Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft
File: BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft (raw, json)
Hash identifier: CxiTM5AAYVQm7PauVZ7CGzPesTOFlFKsYyyinaP0OPg=
Subject key identifier: 0E:B7:C7:5D:AF:B0:6B:6E:61:FF:97:7B:C7:CE:71:6D:C4:22:83:18
Authority key identifier: 05:F2:74:8C:B4:38:62:A1:04:B5:6F:8C:62:04:B6:20:97:06:55:8C
Certificate issuer: /CN=05f2748cb43862a104b56f8c6204b6209706558c
Certificate serial: 019A00D9EBFAEE849C04EE52C8339C97C368
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft
Manifest number: 0DCF
Signing time: Mon 20 Oct 2025 09:01:12 +0000
Manifest this update: Mon 20 Oct 2025 09:01:12 +0000
Manifest next update: Tue 21 Oct 2025 09:01:12 +0000
Files and hashes: 1: BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.crl (hash: pWbOQ4cXi/oiziv4eldfLwuf0L82QvchK7WbQ0LXZbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 09:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:d9:eb:fa:ee:84:9c:04:ee:52:c8:33:9c:97:c3:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f2748cb43862a104b56f8c6204b6209706558c
Validity
Not Before: Oct 20 09:01:12 2025 GMT
Not After : Oct 21 09:01:12 2025 GMT
Subject: CN=0eb7c75dafb06b6e61ff977bc7ce716dc4228318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:48:3b:69:d6:8e:cd:6c:de:18:33:e3:d1:42:
ec:43:08:f0:14:da:a0:8d:ec:54:c0:45:d4:ee:77:
9d:45:5b:0d:c3:d7:e5:3b:25:cd:46:fa:48:bf:16:
46:15:bc:fc:37:4e:a8:4b:31:ce:79:08:fd:cc:98:
39:be:2a:c5:98:b9:08:34:53:4a:99:83:86:cb:b2:
ee:63:bd:fe:ad:4f:20:ed:9d:36:09:ad:9a:94:97:
6d:ad:6d:86:50:fe:32:7a:48:c0:88:a2:ee:9b:4d:
9d:b5:39:3d:e0:37:32:60:69:5a:53:e4:b2:73:18:
7c:09:e8:2a:ce:6e:75:03:77:01:1e:ff:2d:a3:3e:
25:d9:41:8e:d2:7b:05:b0:55:ef:90:ea:a9:34:73:
51:c4:af:3a:a9:7b:6b:76:7c:c9:20:b5:6f:97:72:
90:33:f9:61:8e:3b:d4:de:87:07:0a:a6:db:af:d8:
5e:01:1a:06:b1:3a:2e:4d:10:14:58:8d:0a:db:97:
b7:af:fd:89:1c:fb:c9:94:7d:bc:22:0a:12:68:c7:
71:bc:94:59:84:06:98:7a:35:6a:89:58:d8:fd:d8:
10:ea:8e:13:14:f2:eb:3c:e5:87:5f:46:f4:b2:73:
7c:e1:85:e6:a5:43:1e:0e:4b:02:0b:2f:dc:03:f0:
0f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:B7:C7:5D:AF:B0:6B:6E:61:FF:97:7B:C7:CE:71:6D:C4:22:83:18
X509v3 Authority Key Identifier:
keyid:05:F2:74:8C:B4:38:62:A1:04:B5:6F:8C:62:04:B6:20:97:06:55:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:2b:fd:b3:ef:ec:d1:99:ca:7b:42:1c:68:ee:07:f8:cf:d7:
34:fa:95:04:1a:bd:5a:96:e7:09:be:c2:ab:23:66:87:f0:b6:
71:84:d4:79:cc:8c:26:e4:03:23:e7:bb:61:fe:f9:d2:c8:62:
ab:11:fe:9f:27:21:fd:a5:ab:a3:e2:43:01:37:ab:a5:e8:52:
a3:41:9e:03:d1:97:3c:8f:03:19:ab:0e:00:20:3a:6c:e0:6f:
82:98:af:fc:84:59:28:21:b8:a0:9e:e3:8f:a4:d1:8d:a5:f4:
7d:69:01:60:f2:2c:74:46:24:ff:12:2d:93:7a:8c:99:4a:0e:
be:70:db:5b:0e:e1:c1:dc:bc:05:45:55:6d:a4:7b:e3:25:c8:
a2:85:91:8c:08:f9:7f:d1:00:09:ab:5a:f1:f4:1e:62:5b:31:
25:d8:db:df:24:55:d4:40:e2:c4:85:86:df:63:9c:89:8b:e7:
f3:11:5f:c5:fe:aa:bb:ef:73:16:bb:3d:74:59:fe:6f:0a:0b:
c6:2a:6e:e1:cd:e0:ce:b6:df:ee:13:54:a6:62:36:27:25:bd:
e9:8c:d6:14:d3:bd:8c:8a:c8:33:32:f0:89:4b:e5:73:ab:42:
dd:e6:1d:f3:77:2a:46:d1:50:ca:7b:94:a1:ed:4a:24:e3:bd:
34:6b:d0:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:56:29 2025 by rpki-client