Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
File: BCSFBLVFValEOwKjPTUakChju5k.mft (raw, json)
Hash identifier: T2qQHw0e/ncNpwDuh8yOzqSUcpmnsiyI2HBlR6JToaY=
Subject key identifier: B4:3D:C7:48:9D:20:1B:FC:2D:F9:31:AF:68:7D:42:22:A2:A5:45:9B
Authority key identifier: 04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
Certificate issuer: /CN=04248504b54555a9443b02a33d351a902863bb99
Certificate serial: 0198808B2457F8CE688747D880B8B3C2698B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
Manifest number: 1620
Signing time: Wed 06 Aug 2025 18:00:59 +0000
Manifest this update: Wed 06 Aug 2025 18:00:59 +0000
Manifest next update: Thu 07 Aug 2025 18:00:59 +0000
Files and hashes: 1: BCSFBLVFValEOwKjPTUakChju5k.crl (hash: b8L4aWjtzvQIoYPLAOXtT5eAR1Jb1sDEl3LZp4o/cgE=)
2: b8vdOmpolmwnMi7asOpMYmI4_jA.roa (hash: 9A3fwbUf06Rc6Df5WmKqMxfDfFV1g3qJ0g03eRw6WqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 18:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:8b:24:57:f8:ce:68:87:47:d8:80:b8:b3:c2:69:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04248504b54555a9443b02a33d351a902863bb99
Validity
Not Before: Aug 6 18:00:59 2025 GMT
Not After : Aug 7 18:00:59 2025 GMT
Subject: CN=b43dc7489d201bfc2df931af687d4222a2a5459b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e7:b8:40:28:a5:60:e7:1e:d0:51:5d:9e:43:
d1:f6:60:36:f7:48:a0:7a:d9:51:07:4d:55:ac:7d:
b6:97:54:35:8d:81:56:06:31:44:5a:c8:ca:6f:a5:
be:bd:14:1d:8e:5f:54:cd:81:71:ce:b0:d5:02:ed:
bc:51:ab:04:e8:f7:31:09:90:74:b2:ed:fc:3a:fd:
fa:18:db:3a:d6:0e:3a:8c:a4:d3:56:f1:94:67:c3:
a8:fb:be:66:89:27:8a:50:98:92:eb:c0:b2:59:a3:
56:db:af:6e:05:a3:77:22:fb:c8:3a:9a:a4:96:d1:
58:fd:fd:5d:09:b3:76:b1:c6:40:71:19:25:a5:bf:
fe:7f:04:ff:80:22:e4:d4:96:18:0e:90:46:79:16:
6f:d2:21:28:84:e6:4c:b8:91:9f:e5:aa:7e:97:45:
0b:a6:84:1b:06:00:f0:68:47:9f:c5:98:cf:32:ca:
cb:2d:eb:f2:53:0a:5b:25:8b:05:b3:d8:b0:23:45:
26:b9:e9:38:4c:cc:52:53:67:85:1e:1e:29:e4:6e:
53:9b:97:16:72:cd:c7:c6:31:bf:d9:77:bf:df:c3:
a7:65:1c:22:dd:5f:a1:3a:45:f4:14:91:56:e7:8e:
a2:5e:a8:8c:c7:7d:0c:00:b8:9c:9f:ee:a7:f4:2e:
6e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:3D:C7:48:9D:20:1B:FC:2D:F9:31:AF:68:7D:42:22:A2:A5:45:9B
X509v3 Authority Key Identifier:
keyid:04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:89:24:f4:22:f2:d5:29:78:63:8d:b9:6d:97:13:0c:4b:37:
12:85:f1:3a:02:32:c5:1f:89:cf:91:7c:f3:aa:80:81:0c:bf:
9f:55:39:3d:a6:a2:c2:77:7e:91:03:7e:ee:55:f2:a4:0e:a7:
0a:56:05:ea:c1:cc:a7:42:32:e0:b3:7a:c4:a2:9c:ca:90:22:
a3:27:68:77:ad:61:e2:4f:07:7c:fc:45:aa:52:51:e0:ea:97:
c5:87:ed:22:19:c1:d3:4f:58:67:c0:cc:73:1a:c1:68:0a:68:
26:6d:63:28:50:90:d8:cb:8b:5f:f6:a8:c1:a6:e6:45:b5:b3:
30:af:90:ac:e6:04:33:b7:08:82:a3:73:da:ea:91:2d:b7:46:
ae:c8:c8:49:ad:3f:d4:23:6e:28:0f:d8:f6:2d:73:18:ba:ec:
a4:75:9b:1e:16:3e:ba:51:6c:14:f5:53:64:34:9c:f7:84:d7:
1a:ab:68:39:f9:6e:bd:de:33:eb:28:ad:38:cc:4a:57:f7:c5:
73:35:53:c2:49:4e:6a:a1:52:8e:01:ea:04:05:6d:ca:e0:9d:
d2:b1:2b:7e:9d:b6:1d:96:f2:52:f0:c3:6a:52:09:c7:fb:80:
70:b8:94:79:83:d8:9d:07:f1:2c:e9:9d:f1:9e:63:c6:97:13:
66:65:05:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiAiyRX+M5oh0fYgLizwmmLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0MjQ4NTA0YjU0NTU1YTk0NDNiMDJhMzNkMzUxYTkwMjg2
M2JiOTkwHhcNMjUwODA2MTgwMDU5WhcNMjUwODA3MTgwMDU5WjAzMTEwLwYDVQQD
EyhiNDNkYzc0ODlkMjAxYmZjMmRmOTMxYWY2ODdkNDIyMmEyYTU0NTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3+e4QCilYOce0FFdnkPR9mA290ig
etlRB01VrH22l1Q1jYFWBjFEWsjKb6W+vRQdjl9UzYFxzrDVAu28UasE6PcxCZB0
su38Ov36GNs61g46jKTTVvGUZ8Oo+75miSeKUJiS68CyWaNW269uBaN3IvvIOpqk
ltFY/f1dCbN2scZAcRklpb/+fwT/gCLk1JYYDpBGeRZv0iEohOZMuJGf5ap+l0UL
poQbBgDwaEefxZjPMsrLLevyUwpbJYsFs9iwI0Umuek4TMxSU2eFHh4p5G5Tm5cW
cs3HxjG/2Xe/38OnZRwi3V+hOkX0FJFW546iXqiMx30MALicn+6n9C5uzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLQ9x0idIBv8Lfkxr2h9QiKipUWbMB8GA1UdIwQY
MBaAFAQkhQS1RVWpRDsCoz01GpAoY7uZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQkNTRkJMVkZWYWxFT3dLalBUVWFrQ2hqdTVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9iOGJiMWEtYTg4ZS00YjJmLTk4N2Yt
NDcwMTVhNjA3N2IyLzEvQkNTRkJMVkZWYWxFT3dLalBUVWFrQ2hqdTVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9iOGJiMWEtYTg4ZS00YjJmLTk4N2YtNDcwMTVhNjA3N2Iy
LzEvQkNTRkJMVkZWYWxFT3dLalBUVWFrQ2hqdTVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeokk9CLy
1Sl4Y425bZcTDEs3EoXxOgIyxR+Jz5F886qAgQy/n1U5Paaiwnd+kQN+7lXypA6n
ClYF6sHMp0Iy4LN6xKKcypAioydod61h4k8HfPxFqlJR4OqXxYftIhnB009YZ8DM
cxrBaApoJm1jKFCQ2MuLX/aowabmRbWzMK+QrOYEM7cIgqNz2uqRLbdGrsjISa0/
1CNuKA/Y9i1zGLrspHWbHhY+ulFsFPVTZDSc94TXGqtoOfluvd4z6yitOMxKV/fF
czVTwklOaqFSjgHqBAVtyuCd0rErfp22HZbyUvDDalIJx/uAcLiUeYPYnQfxLOmd
8Z5jxpcTZmUFvg==
-----END CERTIFICATE-----
Generated at Thu Aug 7 04:25:22 2025 by rpki-client