
e2:79:e3:10:1f:f3:a7:4b:61:f0:ad:71:ca:82:76:9e:a7:df:
26:8e:f5:34:0d:ed:92:e8:3b:8c:75:76:45:1d:9f:69:76:06:
df:cb:20:10:20:e8:2c:b8:d6:ab:c9:4a:62:96:36:f3:fa:18:
b7:3a:6d:2d:70:d3:16:58:bf:94:f3:f9:53:b7:41:96:b9:67:
31:33:ce:4d:e0:c7:be:ea:2b:5d:12:f0:b0:1b:92:1f:b2:de:
e3:92:f4:c9:04:e7:16:eb:3c:1c:7c:5a:46:23:2c:54:a3:75:
69:be:04:d6:b8:0b:e6:50:91:fa:9e:82:46:bb:2d:2f:5e:99:
3f:15:ad:34:b8:08:9e:58:fa:94:01:07:1e:b4:57:e6:ac:e0:
96:5d:33:4c:84:d7:18:0c:57:ac:a7:23:4f:66:7d:b2:db:d3:
96:96:0b:d6:d4:e5:f8:d9:6d:60:fe:3d:9d:13:3f:ef:e2:cd:
f1:bb:a1:b2:d1:35:24:28:16:83:7c:a3:43:53:50:1c:ae:64:
39:e5:9c:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 19:18:48 2025 by rpki-client