Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
File: BFYL6jkur2kgircF70Bc94aEF2s.mft (raw, json)
Hash identifier: SWihaLytWO/b6IcRSFJ4coLZ/bMP2Jszpb0iquqKaU0=
Subject key identifier: FE:30:2A:70:31:C7:6A:5A:2C:3B:BB:0A:B8:13:25:25:3D:19:F3:DE
Authority key identifier: 04:56:0B:EA:39:2E:AF:69:20:8A:B7:05:EF:40:5C:F7:86:84:17:6B
Certificate issuer: /CN=04560bea392eaf69208ab705ef405cf78684176b
Certificate serial: 0198D4E0A1FF989AEEB801952B6B93B80F96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
Manifest number: 164E
Signing time: Sat 23 Aug 2025 03:02:27 +0000
Manifest this update: Sat 23 Aug 2025 03:02:27 +0000
Manifest next update: Sun 24 Aug 2025 03:02:27 +0000
Files and hashes: 1: 8kdm1ZAPNcZedXP01TafIjBXKRs.roa (hash: itb59cI824fq1EKKCsVfc6XjwoFA0+TxsZlQLnTiMW4=)
2: BFYL6jkur2kgircF70Bc94aEF2s.crl (hash: 61oIx8c734aWIgdMSSnLViIWfnV7xCfNG4US0xYXKN0=)
3: NyItizXaNDYcIoRvpNc_5Mkg2Qg.roa (hash: 6BsyUuSqs5SSPqJlfjsNi68lsr8Mj9jzzqX6MyZpWe0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:a1:ff:98:9a:ee:b8:01:95:2b:6b:93:b8:0f:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04560bea392eaf69208ab705ef405cf78684176b
Validity
Not Before: Aug 23 03:02:27 2025 GMT
Not After : Aug 24 03:02:27 2025 GMT
Subject: CN=fe302a7031c76a5a2c3bbb0ab81325253d19f3de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e1:62:fe:4c:e5:99:5a:e5:a7:87:ed:2a:69:
dd:fd:0d:7f:ef:31:8a:93:ea:f7:e8:2a:71:24:f2:
e5:6a:83:b3:ee:40:07:17:aa:ff:c7:15:6a:df:5f:
2d:39:0b:fe:02:d7:eb:89:e5:14:ef:8a:26:93:19:
9e:dc:c0:25:bb:88:29:d9:1c:ea:c0:5f:a0:f9:7f:
3b:36:85:a0:0c:05:66:cd:4d:d5:ad:f5:a4:e6:b7:
d2:0b:55:4b:f2:00:6d:42:0e:df:62:ad:a6:f4:7a:
dc:d7:fa:3d:80:0a:a7:1f:6b:d1:30:4d:34:68:54:
58:6b:49:d8:1f:9b:69:32:d0:a9:61:2e:f6:eb:5d:
0a:10:0f:36:f6:58:50:31:c1:33:a3:ca:b3:8f:a6:
c9:71:7a:dc:ad:4e:34:9f:81:37:1e:0e:5a:7f:ba:
cc:a3:6b:5e:ed:ba:7c:fb:00:72:9b:2a:3b:d5:69:
66:8a:0a:fe:d6:e9:f4:3f:8c:74:ef:2c:68:70:f2:
f4:f9:23:54:cb:5f:50:4d:be:79:33:3f:22:3a:a4:
5d:b7:52:92:c7:c1:f6:67:9f:b8:e2:2a:58:b9:3c:
c9:c9:c8:24:65:24:3b:58:5b:92:f6:ff:f4:57:40:
0e:e4:5a:26:d7:ec:a8:52:4c:45:26:df:ce:c9:83:
c8:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:30:2A:70:31:C7:6A:5A:2C:3B:BB:0A:B8:13:25:25:3D:19:F3:DE
X509v3 Authority Key Identifier:
keyid:04:56:0B:EA:39:2E:AF:69:20:8A:B7:05:EF:40:5C:F7:86:84:17:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:53:b8:2e:60:0c:8f:d6:c0:7f:fe:a2:a9:6a:ed:94:f6:fb:
cf:aa:81:06:aa:1f:65:82:ce:80:77:53:9f:76:4c:60:9a:40:
ac:1e:e1:9f:6e:4f:d8:72:32:11:2c:ce:5d:45:c3:ca:7c:d0:
fe:d5:8b:01:30:db:cc:25:7a:09:0f:20:f5:2c:83:05:61:8f:
ca:de:4e:4f:2c:91:6e:21:8a:19:ac:51:a6:0c:ef:49:b5:3b:
f2:7f:e5:84:de:02:bf:d1:bd:88:7a:92:ac:58:89:c9:0c:a9:
4a:68:50:66:d6:3f:cc:72:f2:bb:2c:e2:1b:8a:63:16:a4:20:
94:de:10:bb:c4:19:3d:fa:e4:ff:6a:25:79:b8:41:fa:d2:c7:
e7:ab:7a:30:14:ed:8f:ad:24:8a:12:aa:0e:78:19:ab:ce:a7:
89:50:bb:01:99:95:09:d5:d6:4c:6e:c2:4b:2b:b1:48:37:5a:
ed:d5:f9:fc:84:e8:56:08:32:fd:02:ac:89:34:81:90:4e:f8:
72:01:d2:29:b2:d7:34:f8:46:58:f1:0d:03:32:c2:48:8b:7a:
58:dc:bf:0a:e4:ba:09:b8:57:37:da:ec:b2:6e:bd:f3:5f:83:
7f:fd:37:00:fd:92:8c:62:34:bd:a1:ba:a4:01:88:9d:8d:05:
2a:8f:d3:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4KH/mJruuAGVK2uTuA+WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0NTYwYmVhMzkyZWFmNjkyMDhhYjcwNWVmNDA1Y2Y3ODY4
NDE3NmIwHhcNMjUwODIzMDMwMjI3WhcNMjUwODI0MDMwMjI3WjAzMTEwLwYDVQQD
EyhmZTMwMmE3MDMxYzc2YTVhMmMzYmJiMGFiODEzMjUyNTNkMTlmM2RlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouFi/kzlmVrlp4ftKmnd/Q1/7zGK
k+r36CpxJPLlaoOz7kAHF6r/xxVq318tOQv+AtfrieUU74omkxme3MAlu4gp2Rzq
wF+g+X87NoWgDAVmzU3VrfWk5rfSC1VL8gBtQg7fYq2m9Hrc1/o9gAqnH2vRME00
aFRYa0nYH5tpMtCpYS72610KEA829lhQMcEzo8qzj6bJcXrcrU40n4E3Hg5af7rM
o2te7bp8+wBymyo71Wlmigr+1un0P4x07yxocPL0+SNUy19QTb55Mz8iOqRdt1KS
x8H2Z5+44ipYuTzJycgkZSQ7WFuS9v/0V0AO5Fom1+yoUkxFJt/OyYPIpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP4wKnAxx2paLDu7CrgTJSU9GfPeMB8GA1UdIwQY
MBaAFARWC+o5Lq9pIIq3Be9AXPeGhBdrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQkZZTDZqa3VyMmtnaXJjRjcwQmM5NGFFRjJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi9jZTRhNGUtYjFhMy00NWY0LWEyN2Mt
ZTFhY2EwMTA2MmZmLzEvQkZZTDZqa3VyMmtnaXJjRjcwQmM5NGFFRjJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi9jZTRhNGUtYjFhMy00NWY0LWEyN2MtZTFhY2EwMTA2MmZm
LzEvQkZZTDZqa3VyMmtnaXJjRjcwQmM5NGFFRjJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgVO4LmAM
j9bAf/6iqWrtlPb7z6qBBqofZYLOgHdTn3ZMYJpArB7hn25P2HIyESzOXUXDynzQ
/tWLATDbzCV6CQ8g9SyDBWGPyt5OTyyRbiGKGaxRpgzvSbU78n/lhN4Cv9G9iHqS
rFiJyQypSmhQZtY/zHLyuyziG4pjFqQglN4Qu8QZPfrk/2olebhB+tLH56t6MBTt
j60kihKqDngZq86niVC7AZmVCdXWTG7CSyuxSDda7dX5/IToVggy/QKsiTSBkE74
cgHSKbLXNPhGWPENAzLCSIt6WNy/CuS6CbhXN9rssm6981+Df/03AP2SjGI0vaG6
pAGInY0FKo/T3g==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:48:47 2025 by rpki-client