Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
File: BFYL6jkur2kgircF70Bc94aEF2s.mft (raw, json)
Hash identifier: 0fSaoJu30WssRMCI3UaNdzXPYWR0gwopA55LeWRAXYU=
Subject key identifier: B3:33:CF:28:91:F9:E1:A5:AA:B1:75:A7:33:04:23:2C:82:2C:B8:C3
Authority key identifier: 04:56:0B:EA:39:2E:AF:69:20:8A:B7:05:EF:40:5C:F7:86:84:17:6B
Certificate issuer: /CN=04560bea392eaf69208ab705ef405cf78684176b
Certificate serial: 0199FC21B79EE1D709A00794F99EDCC02D3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
Manifest number: 16E7
Signing time: Sun 19 Oct 2025 11:01:32 +0000
Manifest this update: Sun 19 Oct 2025 11:01:32 +0000
Manifest next update: Mon 20 Oct 2025 11:01:32 +0000
Files and hashes: 1: 8kdm1ZAPNcZedXP01TafIjBXKRs.roa (hash: itb59cI824fq1EKKCsVfc6XjwoFA0+TxsZlQLnTiMW4=)
2: BFYL6jkur2kgircF70Bc94aEF2s.crl (hash: yqMdD3MR9O4rWqb+mPM9eDxBJTXzSypyM8UrWCqGoq0=)
3: BzQdBmIbyF6srfLktxhc6qg79ec.roa (hash: H3iHKo9W+PVcnPUcadk8PCSHKjUzykftyfuq0bLuwdg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:b7:9e:e1:d7:09:a0:07:94:f9:9e:dc:c0:2d:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04560bea392eaf69208ab705ef405cf78684176b
Validity
Not Before: Oct 19 11:01:32 2025 GMT
Not After : Oct 20 11:01:32 2025 GMT
Subject: CN=b333cf2891f9e1a5aab175a73304232c822cb8c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a0:26:77:87:cb:fb:3d:07:70:6f:85:76:1e:
bc:4e:5b:40:7d:c1:b3:8f:de:2f:d5:31:15:d3:60:
91:e1:3b:b2:a3:d6:fb:34:92:79:d6:89:8c:83:f7:
29:b6:ac:5a:cd:e6:05:7b:e7:c6:16:a7:82:b3:86:
b3:d3:97:ce:de:5b:64:99:b2:ce:ec:ca:86:5e:c7:
25:61:50:ca:86:80:73:a0:dc:53:71:e2:24:52:b8:
e0:39:83:33:ec:dd:bd:e4:c6:51:f7:76:9b:f4:e0:
26:db:0d:11:71:9d:5a:e6:e8:40:b0:cc:87:10:49:
02:26:50:02:eb:1b:43:a7:8c:91:25:53:d2:e0:bf:
04:c1:32:26:af:68:92:b9:86:6a:55:6e:97:f9:4a:
6a:c1:51:3a:4c:ef:4a:a0:f0:74:8d:07:bd:f0:1e:
8b:7e:60:80:39:84:5b:c9:68:01:a8:1b:e1:46:73:
c3:4b:23:9d:c4:f0:e1:3d:90:bd:d4:c2:25:43:cb:
f4:de:73:26:ca:96:cb:42:c4:93:4c:52:61:32:6a:
f4:d3:e1:54:06:bb:37:28:d8:3b:b0:d0:51:72:80:
72:28:f3:03:e1:d7:0a:4d:8d:a3:b2:90:8c:8d:63:
20:a2:db:9c:b1:1a:c4:21:b2:d1:04:0b:08:39:4d:
28:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:33:CF:28:91:F9:E1:A5:AA:B1:75:A7:33:04:23:2C:82:2C:B8:C3
X509v3 Authority Key Identifier:
keyid:04:56:0B:EA:39:2E:AF:69:20:8A:B7:05:EF:40:5C:F7:86:84:17:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:19:7b:1e:6d:87:66:c6:32:03:ab:e5:83:97:4a:18:ad:8c:
00:e2:4f:bf:96:e9:2f:fe:1b:7b:df:44:a9:d8:31:f6:dc:cd:
26:de:ae:8c:c4:3e:48:a1:34:7c:6a:f8:18:66:14:1d:40:4f:
7a:0c:e8:41:b7:31:e5:44:61:a3:cf:7d:06:0b:1f:0e:8d:3a:
aa:05:c8:9c:aa:35:dd:be:3f:ab:0b:55:1c:d8:65:0a:c1:18:
f7:de:c6:bb:04:20:60:0c:66:0c:c5:46:e6:22:19:c4:11:5b:
8f:f8:fa:ab:bb:3b:a3:e6:48:dc:64:70:90:3c:be:61:a5:a4:
92:4a:2a:21:e7:41:79:b1:e0:8d:3e:4c:12:5a:cf:6b:0d:4c:
9b:30:fb:7f:11:0f:4f:1d:da:74:56:e8:b8:f6:43:e9:da:b0:
ee:c9:1e:51:08:84:0f:ad:91:c0:09:a3:1a:fb:9c:49:14:6e:
87:58:f9:5e:1f:a0:0b:4c:75:63:a0:19:c3:eb:72:ce:e6:40:
80:b6:fb:f1:01:e8:c7:04:93:fb:d2:ff:37:17:a6:4b:93:ea:
78:5a:eb:86:a0:94:a8:23:f2:62:e8:f8:e3:a2:23:10:2e:9a:
97:79:02:1b:8e:dd:fc:5f:93:53:ca:06:89:c4:7a:9c:6d:b6:
5a:ca:b9:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 19:54:42 2025 by rpki-client