Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
File: bfhqH1cK4xUpAiqk9h79nsK5fQU.mft (raw, json)
Hash identifier: ze7NPiR324bVB8jdvnL2H+rMj0uHUr4fCyvE8W1Z/TA=
Subject key identifier: CA:7D:BF:9B:1A:4E:D6:66:AC:54:D9:EB:ED:5B:B3:42:2B:06:3C:C4
Authority key identifier: 6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
Certificate issuer: /CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Certificate serial: 0199FBEB9D0098F220ABD984C40F9F3DF03A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
Manifest number: 155D
Signing time: Sun 19 Oct 2025 10:02:26 +0000
Manifest this update: Sun 19 Oct 2025 10:02:26 +0000
Manifest next update: Mon 20 Oct 2025 10:02:26 +0000
Files and hashes: 1: BpLbGApyHXLB4qqgJyw3nGH9lH0.roa (hash: 4AoUx/2M994KEwtEdAKInOt11G1446xmTonI1qJPrOg=)
2: bfhqH1cK4xUpAiqk9h79nsK5fQU.crl (hash: qlqnzGG1K9GbZxBhLfLP5uqPPpcTp6P9ug6dmS9vq98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:9d:00:98:f2:20:ab:d9:84:c4:0f:9f:3d:f0:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Validity
Not Before: Oct 19 10:02:26 2025 GMT
Not After : Oct 20 10:02:26 2025 GMT
Subject: CN=ca7dbf9b1a4ed666ac54d9ebed5bb3422b063cc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ce:96:35:52:ce:10:ee:08:56:01:e7:41:66:
b9:9a:8a:9f:83:6a:96:48:3d:80:7e:5d:80:7d:a7:
bc:f5:5e:bf:d9:14:1e:f1:11:92:d1:c4:9a:7c:4a:
5f:52:4a:6c:7f:fc:39:a4:b0:01:30:fc:17:08:c7:
47:d6:c8:6a:24:43:2a:66:9d:83:09:5a:8a:a6:36:
7e:11:3e:ef:c4:bc:1a:db:7c:96:cd:86:cc:27:61:
d4:ea:01:92:1b:48:e2:ec:55:67:7a:db:49:73:c7:
c1:14:7b:9a:c8:1c:bf:78:09:53:37:76:2f:15:8c:
25:51:46:c5:ee:7e:42:29:e3:de:2c:08:b6:f9:67:
49:01:92:50:2d:98:48:4e:03:23:8a:87:77:12:09:
30:7d:51:4c:aa:ac:aa:12:4e:a9:de:51:ef:ef:b6:
fa:a6:9d:45:89:d8:b5:73:a8:45:03:c2:7a:0a:9c:
78:a3:24:ed:f1:cb:e9:ab:74:36:77:07:ae:5e:db:
b0:e9:c2:7f:a2:c0:9e:79:49:f3:f4:35:51:bc:82:
b9:68:9d:20:bf:6a:55:5e:6f:66:f8:79:7a:c6:0c:
82:0e:4d:ac:a3:e2:d2:de:19:c9:5f:54:90:1b:b7:
76:35:14:43:8d:65:2f:38:44:f7:8d:6e:b6:72:a7:
12:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:7D:BF:9B:1A:4E:D6:66:AC:54:D9:EB:ED:5B:B3:42:2B:06:3C:C4
X509v3 Authority Key Identifier:
keyid:6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:c9:b1:60:9f:bd:0b:de:a1:78:cb:56:b6:cf:9a:07:77:18:
a3:19:17:61:af:9e:5f:0a:0e:1a:66:54:34:1a:9d:a3:7c:df:
30:9e:86:26:2d:f7:16:3f:3a:6c:a0:a3:06:78:9e:82:f1:7b:
9c:54:c5:c8:d2:30:4d:ce:2c:c7:4b:2b:1f:3f:b6:6a:6d:07:
75:d8:96:cf:d3:4a:a5:29:2e:6e:e7:99:e1:ca:83:9a:cf:70:
9f:8e:a4:f0:1e:29:6b:57:8e:7c:95:08:ea:95:59:fe:d3:83:
c7:00:96:8e:b6:f7:4b:c3:2f:ee:ac:c1:9d:46:02:e8:6b:c3:
be:7b:48:06:d5:ad:23:fc:90:a8:e4:18:64:39:ec:96:7e:e2:
fb:99:af:9f:06:79:97:bc:d3:f5:62:95:b8:75:76:8d:54:93:
fa:39:56:ea:0a:86:f2:92:3c:89:43:e2:ab:da:a1:66:38:ae:
13:ca:b2:07:d2:5d:1e:89:6a:8e:e2:01:3e:8f:70:d3:76:fe:
d3:94:d0:7b:74:ec:a0:52:87:4e:4f:03:61:34:42:95:a2:48:
48:97:96:58:20:20:84:35:62:b0:f3:17:fc:e0:1d:33:99:89:
f0:a6:ad:f5:1a:39:20:4f:13:eb:ee:be:4b:0e:5a:d0:d4:e6:
86:44:9d:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7650AmPIgq9mExA+fPfA6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZjg2YTFmNTcwYWUzMTUyOTAyMmFhNGY2MWVmZDllYzJi
OTdkMDUwHhcNMjUxMDE5MTAwMjI2WhcNMjUxMDIwMTAwMjI2WjAzMTEwLwYDVQQD
EyhjYTdkYmY5YjFhNGVkNjY2YWM1NGQ5ZWJlZDViYjM0MjJiMDYzY2M0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwc6WNVLOEO4IVgHnQWa5moqfg2qW
SD2Afl2Afae89V6/2RQe8RGS0cSafEpfUkpsf/w5pLABMPwXCMdH1shqJEMqZp2D
CVqKpjZ+ET7vxLwa23yWzYbMJ2HU6gGSG0ji7FVnettJc8fBFHuayBy/eAlTN3Yv
FYwlUUbF7n5CKePeLAi2+WdJAZJQLZhITgMjiod3EgkwfVFMqqyqEk6p3lHv77b6
pp1Fidi1c6hFA8J6Cpx4oyTt8cvpq3Q2dweuXtuw6cJ/osCeeUnz9DVRvIK5aJ0g
v2pVXm9m+Hl6xgyCDk2so+LS3hnJX1SQG7d2NRRDjWUvOET3jW62cqcS2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMp9v5saTtZmrFTZ6+1bs0IrBjzEMB8GA1UdIwQY
MBaAFG34ah9XCuMVKQIqpPYe/Z7CuX0FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmZocUgxY0s0eFVwQWlxazloNzluc0s1ZlFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS82YWRkMzUtYTk4My00MDExLWFmOGEt
N2FhYzJkODQ3OTU1LzEvYmZocUgxY0s0eFVwQWlxazloNzluc0s1ZlFVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS82YWRkMzUtYTk4My00MDExLWFmOGEtN2FhYzJkODQ3OTU1
LzEvYmZocUgxY0s0eFVwQWlxazloNzluc0s1ZlFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN8mxYJ+9
C96heMtWts+aB3cYoxkXYa+eXwoOGmZUNBqdo3zfMJ6GJi33Fj86bKCjBniegvF7
nFTFyNIwTc4sx0srHz+2am0HddiWz9NKpSkubueZ4cqDms9wn46k8B4pa1eOfJUI
6pVZ/tODxwCWjrb3S8Mv7qzBnUYC6GvDvntIBtWtI/yQqOQYZDnsln7i+5mvnwZ5
l7zT9WKVuHV2jVST+jlW6gqG8pI8iUPiq9qhZjiuE8qyB9JdHolqjuIBPo9w03b+
05TQe3TsoFKHTk8DYTRClaJISJeWWCAghDVisPMX/OAdM5mJ8Kat9Ro5IE8T6+6+
Sw5a0NTmhkSdMQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:10 2025 by rpki-client