Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
File: bfHIcky70DS6t6Da3wq0uZ_2b_8.mft (raw, json)
Hash identifier: aMxMCeCd8AC3mg0MICLrBv9B0ea09Zg7pbgt3hWvRwU=
Subject key identifier: F1:42:E9:93:48:1E:B7:44:B5:AC:A2:0F:ED:D1:1A:58:EE:AF:63:45
Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Certificate serial: 0199FB4603336117BBB0835B72594D509D0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 07:01:33 +0000
Manifest this update: Sun 19 Oct 2025 07:01:33 +0000
Manifest next update: Mon 20 Oct 2025 07:01:33 +0000
Files and hashes: 1: 3gASlQlN9UdPtrWqrdLITdzt5Ew.roa (hash: ramhN8+V67WDz+dJge66wgSFRzcM7UnMyKgsybDZiQA=)
2: bfHIcky70DS6t6Da3wq0uZ_2b_8.crl (hash: a1sg+alW3fsWrqOtFVXqibEM3M5Tp7Yu7EDMf0v+ZUU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:46:03:33:61:17:bb:b0:83:5b:72:59:4d:50:9d:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Validity
Not Before: Oct 19 07:01:33 2025 GMT
Not After : Oct 20 07:01:33 2025 GMT
Subject: CN=f142e993481eb744b5aca20fedd11a58eeaf6345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:55:a4:a7:7c:64:6b:06:19:2a:c3:22:76:28:
c1:6c:fc:eb:4f:4b:48:36:6e:7c:13:70:1d:d1:86:
c3:3c:b7:09:5c:57:11:6d:5a:5e:e3:28:44:e9:0e:
e2:c8:fe:e9:9b:12:b0:f2:b0:70:1f:2e:30:e9:dd:
f7:fc:64:39:04:de:66:98:1f:6d:60:ae:b2:20:a0:
43:87:be:97:e3:e6:f9:a7:3c:d6:e0:14:d8:92:42:
6e:a9:76:ef:c3:e7:26:55:10:d5:cc:2e:dd:91:7c:
8b:34:09:72:ad:7e:b5:97:f4:a7:6f:43:0b:9c:28:
6b:b1:7d:97:42:41:33:8f:fa:33:24:9a:9b:97:24:
89:cc:1d:ef:14:e1:44:c8:c7:9a:27:22:8b:98:10:
fa:dd:9a:2c:d5:a4:0b:84:7c:4c:f7:41:cf:01:a7:
34:93:b6:29:2b:ff:01:81:17:2d:be:03:6c:18:af:
db:d2:59:57:81:66:e3:46:6b:4e:1a:6a:56:0d:7f:
66:48:91:65:e7:d0:5f:d2:ba:94:20:72:94:a1:43:
fe:63:f5:6b:66:71:5e:a5:cd:71:5d:1c:6f:f8:62:
f6:0a:ca:eb:4b:64:f6:5a:41:5e:4d:cc:2d:82:68:
e9:e0:b6:e9:86:35:f7:e7:60:96:07:cc:ba:d1:8b:
db:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:42:E9:93:48:1E:B7:44:B5:AC:A2:0F:ED:D1:1A:58:EE:AF:63:45
X509v3 Authority Key Identifier:
keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:7f:fc:9e:ce:0f:0d:63:5a:69:d3:aa:af:33:34:af:55:9d:
18:b2:a5:37:32:b2:68:8e:3e:7b:42:9c:20:6e:c7:62:5a:12:
25:27:6c:0f:16:23:70:b5:23:4f:85:27:3f:56:5e:a0:cc:8c:
06:01:f3:97:b6:68:0f:08:7d:ec:06:20:49:cb:3d:62:9b:60:
54:80:1c:28:c2:9c:e1:50:30:32:e2:a0:8f:d0:1e:ba:ea:6d:
9f:88:9d:17:f6:33:4f:72:6c:00:9a:83:3b:21:28:81:c6:56:
bc:23:3b:4c:11:c9:60:3c:08:51:0d:8d:43:b8:8e:30:71:a2:
26:00:5b:7d:34:d0:3f:17:a6:84:21:fa:c9:2f:3d:a8:ac:78:
b7:bf:67:1b:6b:e2:d1:34:a1:c7:41:88:f8:dd:2d:99:68:95:
23:af:34:a6:f0:cd:0e:d9:97:1e:a7:95:63:d1:38:f1:65:a6:
21:8e:41:99:53:b9:9a:c5:34:cc:ef:e4:6b:26:b4:bc:1e:e1:
7d:88:50:1b:9a:36:db:0f:29:f1:76:91:ca:bb:ca:07:31:a1:
62:e1:9a:1d:53:1c:94:87:3e:95:37:54:96:88:91:15:a7:b9:
40:3e:b0:b6:e9:de:ea:6e:8c:98:98:fb:db:1e:7f:ff:b2:1d:
f1:bc:af:0a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7RgMzYRe7sINbcllNUJ0LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZjFjODcyNGNiYmQwMzRiYWI3YTBkYWRmMGFiNGI5OWZm
NjZmZmYwHhcNMjUxMDE5MDcwMTMzWhcNMjUxMDIwMDcwMTMzWjAzMTEwLwYDVQQD
EyhmMTQyZTk5MzQ4MWViNzQ0YjVhY2EyMGZlZGQxMWE1OGVlYWY2MzQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA71Wkp3xkawYZKsMidijBbPzrT0tI
Nm58E3Ad0YbDPLcJXFcRbVpe4yhE6Q7iyP7pmxKw8rBwHy4w6d33/GQ5BN5mmB9t
YK6yIKBDh76X4+b5pzzW4BTYkkJuqXbvw+cmVRDVzC7dkXyLNAlyrX61l/Snb0ML
nChrsX2XQkEzj/ozJJqblySJzB3vFOFEyMeaJyKLmBD63Zos1aQLhHxM90HPAac0
k7YpK/8BgRctvgNsGK/b0llXgWbjRmtOGmpWDX9mSJFl59Bf0rqUIHKUoUP+Y/Vr
ZnFepc1xXRxv+GL2CsrrS2T2WkFeTcwtgmjp4LbphjX352CWB8y60YvbVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPFC6ZNIHrdEtayiD+3RGljur2NFMB8GA1UdIwQY
MBaAFG3xyHJMu9A0ureg2t8KtLmf9m//MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9lMDc4MWYtNmU2NC00NmFhLThhZjAt
ZjkyNGQ2ZjZhNTk1LzEvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9lMDc4MWYtNmU2NC00NmFhLThhZjAtZjkyNGQ2ZjZhNTk1
LzEvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZn/8ns4P
DWNaadOqrzM0r1WdGLKlNzKyaI4+e0KcIG7HYloSJSdsDxYjcLUjT4UnP1ZeoMyM
BgHzl7ZoDwh97AYgScs9YptgVIAcKMKc4VAwMuKgj9Aeuuptn4idF/YzT3JsAJqD
OyEogcZWvCM7TBHJYDwIUQ2NQ7iOMHGiJgBbfTTQPxemhCH6yS89qKx4t79nG2vi
0TShx0GI+N0tmWiVI680pvDNDtmXHqeVY9E48WWmIY5BmVO5msU0zO/kaya0vB7h
fYhQG5o22w8p8XaRyrvKBzGhYuGaHVMclIc+lTdUloiRFae5QD6wtune6m6MmJj7
2x5//7Id8byvCg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:14:29 2025 by rpki-client