Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
File: BCSFBLVFValEOwKjPTUakChju5k.mft (raw, json)
Hash identifier: frLJHmOZgZbSNK/aPFIv+sRWLk4EUKb9xyoiooQ2ojw=
Subject key identifier: 1F:C8:0F:72:11:23:15:12:86:62:0F:AC:1E:31:C8:39:4F:C5:A0:09
Authority key identifier: 04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
Certificate issuer: /CN=04248504b54555a9443b02a33d351a902863bb99
Certificate serial: 0197703EB7F8A913FCD01741828609A1046F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
Manifest number: 1593
Signing time: Sat 14 Jun 2025 21:00:47 +0000
Manifest this update: Sat 14 Jun 2025 21:00:47 +0000
Manifest next update: Sun 15 Jun 2025 21:00:47 +0000
Files and hashes: 1: BCSFBLVFValEOwKjPTUakChju5k.crl (hash: 1Y+9lIRH6DR6RQViEB7/vZMoAeKVO6YLOu6NTxIwvHc=)
2: b8vdOmpolmwnMi7asOpMYmI4_jA.roa (hash: 9A3fwbUf06Rc6Df5WmKqMxfDfFV1g3qJ0g03eRw6WqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:3e:b7:f8:a9:13:fc:d0:17:41:82:86:09:a1:04:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04248504b54555a9443b02a33d351a902863bb99
Validity
Not Before: Jun 14 21:00:47 2025 GMT
Not After : Jun 15 21:00:47 2025 GMT
Subject: CN=1fc80f721123151286620fac1e31c8394fc5a009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:de:b2:98:68:d2:1a:b9:ba:17:1d:5a:0f:0b:
81:38:e3:5e:7f:4a:c9:a8:d1:80:dc:21:3c:e1:3a:
d9:f3:ae:ad:a6:29:39:00:7a:11:68:5e:41:4c:94:
ff:0f:ab:e6:b3:7a:79:49:18:c1:17:7d:81:b1:20:
00:ae:95:07:b2:fd:0e:b9:5d:33:32:18:aa:9e:8b:
d3:68:db:31:b2:a3:80:2e:b2:12:e2:22:80:59:98:
d8:ad:84:5b:ce:80:6b:67:09:d7:0e:51:d8:0e:43:
7c:97:e9:7e:62:32:b9:71:44:26:20:4a:f8:86:86:
35:f6:5c:3e:c4:57:de:ea:0d:bf:7b:5d:da:b6:2b:
2c:02:53:ac:d5:3b:3b:9b:fb:00:8e:0d:41:15:8c:
51:fa:c1:80:c9:a3:9e:a5:06:27:a4:0c:aa:55:4d:
bb:c7:03:31:45:f1:bf:61:8b:26:c3:d6:91:ee:8c:
80:83:f5:28:ad:fc:c1:d3:ba:c6:c0:41:7f:aa:44:
93:ce:5b:ff:f3:6b:91:e7:69:c5:7e:17:9f:77:7e:
9f:2e:21:c3:bd:79:e6:6f:61:02:94:77:0c:d7:11:
48:f3:2f:f9:c4:17:50:20:4c:81:86:54:da:b5:c9:
8e:df:db:63:71:c5:4e:4e:63:01:63:cf:8d:74:d2:
c0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:C8:0F:72:11:23:15:12:86:62:0F:AC:1E:31:C8:39:4F:C5:A0:09
X509v3 Authority Key Identifier:
keyid:04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:c9:23:c2:05:57:69:87:ea:45:0c:a4:63:0c:06:63:4e:3d:
00:40:8e:7b:d0:d7:15:94:cb:9b:2b:5b:ba:81:fe:7b:20:4a:
67:05:6b:34:6f:0d:c4:42:da:c0:70:06:8f:77:09:14:13:e8:
3f:a1:17:d0:56:80:ea:40:f1:9a:56:4e:59:33:41:7a:f4:42:
5d:f8:40:5f:7d:fb:e7:c8:7d:a5:22:90:96:d6:f6:43:3d:57:
7d:9c:5f:e3:64:e7:03:5c:bd:98:bc:87:c1:48:49:2c:f2:bb:
48:20:b0:4e:46:fc:7e:df:cf:54:76:f9:80:6d:e3:4d:76:2e:
3a:2d:d2:4a:b9:11:f6:0e:01:6a:f5:4d:c8:32:64:ce:c6:a3:
6b:0e:24:c8:85:02:b2:9c:53:e8:86:38:89:80:a4:61:26:86:
dd:9e:07:6f:69:5d:87:22:78:92:bf:13:56:e9:9c:1b:bd:d6:
88:47:6e:5a:7e:4f:c3:f0:db:12:5c:64:c7:75:1e:3d:f2:d1:
87:01:6a:ad:5e:5b:9a:07:f5:49:a6:5b:d7:45:56:43:25:5d:
a7:2d:56:4d:ea:8c:79:25:ad:6d:88:b8:29:c4:8f:9b:08:6a:
2c:c7:82:4d:4f:50:5f:53:f5:8a:13:bd:25:cd:d5:d0:d7:9f:
89:08:f5:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:50:34 2025 by rpki-client