Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
File: BCSFBLVFValEOwKjPTUakChju5k.mft (raw, json)
Hash identifier: s/i5awXbhXTtdsDMniBc3vnIRqaUcfS1rCsfph4K1bI=
Subject key identifier: 69:54:31:B1:A3:E9:0A:67:DC:B6:63:C7:41:7F:B2:DD:3C:AC:CA:D5
Authority key identifier: 04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
Certificate issuer: /CN=04248504b54555a9443b02a33d351a902863bb99
Certificate serial: 019A50076BC0D3FDFF6DDFAD3FD195D6FB96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
Manifest number: 1710
Signing time: Tue 04 Nov 2025 18:00:54 +0000
Manifest this update: Tue 04 Nov 2025 18:00:54 +0000
Manifest next update: Wed 05 Nov 2025 18:00:54 +0000
Files and hashes: 1: BCSFBLVFValEOwKjPTUakChju5k.crl (hash: C/Q4RkYuHPJXqOHBbFCVvhVEl1IE9Lguu4tGW8PRme4=)
2: b8vdOmpolmwnMi7asOpMYmI4_jA.roa (hash: 9A3fwbUf06Rc6Df5WmKqMxfDfFV1g3qJ0g03eRw6WqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:07:6b:c0:d3:fd:ff:6d:df:ad:3f:d1:95:d6:fb:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04248504b54555a9443b02a33d351a902863bb99
Validity
Not Before: Nov 4 18:00:54 2025 GMT
Not After : Nov 5 18:00:54 2025 GMT
Subject: CN=695431b1a3e90a67dcb663c7417fb2dd3caccad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:01:81:33:da:d2:5b:19:dd:64:96:2f:84:8e:
72:f4:1d:8c:fa:b2:80:f5:35:36:16:01:4e:75:7a:
78:c3:e0:d2:aa:35:52:09:c6:ef:fd:7f:de:02:11:
9e:ee:3d:91:18:9c:eb:03:b5:18:87:4c:42:9f:07:
9f:ee:74:fe:25:54:b0:6c:b7:e3:c5:1f:a1:1d:08:
3e:d6:1a:4d:7e:b0:b0:c3:87:1f:ee:e3:1c:64:78:
60:2e:16:92:a8:9d:db:10:cf:43:a3:62:1d:65:19:
bf:1d:1e:40:0e:0a:61:58:1a:fa:59:ab:49:a4:58:
75:1e:f6:31:94:35:c3:e1:25:11:81:26:39:39:1e:
eb:46:67:b6:07:be:a2:e2:ae:eb:4f:e1:74:92:37:
55:3f:fb:48:32:49:90:9d:61:58:cf:50:13:b4:8a:
d8:82:6a:5c:f5:aa:db:de:64:95:89:a2:0a:39:fe:
6e:c5:57:bb:25:ed:09:38:9f:34:2e:c0:87:4a:fc:
a9:6b:a3:65:c9:05:39:a8:6c:ef:e0:e5:fa:8f:b4:
d2:84:8a:9e:5f:25:b3:a7:e5:69:29:49:2d:4f:5b:
d1:b4:75:a4:14:63:2b:15:4c:49:88:48:fe:79:9e:
2f:2b:4c:81:38:57:06:73:c9:43:ba:71:f7:75:fd:
b3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:54:31:B1:A3:E9:0A:67:DC:B6:63:C7:41:7F:B2:DD:3C:AC:CA:D5
X509v3 Authority Key Identifier:
keyid:04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:71:b9:b7:8d:5c:a3:23:20:96:1a:30:36:eb:69:d7:a1:e2:
4b:32:00:2f:65:69:cd:73:8d:f3:d8:39:48:89:d2:b6:8b:19:
b6:b5:d4:95:91:ae:c7:09:b4:51:0e:04:e2:63:ca:d5:71:ee:
4a:57:e3:56:77:a5:82:be:fc:d2:37:94:3f:ee:49:0f:aa:fc:
c4:af:74:99:ca:bc:bc:c8:3c:eb:57:4b:6c:cd:1a:4f:99:e5:
5b:11:75:bc:eb:d8:42:77:0f:73:a3:88:93:b8:5e:3a:df:3f:
25:3b:06:40:51:0e:0c:b2:19:37:fa:68:6c:af:5d:e3:1b:56:
a3:88:ba:a1:7a:b8:72:00:80:9c:a4:ea:11:fa:05:3d:54:44:
7f:fd:41:66:64:64:f7:a5:7b:fc:9e:b4:70:ca:1f:0e:7f:00:
67:d4:8c:68:2a:e4:f9:93:54:b1:ce:f2:a2:e4:da:10:f5:56:
5c:15:20:a5:92:ef:97:b8:c8:d8:36:20:ba:f6:d5:83:e0:7d:
88:c7:2a:fa:f8:45:8b:2b:3f:e0:20:c6:5b:93:dd:9e:2c:d1:
d3:05:76:dc:b6:c4:ac:cd:8c:2c:a4:71:d0:48:77:78:ba:96:
ec:24:30:db:79:8d:08:42:3b:b4:ab:8d:b7:11:4e:c0:6b:c7:
5a:f7:ed:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:57:10 2025 by rpki-client