Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
File: BfWa7cKCluKRck95N954jichZAg.mft (raw, json)
Hash identifier: vuac460N/epBmRzQeQWcqKcuNcTpyRWaQSBGlNoBhmY=
Subject key identifier: 05:13:42:D9:96:90:F7:A4:96:C1:4B:95:C2:E8:17:6D:4F:2D:D3:B8
Authority key identifier: 05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
Certificate issuer: /CN=05f59aedc28296e291724f7937de788e27216408
Certificate serial: 0197B6A1B32E7EF6756AEF4292461FD01E5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
Manifest number: 14D2
Signing time: Sat 28 Jun 2025 13:02:19 +0000
Manifest this update: Sat 28 Jun 2025 13:02:19 +0000
Manifest next update: Sun 29 Jun 2025 13:02:19 +0000
Files and hashes: 1: BfWa7cKCluKRck95N954jichZAg.crl (hash: FKGtpfHOOIDCKnENq/WACLvYBqyBU3Y6dApUPCwha6c=)
2: u4-8TJgeQH4fa-D9xZl4ZB3jNoQ.roa (hash: tT+Wu4e7mtchTUuSJdCNjA8Yykw8lNY7Bv1xK7SFPsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:b3:2e:7e:f6:75:6a:ef:42:92:46:1f:d0:1e:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f59aedc28296e291724f7937de788e27216408
Validity
Not Before: Jun 28 13:02:19 2025 GMT
Not After : Jun 29 13:02:19 2025 GMT
Subject: CN=051342d99690f7a496c14b95c2e8176d4f2dd3b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4c:14:dc:29:f4:b0:76:1b:ab:26:90:b4:62:
49:86:0d:ce:f6:d0:c8:3d:fe:24:ac:34:a5:41:0f:
bb:3c:1b:f6:51:58:48:08:08:bb:ff:13:a5:c4:e9:
63:0c:3d:34:46:8f:49:9b:c4:94:39:62:e0:01:ad:
d8:d7:70:0f:c2:a1:66:41:bc:b5:9a:8b:17:63:a2:
f8:05:7f:9c:30:e2:35:cb:b2:6a:f9:60:35:bf:28:
21:88:c7:03:05:ed:19:f6:c6:a5:90:54:64:92:ff:
9b:52:7f:7a:2b:b0:91:16:e1:a9:32:b4:75:2c:64:
46:22:3f:89:4e:7d:57:ec:6c:5a:74:d6:5a:32:7c:
78:a5:15:a0:78:e3:ef:d3:ca:ac:63:0d:7d:58:c8:
c0:3a:26:02:30:27:e2:da:9d:df:25:22:a9:c2:6b:
bd:07:9b:62:b1:3c:9b:80:9a:f4:f7:99:4b:3d:31:
63:14:62:8a:de:dd:ec:76:1c:09:7b:b3:25:1d:36:
61:e4:b5:a4:87:31:3f:67:1c:2b:be:3b:b8:0d:0d:
1b:40:20:29:e9:ad:57:62:8a:ec:e8:39:5a:8b:f7:
5a:5a:19:d0:f7:81:3d:3c:8d:d8:53:26:8c:21:51:
2d:aa:ae:b0:e6:bc:da:36:a5:fc:dc:88:0e:d9:75:
17:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:13:42:D9:96:90:F7:A4:96:C1:4B:95:C2:E8:17:6D:4F:2D:D3:B8
X509v3 Authority Key Identifier:
keyid:05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:e2:64:c0:3d:1d:b2:8c:17:d3:cc:a6:c1:b4:99:12:86:b3:
63:7d:f0:fe:9b:77:c5:75:9b:63:e5:0a:43:29:e5:68:06:92:
2e:4d:25:34:01:a7:8a:24:2b:7e:18:d7:00:57:ba:4b:8b:24:
b5:28:ed:45:99:2f:4d:b7:c7:bc:61:0e:c5:21:23:d8:08:4d:
3a:32:a2:da:72:5f:4d:1f:c6:5a:8a:9d:e7:aa:4f:9f:9b:35:
b0:89:ef:d1:0b:88:c1:df:a2:75:d4:ab:7c:ef:d8:78:60:65:
0c:c5:62:96:b3:ab:20:28:bc:a2:1a:9e:17:fc:29:15:4d:59:
31:79:0f:40:b8:04:6c:25:bb:c8:61:d3:ee:39:76:f8:07:ed:
a1:c1:5b:07:06:75:73:42:f7:68:48:21:f8:78:5d:29:d1:33:
25:4f:98:ec:ea:9e:97:3e:58:e5:b0:5a:b0:d4:58:5e:c4:7a:
b2:fb:e4:34:af:12:08:b4:4f:a8:da:3f:84:25:0a:da:d1:14:
6c:a6:f4:07:49:ff:8c:43:d7:e6:20:d8:c5:77:76:45:2f:72:
ba:d9:dd:fb:27:78:ac:23:2d:3c:ab:4e:bf:06:3c:74:5c:b7:
2c:a9:d4:91:fb:15:8e:4b:6f:d3:3e:0d:cb:6a:69:04:c2:53:
98:ce:94:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2obMufvZ1au9CkkYf0B5eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1ZjU5YWVkYzI4Mjk2ZTI5MTcyNGY3OTM3ZGU3ODhlMjcy
MTY0MDgwHhcNMjUwNjI4MTMwMjE5WhcNMjUwNjI5MTMwMjE5WjAzMTEwLwYDVQQD
EygwNTEzNDJkOTk2OTBmN2E0OTZjMTRiOTVjMmU4MTc2ZDRmMmRkM2I4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkwU3Cn0sHYbqyaQtGJJhg3O9tDI
Pf4krDSlQQ+7PBv2UVhICAi7/xOlxOljDD00Ro9Jm8SUOWLgAa3Y13APwqFmQby1
mosXY6L4BX+cMOI1y7Jq+WA1vyghiMcDBe0Z9salkFRkkv+bUn96K7CRFuGpMrR1
LGRGIj+JTn1X7GxadNZaMnx4pRWgeOPv08qsYw19WMjAOiYCMCfi2p3fJSKpwmu9
B5tisTybgJr095lLPTFjFGKK3t3sdhwJe7MlHTZh5LWkhzE/Zxwrvju4DQ0bQCAp
6a1XYors6Dlai/daWhnQ94E9PI3YUyaMIVEtqq6w5rzaNqX83IgO2XUXawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAUTQtmWkPeklsFLlcLoF21PLdO4MB8GA1UdIwQY
MBaAFAX1mu3CgpbikXJPeTfeeI4nIWQIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi81ZTFkNDItMzU3NS00ZWMxLWJjN2Mt
ZDY0MzY4MjA4MTMxLzEvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi81ZTFkNDItMzU3NS00ZWMxLWJjN2MtZDY0MzY4MjA4MTMx
LzEvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeeJkwD0d
sowX08ymwbSZEoazY33w/pt3xXWbY+UKQynlaAaSLk0lNAGniiQrfhjXAFe6S4sk
tSjtRZkvTbfHvGEOxSEj2AhNOjKi2nJfTR/GWoqd56pPn5s1sInv0QuIwd+iddSr
fO/YeGBlDMVilrOrICi8ohqeF/wpFU1ZMXkPQLgEbCW7yGHT7jl2+AftocFbBwZ1
c0L3aEgh+HhdKdEzJU+Y7Oqelz5Y5bBasNRYXsR6svvkNK8SCLRPqNo/hCUK2tEU
bKb0B0n/jEPX5iDYxXd2RS9yutnd+yd4rCMtPKtOvwY8dFy3LKnUkfsVjktv0z4N
y2ppBMJTmM6UvA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:33:12 2025 by rpki-client