Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
File: BSAFu2w9aGW4nBDzOwuZS3Svljs.mft (raw, json)
Hash identifier: oZVV41e42z7oOPJdpC5ZxWIPZvqNY9xn69RNMf9upRA=
Subject key identifier: D6:DB:03:54:C7:71:75:66:C5:97:99:4D:37:42:CA:96:22:79:7B:64
Authority key identifier: 05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
Certificate issuer: /CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Certificate serial: 0198D65F4DB464156140B6FA02A6A0BD9B5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 10:00:26 +0000
Manifest this update: Sat 23 Aug 2025 10:00:26 +0000
Manifest next update: Sun 24 Aug 2025 10:00:26 +0000
Files and hashes: 1: BSAFu2w9aGW4nBDzOwuZS3Svljs.crl (hash: Mw90GprAkNr6x57uW4Pox7Eteq3qt25NYWCXBJKwzUo=)
2: ir1RS50i8n6-S2GFn7ZgzEJxgqk.roa (hash: c+oT6rdCWtyUihO7r4CT9JSZ34sdZ4eqqblxSm+cQz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:4d:b4:64:15:61:40:b6:fa:02:a6:a0:bd:9b:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Validity
Not Before: Aug 23 10:00:26 2025 GMT
Not After : Aug 24 10:00:26 2025 GMT
Subject: CN=d6db0354c7717566c597994d3742ca9622797b64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fb:df:8a:65:3c:3b:e3:bb:c7:a1:cf:ab:86:
c6:f7:e3:70:03:bd:38:be:10:ea:82:82:c7:e5:79:
68:c3:4b:38:9c:0e:02:c6:2c:f3:38:94:02:ef:3b:
ea:38:f7:ea:ed:99:12:e0:06:64:01:4f:20:13:ca:
41:a4:8c:b7:7c:77:41:93:15:81:c6:43:94:4c:b4:
27:07:35:da:bb:9a:03:1d:67:03:46:55:54:3c:ed:
2b:2d:bf:ea:b8:e1:e1:ce:95:b6:52:df:e6:b1:d1:
04:86:b7:e5:40:dd:29:df:18:76:a5:1e:88:87:4f:
b7:37:20:c4:7e:8f:3b:01:b5:42:5d:08:ad:92:5d:
a6:98:6a:3f:a0:26:e2:e5:9d:b2:9e:34:35:f4:e3:
22:5a:6f:2e:bd:48:de:49:f8:eb:af:a6:73:37:de:
6d:cf:73:c8:a9:98:0d:78:2e:5d:a2:85:32:4f:67:
a8:69:7b:8a:cc:6d:d0:85:37:60:30:25:1e:dc:7b:
14:fe:a8:41:93:c9:2e:3c:38:bf:19:25:08:3e:e6:
27:33:cb:67:09:0e:a1:50:be:31:f2:70:9c:9d:51:
79:09:ef:cd:0e:76:c1:aa:aa:7b:8b:22:c2:78:f6:
65:8e:88:10:3b:e3:e5:ff:db:fb:56:b9:4f:fa:cb:
10:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:DB:03:54:C7:71:75:66:C5:97:99:4D:37:42:CA:96:22:79:7B:64
X509v3 Authority Key Identifier:
keyid:05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:9f:98:10:51:16:ad:32:1b:e9:f0:6c:37:55:d8:71:84:46:
6d:81:ab:0f:e1:31:7f:1f:b0:f9:43:cf:ca:c9:9b:0f:03:59:
b9:6d:98:8a:5f:34:71:e3:5e:db:64:c1:33:91:4b:af:6d:d4:
3d:32:27:5d:1d:80:b8:26:92:a8:3c:2d:1c:3c:66:f8:2c:b1:
f7:a0:69:c1:f4:2a:3f:d7:fa:ca:2f:b6:b7:9b:25:56:c5:bb:
00:4c:29:bb:b6:af:77:18:d6:85:c1:d0:02:a3:45:98:51:3b:
2d:19:92:91:ae:84:d2:cd:09:8a:b0:ba:be:5e:e2:06:6c:fb:
82:ef:8f:11:c6:d4:36:7c:97:13:da:15:fc:5d:79:44:5f:4f:
91:3c:c6:d5:a1:34:45:2c:1f:a3:08:85:79:b2:50:77:be:43:
7f:63:47:e6:2c:3e:93:2c:5a:8b:9d:f4:fa:72:6f:8c:1f:e5:
59:47:c7:b6:e2:29:da:69:45:54:20:01:3a:66:67:8e:77:ea:
f2:e6:7d:64:ea:49:b4:3f:d9:fb:0c:83:7e:d1:f1:e7:e0:9c:
6b:88:41:96:96:4f:17:70:8c:14:13:c1:c2:65:e5:9a:d1:73:
5f:d7:04:ab:78:cf:9d:64:17:cf:ae:b9:84:88:bc:3c:f7:34:
7f:46:77:9a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX020ZBVhQLb6AqagvZtfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MjAwNWJiNmMzZDY4NjViODljMTBmMzNiMGI5OTRiNzRh
Zjk2M2IwHhcNMjUwODIzMTAwMDI2WhcNMjUwODI0MTAwMDI2WjAzMTEwLwYDVQQD
EyhkNmRiMDM1NGM3NzE3NTY2YzU5Nzk5NGQzNzQyY2E5NjIyNzk3YjY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo/vfimU8O+O7x6HPq4bG9+NwA704
vhDqgoLH5Xlow0s4nA4CxizzOJQC7zvqOPfq7ZkS4AZkAU8gE8pBpIy3fHdBkxWB
xkOUTLQnBzXau5oDHWcDRlVUPO0rLb/quOHhzpW2Ut/msdEEhrflQN0p3xh2pR6I
h0+3NyDEfo87AbVCXQitkl2mmGo/oCbi5Z2ynjQ19OMiWm8uvUjeSfjrr6ZzN95t
z3PIqZgNeC5dooUyT2eoaXuKzG3QhTdgMCUe3HsU/qhBk8kuPDi/GSUIPuYnM8tn
CQ6hUL4x8nCcnVF5Ce/NDnbBqqp7iyLCePZljogQO+Pl/9v7VrlP+ssQlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNbbA1THcXVmxZeZTTdCypYieXtkMB8GA1UdIwQY
MBaAFAUgBbtsPWhluJwQ8zsLmUt0r5Y7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlNBRnUydzlhR1c0bkJEek93dVpTM1N2bGpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi84M2ViMDktM2ExNC00NTViLTg4OTUt
YmEwYTc2ZjQzNzA0LzEvQlNBRnUydzlhR1c0bkJEek93dVpTM1N2bGpzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi84M2ViMDktM2ExNC00NTViLTg4OTUtYmEwYTc2ZjQzNzA0
LzEvQlNBRnUydzlhR1c0bkJEek93dVpTM1N2bGpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaJ+YEFEW
rTIb6fBsN1XYcYRGbYGrD+Exfx+w+UPPysmbDwNZuW2Yil80ceNe22TBM5FLr23U
PTInXR2AuCaSqDwtHDxm+Cyx96BpwfQqP9f6yi+2t5slVsW7AEwpu7avdxjWhcHQ
AqNFmFE7LRmSka6E0s0JirC6vl7iBmz7gu+PEcbUNnyXE9oV/F15RF9PkTzG1aE0
RSwfowiFebJQd75Df2NH5iw+kyxai530+nJvjB/lWUfHtuIp2mlFVCABOmZnjnfq
8uZ9ZOpJtD/Z+wyDftHx5+Cca4hBlpZPF3CMFBPBwmXlmtFzX9cEq3jPnWQXz665
hIi8PPc0f0Z3mg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:29:38 2025 by rpki-client