Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
File: BfWa7cKCluKRck95N954jichZAg.mft (raw, json)
Hash identifier: Xvh6sFV47gDLTd9z8V9zFbEuh+LSanhPyfdnVDVUgTM=
Subject key identifier: 57:23:C6:9A:A3:D2:8F:A3:B1:18:89:CF:97:0A:B0:1F:3E:AF:EB:50
Authority key identifier: 05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
Certificate issuer: /CN=05f59aedc28296e291724f7937de788e27216408
Certificate serial: 0199FBEB1B0A0F6DFA9AC9C738EFE65DA62E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
Manifest number: 15FF
Signing time: Sun 19 Oct 2025 10:01:53 +0000
Manifest this update: Sun 19 Oct 2025 10:01:53 +0000
Manifest next update: Mon 20 Oct 2025 10:01:53 +0000
Files and hashes: 1: BfWa7cKCluKRck95N954jichZAg.crl (hash: /22eQwkKFjc8drYFSYUAcuqiCBH75X7a5aFexm0Bvvk=)
2: u4-8TJgeQH4fa-D9xZl4ZB3jNoQ.roa (hash: tT+Wu4e7mtchTUuSJdCNjA8Yykw8lNY7Bv1xK7SFPsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:1b:0a:0f:6d:fa:9a:c9:c7:38:ef:e6:5d:a6:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f59aedc28296e291724f7937de788e27216408
Validity
Not Before: Oct 19 10:01:53 2025 GMT
Not After : Oct 20 10:01:53 2025 GMT
Subject: CN=5723c69aa3d28fa3b11889cf970ab01f3eafeb50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c0:58:57:6d:4b:c1:b3:1f:d8:80:50:30:2d:
1e:dc:56:57:8b:91:90:a0:2c:f7:66:09:14:4c:c6:
13:9e:c6:16:98:06:58:23:f6:c3:10:80:5e:61:c3:
6c:fc:ee:73:fb:b9:f9:17:1c:9f:83:10:d6:c0:48:
6a:6d:17:ea:6c:41:dd:4d:a4:1a:d8:4c:4b:a0:17:
99:bd:32:1b:04:a7:bc:00:33:e4:92:70:db:0d:07:
89:3a:d1:d7:e0:08:aa:17:ae:9b:1d:fd:51:10:2a:
9c:0e:72:28:d2:18:b3:99:f1:16:33:21:cf:30:4c:
57:04:e3:42:78:01:0d:18:79:13:31:19:cf:e3:bd:
15:2a:65:ed:c5:69:e9:30:7f:cc:d8:b6:cb:c0:6e:
f8:1c:44:64:cf:68:ab:88:06:cc:72:42:95:23:4c:
01:14:64:5d:6d:68:21:71:bd:08:7a:ba:bd:75:ba:
06:eb:48:bb:0c:2e:1f:fa:0b:ae:e6:32:6a:8b:3e:
b8:65:6c:37:64:7f:53:25:8c:07:6a:a7:52:d9:66:
2f:82:51:16:a0:b8:41:36:e5:cc:4c:87:30:60:13:
d7:91:f3:7f:cc:f4:2f:8a:9b:fe:7a:a5:8c:30:2a:
c7:c3:1c:a8:26:30:02:b2:6a:1d:6e:40:46:35:19:
e3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:23:C6:9A:A3:D2:8F:A3:B1:18:89:CF:97:0A:B0:1F:3E:AF:EB:50
X509v3 Authority Key Identifier:
keyid:05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:c6:1b:a8:de:dd:75:c7:24:2f:bc:63:19:fe:7c:7c:cd:bc:
82:25:74:90:06:c4:53:89:e4:65:1f:73:06:60:aa:c8:d3:a2:
eb:01:cb:7d:b5:3f:75:95:64:55:8b:3c:25:ed:98:f3:af:8d:
fb:c0:36:25:9c:35:a7:5d:33:da:16:11:88:59:80:94:a3:89:
54:fb:dd:e0:b5:2e:12:80:34:81:6c:71:38:1b:5c:5c:5a:2e:
92:7d:45:80:61:85:64:03:87:94:76:23:28:a0:d0:bb:fc:46:
11:ae:c0:b7:0e:63:13:43:d0:c0:1d:9b:c0:93:34:4f:00:13:
05:50:46:a0:86:01:10:15:bb:1f:0c:bf:5b:01:d5:2a:e8:05:
da:29:f6:a2:51:0e:32:f8:10:c5:d6:de:4c:ef:5e:60:81:a3:
60:b2:c4:1d:77:db:65:1c:d4:28:2f:20:9e:09:e1:a8:45:26:
62:10:28:29:3d:13:ff:68:d5:fb:39:92:30:e6:60:43:19:fe:
c6:a9:a9:e0:d4:76:ec:c5:b8:f6:d9:ed:b2:49:c2:de:ae:22:
b4:b9:ff:40:c0:a0:86:19:37:58:ee:54:af:30:b8:90:76:05:
54:ec:31:27:61:f3:f2:b1:9d:8b:3d:08:3d:95:7d:a9:ed:d6:
21:2c:42:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76xsKD236msnHOO/mXaYuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1ZjU5YWVkYzI4Mjk2ZTI5MTcyNGY3OTM3ZGU3ODhlMjcy
MTY0MDgwHhcNMjUxMDE5MTAwMTUzWhcNMjUxMDIwMTAwMTUzWjAzMTEwLwYDVQQD
Eyg1NzIzYzY5YWEzZDI4ZmEzYjExODg5Y2Y5NzBhYjAxZjNlYWZlYjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxMBYV21LwbMf2IBQMC0e3FZXi5GQ
oCz3ZgkUTMYTnsYWmAZYI/bDEIBeYcNs/O5z+7n5FxyfgxDWwEhqbRfqbEHdTaQa
2ExLoBeZvTIbBKe8ADPkknDbDQeJOtHX4AiqF66bHf1RECqcDnIo0hizmfEWMyHP
MExXBONCeAENGHkTMRnP470VKmXtxWnpMH/M2LbLwG74HERkz2iriAbMckKVI0wB
FGRdbWghcb0Ierq9dboG60i7DC4f+guu5jJqiz64ZWw3ZH9TJYwHaqdS2WYvglEW
oLhBNuXMTIcwYBPXkfN/zPQvipv+eqWMMCrHwxyoJjACsmodbkBGNRnjOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFcjxpqj0o+jsRiJz5cKsB8+r+tQMB8GA1UdIwQY
MBaAFAX1mu3CgpbikXJPeTfeeI4nIWQIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi81ZTFkNDItMzU3NS00ZWMxLWJjN2Mt
ZDY0MzY4MjA4MTMxLzEvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi81ZTFkNDItMzU3NS00ZWMxLWJjN2MtZDY0MzY4MjA4MTMx
LzEvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK8YbqN7d
dcckL7xjGf58fM28giV0kAbEU4nkZR9zBmCqyNOi6wHLfbU/dZVkVYs8Je2Y86+N
+8A2JZw1p10z2hYRiFmAlKOJVPvd4LUuEoA0gWxxOBtcXFoukn1FgGGFZAOHlHYj
KKDQu/xGEa7Atw5jE0PQwB2bwJM0TwATBVBGoIYBEBW7Hwy/WwHVKugF2in2olEO
MvgQxdbeTO9eYIGjYLLEHXfbZRzUKC8gngnhqEUmYhAoKT0T/2jV+zmSMOZgQxn+
xqmp4NR27MW49tntsknC3q4itLn/QMCghhk3WO5UrzC4kHYFVOwxJ2Hz8rGdiz0I
PZV9qe3WISxC7w==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:30 2025 by rpki-client