Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft
File: BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft (raw, json)
Hash identifier: 4qNs+hVIjzspu1pbqhv2IthI3BiTI47YOKlySOgCSeo=
Subject key identifier: 78:B9:E7:58:ED:AC:8E:A6:DA:25:A1:37:1A:24:FD:BC:87:B9:3C:74
Authority key identifier: 05:F2:74:8C:B4:38:62:A1:04:B5:6F:8C:62:04:B6:20:97:06:55:8C
Certificate issuer: /CN=05f2748cb43862a104b56f8c6204b6209706558c
Certificate serial: 0198D5835EF117BF19D37774341B4A88CB52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft
Manifest number: 0D34
Signing time: Sat 23 Aug 2025 06:00:13 +0000
Manifest this update: Sat 23 Aug 2025 06:00:13 +0000
Manifest next update: Sun 24 Aug 2025 06:00:13 +0000
Files and hashes: 1: BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.crl (hash: keUwMdYzZT8Uoy3gNilhJj1At+iH+oYZhxwdqf9pAvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:5e:f1:17:bf:19:d3:77:74:34:1b:4a:88:cb:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f2748cb43862a104b56f8c6204b6209706558c
Validity
Not Before: Aug 23 06:00:13 2025 GMT
Not After : Aug 24 06:00:13 2025 GMT
Subject: CN=78b9e758edac8ea6da25a1371a24fdbc87b93c74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a1:62:58:a9:dd:a9:71:b0:f9:97:e1:54:25:
35:b5:a9:a8:5e:19:a3:be:42:ad:2e:26:ee:43:dd:
3d:c3:f7:27:d1:e2:39:02:28:49:e0:89:ca:84:68:
1e:2f:20:f3:5d:ed:c5:d9:d3:18:c3:1d:88:e4:d4:
32:fa:4c:ff:95:1f:4d:be:06:03:3f:f4:16:47:d3:
79:a8:ef:10:ef:ee:13:b4:ac:ff:c3:7c:b8:db:71:
a3:08:2e:34:cf:df:e1:5b:09:46:61:93:b1:bf:76:
f5:b5:5c:ee:99:ad:06:56:d8:3b:0b:0e:af:96:f1:
f6:67:48:a5:ba:fb:8c:16:6d:76:f5:dc:c8:f7:cd:
9f:e2:11:60:1f:d6:37:63:de:17:18:94:e4:a1:d1:
8d:f0:4d:d5:e4:62:13:5f:58:b2:43:84:d4:c2:75:
82:86:e1:ab:f5:0a:d1:4b:a9:d2:0a:62:12:6b:2b:
c8:5f:f5:97:f7:b1:17:c8:cf:c8:d8:c3:29:bc:c0:
86:22:7b:5b:d6:4f:ef:1b:88:05:10:ea:f1:8c:c8:
15:1d:e2:b4:ce:fb:bd:91:f6:bd:e1:9d:e2:86:02:
e4:f1:6b:0e:6e:9e:70:42:cb:aa:bf:ad:f3:60:9e:
ff:4c:ab:8d:7f:b8:9c:3d:12:9b:f4:9c:64:24:0d:
09:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:B9:E7:58:ED:AC:8E:A6:DA:25:A1:37:1A:24:FD:BC:87:B9:3C:74
X509v3 Authority Key Identifier:
keyid:05:F2:74:8C:B4:38:62:A1:04:B5:6F:8C:62:04:B6:20:97:06:55:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:49:bb:90:41:32:d7:4b:17:5e:c8:bf:dc:65:6e:33:ca:f0:
fc:7a:52:bc:f3:5f:ce:e4:cc:c8:d4:a2:11:22:62:2d:af:cc:
e1:69:7d:bf:ef:7f:ed:8f:35:fd:b3:48:e7:c7:09:54:88:b0:
7d:8e:83:8f:4b:ff:d4:6b:4e:5d:63:af:5c:d1:4d:ad:fd:5a:
fe:7b:91:47:2e:4b:2b:19:32:de:ee:de:0e:7e:67:c5:bf:ab:
c7:f6:bf:ec:e9:8d:02:27:55:c9:c6:18:9f:82:6c:96:c8:7f:
8a:d1:1c:53:75:4b:2d:05:30:87:19:a2:d4:5a:ff:a1:b5:76:
95:94:ca:19:73:e8:ed:84:cd:60:da:61:e7:97:d2:44:02:0c:
ef:a8:2b:be:84:b8:ac:60:86:c4:0c:f0:5a:f3:05:27:9c:f7:
74:4f:cd:74:c3:c3:10:65:07:93:4b:6c:16:02:f5:6c:16:8e:
ba:11:d7:45:2b:50:ad:b3:0b:da:76:1b:99:86:13:03:59:b1:
70:70:07:7a:20:fd:8d:94:c3:b7:c9:15:15:d8:52:d4:68:f4:
c3:66:28:8e:5b:af:0c:54:c6:e6:34:53:96:d6:ad:3e:8a:b5:
6c:90:40:b8:27:c9:f2:67:4e:9a:25:4c:a1:9f:37:e9:e1:2e:
b3:ed:bf:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVg17xF78Z03d0NBtKiMtSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1ZjI3NDhjYjQzODYyYTEwNGI1NmY4YzYyMDRiNjIwOTcw
NjU1OGMwHhcNMjUwODIzMDYwMDEzWhcNMjUwODI0MDYwMDEzWjAzMTEwLwYDVQQD
Eyg3OGI5ZTc1OGVkYWM4ZWE2ZGEyNWExMzcxYTI0ZmRiYzg3YjkzYzc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy6FiWKndqXGw+ZfhVCU1tamoXhmj
vkKtLibuQ909w/cn0eI5AihJ4InKhGgeLyDzXe3F2dMYwx2I5NQy+kz/lR9NvgYD
P/QWR9N5qO8Q7+4TtKz/w3y423GjCC40z9/hWwlGYZOxv3b1tVzuma0GVtg7Cw6v
lvH2Z0iluvuMFm129dzI982f4hFgH9Y3Y94XGJTkodGN8E3V5GITX1iyQ4TUwnWC
huGr9QrRS6nSCmISayvIX/WX97EXyM/I2MMpvMCGIntb1k/vG4gFEOrxjMgVHeK0
zvu9kfa94Z3ihgLk8WsObp5wQsuqv63zYJ7/TKuNf7icPRKb9JxkJA0JIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHi551jtrI6m2iWhNxok/byHuTx0MB8GA1UdIwQY
MBaAFAXydIy0OGKhBLVvjGIEtiCXBlWMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmZKMGpMUTRZcUVFdFctTVlnUzJJSmNHVll3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC80ODVmYjQtMzAyNy00NmNjLWJkNjct
ODA5YTRiN2FiNGI1LzEvQmZKMGpMUTRZcUVFdFctTVlnUzJJSmNHVll3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC80ODVmYjQtMzAyNy00NmNjLWJkNjctODA5YTRiN2FiNGI1
LzEvQmZKMGpMUTRZcUVFdFctTVlnUzJJSmNHVll3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX0m7kEEy
10sXXsi/3GVuM8rw/HpSvPNfzuTMyNSiESJiLa/M4Wl9v+9/7Y81/bNI58cJVIiw
fY6Dj0v/1GtOXWOvXNFNrf1a/nuRRy5LKxky3u7eDn5nxb+rx/a/7OmNAidVycYY
n4Jslsh/itEcU3VLLQUwhxmi1Fr/obV2lZTKGXPo7YTNYNph55fSRAIM76grvoS4
rGCGxAzwWvMFJ5z3dE/NdMPDEGUHk0tsFgL1bBaOuhHXRStQrbML2nYbmYYTA1mx
cHAHeiD9jZTDt8kVFdhS1Gj0w2YojluvDFTG5jRTltatPoq1bJBAuCfJ8mdOmiVM
oZ836eEus+2/Gg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:31:41 2025 by rpki-client