Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
File: BSAFu2w9aGW4nBDzOwuZS3Svljs.mft (raw, json)
Hash identifier: io5UjuB9NR5rmE8aKcOzMTYSz0unPo2JtQdozQ0Q5Wc=
Subject key identifier: 67:71:16:98:CE:ED:56:F1:32:4F:A9:2E:01:38:1D:10:18:83:C7:82
Authority key identifier: 05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
Certificate issuer: /CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Certificate serial: 0199FFC85B31E03023294A7B950B7C5213CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
Manifest number: 16E6
Signing time: Mon 20 Oct 2025 04:02:24 +0000
Manifest this update: Mon 20 Oct 2025 04:02:24 +0000
Manifest next update: Tue 21 Oct 2025 04:02:24 +0000
Files and hashes: 1: BSAFu2w9aGW4nBDzOwuZS3Svljs.crl (hash: hHEZtEtIivY7VfKYiZZ9HKopwpSpAqAHbq3796gk5lA=)
2: ir1RS50i8n6-S2GFn7ZgzEJxgqk.roa (hash: c+oT6rdCWtyUihO7r4CT9JSZ34sdZ4eqqblxSm+cQz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 04:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c8:5b:31:e0:30:23:29:4a:7b:95:0b:7c:52:13:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Validity
Not Before: Oct 20 04:02:24 2025 GMT
Not After : Oct 21 04:02:24 2025 GMT
Subject: CN=67711698ceed56f1324fa92e01381d101883c782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:38:68:ba:f0:d4:01:82:2e:f8:df:61:47:7e:
a7:c4:a5:3f:ca:27:ab:65:41:41:64:27:f5:10:6d:
9a:94:a5:9a:0c:10:0f:09:65:23:3f:f4:4b:84:ce:
a5:d0:51:6a:2c:35:44:0b:bb:ee:8a:dd:ef:a6:04:
f3:43:52:3d:72:64:04:06:9d:7d:31:78:94:24:0b:
7e:10:ce:9a:a4:b7:b2:59:9e:9c:cf:f6:ab:ee:00:
03:2f:f6:3c:62:b4:3d:9a:85:46:3a:60:8d:3b:20:
1e:21:ff:06:8e:e7:67:15:15:5c:ef:ef:aa:96:97:
e5:96:f5:75:fd:50:7f:5c:63:16:b7:0d:82:26:2c:
8a:d5:a6:f6:6c:69:ff:3f:4b:dc:d8:d6:36:75:4b:
f9:3f:d2:bc:a5:2a:98:89:05:67:f7:59:9c:21:a7:
bf:24:65:6f:2d:79:2d:8a:b4:7e:dd:2e:c8:96:f2:
1b:56:6c:fb:3c:6f:d9:2b:6d:37:8b:05:e1:f7:99:
3e:b2:be:bb:c4:32:1f:1e:56:cf:96:28:b8:ba:41:
0b:23:21:1b:3f:ae:60:28:fe:5f:e9:13:40:65:fd:
7b:09:79:d1:d1:4b:4d:f2:43:c0:16:13:27:a4:b5:
66:56:ef:8c:42:07:43:9c:d6:c7:ee:0c:bf:43:fa:
bb:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:71:16:98:CE:ED:56:F1:32:4F:A9:2E:01:38:1D:10:18:83:C7:82
X509v3 Authority Key Identifier:
keyid:05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:d2:db:a8:1e:28:b5:16:a7:7c:7d:e6:7a:54:b7:53:6a:59:
23:ac:bb:4f:18:57:8d:82:24:6e:75:5b:ea:a7:14:c2:b0:ba:
67:27:05:6b:5d:20:64:8e:0c:8d:68:e1:7f:8f:3d:4b:7b:1b:
b0:46:96:ac:e9:09:47:94:b7:37:e4:bb:ec:6f:12:02:9b:78:
9f:db:5d:54:de:34:90:1a:93:fd:cb:b1:c7:26:99:bd:1a:15:
70:1d:41:d0:29:9d:44:aa:55:ff:b5:04:49:bf:aa:b9:a9:94:
db:59:5b:39:07:0c:d7:83:ea:96:5a:74:c7:7f:3b:92:08:0a:
fc:7c:af:be:77:08:3a:cf:66:0b:7d:29:69:70:aa:9b:ec:f1:
41:36:2a:46:a3:81:a7:48:3b:e8:1d:a6:b1:00:e1:03:f0:e2:
61:4a:95:08:f6:1a:ea:c3:e8:34:51:09:9c:09:b7:76:80:52:
34:99:55:99:e0:75:ca:be:41:b5:38:ab:2b:ee:9c:95:16:48:
23:27:5c:39:a6:83:b8:30:42:4c:ee:64:7f:64:c7:d7:dc:b6:
36:96:78:d9:47:bc:2d:5c:f8:9a:6d:08:52:7e:cd:4d:70:18:
b1:ed:03:d3:a4:5e:90:09:60:54:63:be:fd:1f:b9:09:ee:4e:
82:a7:64:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:36:19 2025 by rpki-client