Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
File: BfWa7cKCluKRck95N954jichZAg.mft (raw, json)
Hash identifier: Zl6q6UcLIDlxYK1tww4J3Ng11OCtR3uGlcHcBcf4CmY=
Subject key identifier: F8:99:5B:66:3D:34:1B:DB:FD:B6:DA:14:61:96:8A:E0:9A:4F:CA:49
Authority key identifier: 05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
Certificate issuer: /CN=05f59aedc28296e291724f7937de788e27216408
Certificate serial: 0198D65F7044580EDFEB57EAB5070056268D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
Manifest number: 1567
Signing time: Sat 23 Aug 2025 10:00:35 +0000
Manifest this update: Sat 23 Aug 2025 10:00:35 +0000
Manifest next update: Sun 24 Aug 2025 10:00:35 +0000
Files and hashes: 1: BfWa7cKCluKRck95N954jichZAg.crl (hash: cXUtG0nv7nRLSQyBfltJRWk1jiYF1rDs7TcinM69Pio=)
2: u4-8TJgeQH4fa-D9xZl4ZB3jNoQ.roa (hash: tT+Wu4e7mtchTUuSJdCNjA8Yykw8lNY7Bv1xK7SFPsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:70:44:58:0e:df:eb:57:ea:b5:07:00:56:26:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f59aedc28296e291724f7937de788e27216408
Validity
Not Before: Aug 23 10:00:35 2025 GMT
Not After : Aug 24 10:00:35 2025 GMT
Subject: CN=f8995b663d341bdbfdb6da1461968ae09a4fca49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5e:99:2e:b8:56:49:10:e3:89:ed:3a:d1:22:
6c:02:93:be:62:76:c2:e9:d5:53:4c:f0:7b:01:7f:
b4:c5:4a:58:6b:aa:ad:e8:6f:32:13:96:ad:29:97:
1a:f8:59:20:3e:36:49:7e:26:8f:1f:29:35:14:14:
82:31:56:29:0e:fb:65:11:0b:ae:e7:0b:50:f3:e3:
09:16:78:ce:f8:c2:5a:29:1d:77:3a:34:84:4e:e6:
1e:17:d5:b5:95:6d:cb:96:cf:2c:8f:99:dd:41:85:
36:05:55:d4:b6:da:3b:2a:ac:b4:7c:0b:f5:41:be:
54:10:47:09:48:58:2a:91:c4:86:71:7b:39:59:42:
6d:77:0a:5f:5d:40:3e:ad:5b:d0:6d:2a:e9:06:b5:
50:3c:08:46:ad:79:32:8a:5a:4f:7f:7f:53:34:ab:
a9:b3:e5:3d:d2:10:fc:66:20:bb:d1:1a:62:00:f0:
de:6a:11:85:f3:a0:71:3b:07:4d:19:61:0f:85:94:
69:6c:75:ed:e1:93:00:b7:12:f5:fc:f6:0a:8b:bc:
3a:93:78:4e:61:70:36:ad:34:c2:b4:26:9b:93:9d:
f4:38:83:e7:80:55:1c:36:b7:ea:d7:96:d8:fb:25:
2e:3a:b0:bd:9b:49:50:cd:4e:20:86:d7:81:36:b6:
51:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:99:5B:66:3D:34:1B:DB:FD:B6:DA:14:61:96:8A:E0:9A:4F:CA:49
X509v3 Authority Key Identifier:
keyid:05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:05:de:51:dd:14:b2:cf:65:3b:1b:f9:96:90:a2:d2:b3:f0:
2c:e5:fb:ef:78:db:c5:95:5b:d6:26:72:e5:b9:57:eb:ae:de:
93:4b:4c:58:d9:94:b9:a9:22:ae:a7:52:92:2c:0a:70:e8:e6:
af:f5:74:4e:5a:c8:dd:02:b6:06:9f:f9:df:09:1f:11:18:27:
4d:4c:9f:7d:66:d6:9b:07:4f:ce:e2:ea:6b:27:46:1e:93:70:
06:13:6a:2e:be:43:a7:e0:f7:5d:dc:85:e4:39:ef:39:93:f5:
f6:9d:30:04:1c:fc:d3:2c:02:79:4b:a2:d9:3e:6a:51:5d:fd:
a5:33:ad:49:09:9d:d0:a8:0f:46:2f:3e:80:f3:f8:3e:ca:60:
0c:4b:c8:85:40:dd:f2:00:4a:b3:35:e5:62:b9:08:07:d9:21:
1d:f6:cd:35:51:10:8c:49:9d:bd:e3:f9:1d:28:20:73:a4:a3:
4a:1a:70:aa:13:e9:ef:c3:02:83:65:5a:d9:06:43:6d:c5:6f:
a2:8c:34:18:eb:ab:d7:84:d2:cf:ed:77:93:ec:57:ec:53:e0:
73:48:51:7e:34:d9:0f:ef:ac:fd:22:23:43:eb:71:c7:0a:d4:
0b:c0:e0:dd:81:9f:04:b2:76:1d:4b:0b:cd:6e:1c:a5:e4:f3:
0b:3b:ca:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:43:51 2025 by rpki-client