Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
File: bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft (raw, json)
Hash identifier: d2tBKQBTM0hbSINw3jcG/XcFrL2ss9C9xMQBgzJUhy8=
Subject key identifier: F5:F1:36:69:DA:E6:CE:9F:94:55:2B:4B:28:F3:36:5D:A3:5A:7E:F8
Authority key identifier: 6D:F2:93:21:2D:25:D4:86:3E:38:6B:9C:48:0D:DC:9B:E7:38:12:4F
Certificate issuer: /CN=6df293212d25d4863e386b9c480ddc9be738124f
Certificate serial: 0198D70625C467FD5F76B012E2AB6E750F3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
Manifest number: 15DD
Signing time: Sat 23 Aug 2025 13:02:40 +0000
Manifest this update: Sat 23 Aug 2025 13:02:40 +0000
Manifest next update: Sun 24 Aug 2025 13:02:40 +0000
Files and hashes: 1: HoMgEifDpVQ65AHqBFCCx_7uMoE.roa (hash: MZgT/uxhPiKd1q/F+OrFW0KnU1po9n7PWWPZxZXmYvg=)
2: bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl (hash: uYCh8tDOnCgI8X9KVIzw0tAaQAG1Px21o3Pj/ySRbI0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:06:25:c4:67:fd:5f:76:b0:12:e2:ab:6e:75:0f:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df293212d25d4863e386b9c480ddc9be738124f
Validity
Not Before: Aug 23 13:02:40 2025 GMT
Not After : Aug 24 13:02:40 2025 GMT
Subject: CN=f5f13669dae6ce9f94552b4b28f3365da35a7ef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:32:9c:37:11:d6:2a:3f:0e:cd:55:1c:fe:8e:
9a:6e:0c:08:b7:53:dc:75:08:dd:6a:6c:10:5c:2b:
87:03:ce:05:17:c2:c7:1b:f6:2d:e1:60:c1:67:a5:
e5:a6:f8:47:a4:b1:76:08:d0:e8:42:71:de:00:bb:
6d:5a:93:c1:25:bc:03:d6:d5:19:63:e5:30:f8:d7:
97:0a:ed:1b:6d:55:ac:a2:a0:33:d1:9b:0a:30:ae:
49:d2:4f:e5:93:57:1a:0c:eb:2a:46:bc:ae:c5:0c:
c5:5c:a6:66:8d:3c:58:6f:3d:40:5c:7f:44:3c:4f:
0d:a4:ea:db:1f:89:e1:2e:27:01:df:20:4b:1c:ef:
ed:4c:22:56:e0:a0:32:f6:25:48:9e:f9:14:7a:04:
72:db:68:e0:aa:39:a7:6d:a6:d2:f7:f3:53:78:99:
26:99:cc:43:e6:81:e5:a6:83:8e:e8:59:91:b6:54:
b0:d0:90:b1:4d:44:8d:33:72:4e:0a:82:23:b1:ff:
91:75:64:42:2f:41:08:29:d1:6e:6b:50:24:b7:76:
a6:20:04:46:08:1f:c2:40:3f:87:96:c0:cc:1d:69:
0b:79:f4:61:e0:1a:f0:dc:f4:c7:0d:e5:0f:0f:f6:
4b:1f:fa:8e:f2:54:3b:4a:f6:1c:50:37:3c:a3:0e:
b6:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F1:36:69:DA:E6:CE:9F:94:55:2B:4B:28:F3:36:5D:A3:5A:7E:F8
X509v3 Authority Key Identifier:
keyid:6D:F2:93:21:2D:25:D4:86:3E:38:6B:9C:48:0D:DC:9B:E7:38:12:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:1e:a2:9d:c8:ea:35:25:5f:e9:6a:ec:42:a6:80:75:a4:ed:
96:56:e2:fb:ff:4c:2a:46:4a:23:fc:e7:17:3a:a1:d7:51:ec:
db:63:82:68:d2:61:28:98:4b:4c:a6:8f:37:bc:1b:fd:69:d0:
21:d7:6d:ae:83:7d:38:18:27:35:13:fb:8c:76:62:9d:6a:32:
eb:4c:6e:cc:4b:f0:72:d4:ab:0b:4e:1e:7e:e9:2c:34:f5:2a:
d4:3e:2a:84:a0:7d:29:68:6d:cd:a2:05:19:9f:1f:90:81:df:
00:f8:71:0a:01:b2:e1:75:3c:68:81:3b:fb:3f:76:f8:f6:26:
b1:0c:59:ab:1a:3a:d6:98:9a:cf:33:22:dc:78:03:98:4a:48:
b8:29:59:2a:65:cf:21:28:7e:f7:9f:8c:e8:42:22:47:a5:f7:
36:45:0d:d4:d4:ec:27:1b:1f:4f:af:26:43:ed:2f:dc:14:18:
1e:42:0d:15:9d:d3:f7:76:e1:3d:86:61:15:97:b9:7c:96:bf:
b9:27:8f:b8:14:d3:e4:1c:8d:e2:d2:00:01:78:ea:95:0b:66:
a7:16:b5:81:f5:02:4a:c9:bb:1f:08:b7:df:d1:0c:cc:62:e2:
d3:2f:8a:18:07:bd:cf:6f:01:d4:ca:a8:49:11:6a:25:d3:3c:
14:38:22:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:23:13 2025 by rpki-client