Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
File: bf7PoOZpJZXPvqUmYHbo5T79lGE.mft (raw, json)
Hash identifier: i0p72gl0ULe3xArCoPWZgVr9YSsranmt9KDuhppsu7w=
Subject key identifier: 53:70:2E:E5:2E:97:10:A9:A8:80:DE:F4:1D:02:1E:8D:98:50:C0:D1
Authority key identifier: 6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
Certificate issuer: /CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Certificate serial: 019842BE760299121060AD111665B8449D3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
Manifest number: 0E98
Signing time: Fri 25 Jul 2025 18:00:34 +0000
Manifest this update: Fri 25 Jul 2025 18:00:34 +0000
Manifest next update: Sat 26 Jul 2025 18:00:34 +0000
Files and hashes: 1: 3nKPvfyefhBBthk-LrRdD-jfvW0.roa (hash: 1vR7bznA03xVBTq7D8itXQ6xNZUvjtjklTS5nPcHTr0=)
2: 8JVtNiH742v8cd9f6HB8HsLnHqc.roa (hash: en+F0ICvUKwr0qrq9ILAxUcATJZUAoxaoEpiR8+7A9M=)
3: GzE_PF4lRurN113fXZhaZRzDRYM.roa (hash: b8RRWDnlm3gv9H+fLurnrwDRk5Rn7Ig722jB2SuqPOg=)
4: O1rsJf608w55c6uzax6qELf-V10.roa (hash: eTLBCFWFUORcPgLfQZK3GxMskhs+vxERoSr/SRYqzwQ=)
5: W0ytEpzp3PGLQgQDEe1kmGvhrx8.roa (hash: Rx2fPbh4hFdhpWyNIm7FiwaS49uoStv5r5BjlCfRWrA=)
6: bf7PoOZpJZXPvqUmYHbo5T79lGE.crl (hash: cacqm+7V7RQ2+hFLWjlmvXPRPSNQg/V1WgeADUmALjU=)
7: qfLtpL022R2vNSfmfA6qR_jq_6k.roa (hash: 99hvsDHWBX451/OxAu/FvLR5vG5KLyjpmEGTCKGnQ6c=)
8: s5XW1sPa3LVHkVbaHF8KM4lyi3k.roa (hash: kYlioc7r4tkKKuXQwZeSGnhgTGO7wN8mLbsZJSv0XnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Jul 2025 17:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:42:be:76:02:99:12:10:60:ad:11:16:65:b8:44:9d:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Validity
Not Before: Jul 25 18:00:34 2025 GMT
Not After : Jul 26 18:00:34 2025 GMT
Subject: CN=53702ee52e9710a9a880def41d021e8d9850c0d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:04:77:28:d2:90:37:48:e8:b4:45:35:b5:cb:
fc:24:e0:a5:8d:e6:45:77:5b:15:3e:17:51:b4:1b:
6a:cf:ba:7f:3d:a2:1e:59:3c:98:03:bb:03:41:c8:
7a:df:2c:a3:c5:26:09:86:ac:83:57:07:e2:34:b7:
1c:11:f6:59:13:b1:48:72:37:1e:10:6a:75:4a:96:
b7:fa:c8:7e:b0:d5:a8:24:39:34:e2:c7:ca:07:51:
0b:40:93:6a:bc:09:de:11:0f:5a:2d:cb:51:3a:52:
d1:56:52:ee:b1:2a:48:ce:85:c7:74:4e:ef:ea:d0:
ce:6d:8f:b4:7a:95:b9:ca:3e:0d:df:ff:a5:9b:1c:
42:cc:78:d8:e9:61:98:49:b9:8f:c4:33:de:b9:d7:
db:60:72:39:7a:67:b7:2b:2a:6f:51:99:72:4c:9a:
30:31:40:a6:db:dd:0a:61:f3:66:9e:66:90:6a:c8:
6e:4e:87:c6:3b:4b:4a:bf:f6:26:87:5c:f6:14:dd:
7f:70:5f:7b:50:e8:58:15:c7:71:ba:aa:49:81:91:
e2:99:9d:4e:0b:e8:9a:bb:b2:a1:aa:fc:8c:95:25:
d8:c0:41:7c:a3:cd:74:14:58:f2:dd:c5:3d:99:9d:
7e:ba:ac:64:37:ef:da:3f:a0:48:99:a4:d2:fa:4a:
e2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:70:2E:E5:2E:97:10:A9:A8:80:DE:F4:1D:02:1E:8D:98:50:C0:D1
X509v3 Authority Key Identifier:
keyid:6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:87:b7:d3:42:c7:68:c2:8e:eb:9c:d9:11:3d:32:0f:5f:ee:
b1:6e:24:98:e7:f8:23:2d:47:e4:78:c9:e4:73:b4:84:22:bc:
ca:e9:fa:da:44:bc:ed:e6:2b:f0:73:21:1d:28:fb:7f:8d:c6:
f5:52:d5:8b:12:6c:16:fd:40:f5:bd:ec:da:ba:26:d7:9e:5d:
5c:28:b4:6b:0c:3f:8e:96:17:6f:4b:1b:5c:62:87:87:6f:1c:
1f:28:ec:da:b2:6d:55:04:90:cf:73:89:c4:33:59:ff:1b:83:
15:81:ad:06:b7:40:bb:8d:a0:94:13:96:17:28:b2:36:79:fb:
2b:95:fb:ba:75:35:77:79:8b:69:75:ee:f6:51:ea:b7:f0:14:
db:33:63:44:5e:1e:08:74:c3:5b:d7:e4:b3:13:22:d9:1d:91:
b8:32:23:b2:ee:37:0e:7b:bc:61:c9:ae:28:7e:f7:ea:16:56:
0a:c9:9d:02:3a:df:15:1c:60:b2:f6:d4:c6:e5:29:a3:01:17:
6c:86:79:38:65:4c:2b:5b:af:16:d5:b7:c1:a4:96:bf:ce:c9:
cd:24:fb:85:b8:a7:13:95:8b:90:51:da:15:07:dd:eb:4e:31:
c5:05:ed:16:b3:9b:45:f6:5a:e4:16:8d:cb:3b:0f:b6:77:80:
5b:6d:7e:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhCvnYCmRIQYK0RFmW4RJ07MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZmVjZmEwZTY2OTI1OTVjZmJlYTUyNjYwNzZlOGU1M2Vm
ZDk0NjEwHhcNMjUwNzI1MTgwMDM0WhcNMjUwNzI2MTgwMDM0WjAzMTEwLwYDVQQD
Eyg1MzcwMmVlNTJlOTcxMGE5YTg4MGRlZjQxZDAyMWU4ZDk4NTBjMGQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1wR3KNKQN0jotEU1tcv8JOCljeZF
d1sVPhdRtBtqz7p/PaIeWTyYA7sDQch63yyjxSYJhqyDVwfiNLccEfZZE7FIcjce
EGp1Spa3+sh+sNWoJDk04sfKB1ELQJNqvAneEQ9aLctROlLRVlLusSpIzoXHdE7v
6tDObY+0epW5yj4N3/+lmxxCzHjY6WGYSbmPxDPeudfbYHI5eme3KypvUZlyTJow
MUCm290KYfNmnmaQashuTofGO0tKv/Ymh1z2FN1/cF97UOhYFcdxuqpJgZHimZ1O
C+iau7KhqvyMlSXYwEF8o810FFjy3cU9mZ1+uqxkN+/aP6BImaTS+kriEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFNwLuUulxCpqIDe9B0CHo2YUMDRMB8GA1UdIwQY
MBaAFG3+z6DmaSWVz76lJmB26OU+/ZRhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMt
Zjk4OGQ0OGU1MWU4LzEvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMtZjk4OGQ0OGU1MWU4
LzEvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe4e300LH
aMKO65zZET0yD1/usW4kmOf4Iy1H5HjJ5HO0hCK8yun62kS87eYr8HMhHSj7f43G
9VLVixJsFv1A9b3s2rom155dXCi0aww/jpYXb0sbXGKHh28cHyjs2rJtVQSQz3OJ
xDNZ/xuDFYGtBrdAu42glBOWFyiyNnn7K5X7unU1d3mLaXXu9lHqt/AU2zNjRF4e
CHTDW9fksxMi2R2RuDIjsu43Dnu8YcmuKH736hZWCsmdAjrfFRxgsvbUxuUpowEX
bIZ5OGVMK1uvFtW3waSWv87JzST7hbinE5WLkFHaFQfd604xxQXtFrObRfZa5BaN
yzsPtneAW21+Zw==
-----END CERTIFICATE-----
Generated at Sat Jul 26 00:21:46 2025 by rpki-client