Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft
File: BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft (raw, json)
Hash identifier: t9pEWJ6UFDB0LAgPmIgUY09SBp0wk2BFE5cHNgpeRsE=
Subject key identifier: AF:8F:BD:41:49:92:5C:D9:71:DF:DB:48:BB:65:76:1F:FC:2C:12:B6
Authority key identifier: 05:63:CB:26:3D:F5:0D:2D:4D:07:3C:0F:7D:B6:CD:27:76:30:2C:9D
Certificate issuer: /CN=0563cb263df50d2d4d073c0f7db6cd2776302c9d
Certificate serial: 01988956FD10469F9457D11AE5D6D76BE559
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft
Manifest number: 0625
Signing time: Fri 08 Aug 2025 11:00:36 +0000
Manifest this update: Fri 08 Aug 2025 11:00:36 +0000
Manifest next update: Sat 09 Aug 2025 11:00:36 +0000
Files and hashes: 1: B6FxjiJOC6_Birv76wylcyDexTM.roa (hash: eGhXe2MadeqSm3dFdd2yllOqHv5uGkbMvrl6C4hJsTU=)
2: BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl (hash: W2nW9rhhDlfe82a1SWZvXUT+kjOAEK/rYJiChpdzZc8=)
3: Jkosv2xFFNQ2gORMGJ-Rj1JTgqk.roa (hash: V03sqShQTC3KKVEiSIPpDzr6IAR7BOwlpV6pUG5aI+w=)
4: PU3RtVE8bUTLDau3UULyJxnwYvk.roa (hash: rurDzg32C4cm1zQE6cZCxEDJG3aKAFEXLx56a9lYAvQ=)
5: TPqMfRSK5sIipm7-2Mw_-o6t_pE.roa (hash: DbvKLEpzC4KlaBAFfc8W2Orz87Jz73d6hIvvLvcnSeI=)
6: aFnhQawEO18IQ3GTJ01kkL1iiO8.roa (hash: lmQ4l6Xz/ufxEDRo15j0d1wdcSctSZ/L1+X4hlqiZ0E=)
7: i5Cva7AkVQeMjYySCI1cSGulBFU.roa (hash: OqdQgQr223XTYw+nW6EEK96kWz2kctHBvYApbJ8V5SM=)
8: orwBdnVfFaxWFzZXqCDe7xYVF-0.roa (hash: s5h3MlDKvwqoRseQHdYHw8t3JkEhjpPj+FNdQWzBxyg=)
9: zfGaREwozQlPDznadYm5iZBdTbo.roa (hash: BQ/Qo3WVP+Q/nW3nNfYM3evPzNFHtG1U5B77mp2vN9c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:56:fd:10:46:9f:94:57:d1:1a:e5:d6:d7:6b:e5:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0563cb263df50d2d4d073c0f7db6cd2776302c9d
Validity
Not Before: Aug 8 11:00:36 2025 GMT
Not After : Aug 9 11:00:36 2025 GMT
Subject: CN=af8fbd4149925cd971dfdb48bb65761ffc2c12b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d6:7b:b5:31:65:86:07:49:e1:df:12:ea:53:
29:a0:ea:af:d2:95:4b:6b:e8:13:ae:df:f1:31:b0:
3d:d1:ca:61:57:6a:ee:85:d9:c7:67:49:8f:a2:a0:
8e:a7:97:87:c5:3c:c3:a7:ba:6f:9e:09:19:97:b2:
7e:81:91:5d:60:14:ae:4b:1f:e4:23:87:db:4a:96:
82:82:af:e6:be:b5:5a:e9:94:a6:90:66:ee:3c:ca:
43:43:aa:44:fa:69:a3:34:a0:9e:52:68:c8:a3:3b:
da:bd:db:dd:27:b0:27:c0:78:bb:ee:bc:44:26:3b:
42:ea:19:4d:6f:e3:15:c0:e7:68:15:54:74:9b:61:
b1:7c:82:f8:67:fe:76:cf:51:f0:09:47:c9:fc:97:
b2:5b:d2:38:db:c7:ef:e9:3b:fa:85:7b:8c:ab:46:
5d:31:10:14:97:5b:c3:c8:79:2e:9c:43:a9:f5:15:
6d:d4:6d:26:96:6e:06:32:50:51:7f:f7:5c:3b:e5:
a1:b0:fd:1b:c1:1b:41:a1:d0:3b:2c:1c:3f:25:8b:
02:ff:69:40:1b:53:85:cf:1e:d2:e9:77:d6:41:3d:
bc:bf:19:51:41:4e:85:c4:ec:a7:48:2d:45:65:42:
e6:56:f4:4f:30:9b:71:81:1a:17:dc:dd:f3:4b:b4:
61:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:8F:BD:41:49:92:5C:D9:71:DF:DB:48:BB:65:76:1F:FC:2C:12:B6
X509v3 Authority Key Identifier:
keyid:05:63:CB:26:3D:F5:0D:2D:4D:07:3C:0F:7D:B6:CD:27:76:30:2C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:78:17:99:9c:fa:78:d4:23:2f:7c:02:7c:a0:df:22:da:59:
a9:4f:79:b1:d1:fc:9c:42:d8:56:16:27:16:57:d1:a9:c0:2c:
6a:14:e0:c5:64:4b:81:2c:50:44:8b:13:84:a0:4c:ae:5e:bb:
ca:e1:b7:af:53:c8:23:7b:21:62:29:ec:db:9e:67:5f:8a:d6:
37:aa:13:eb:02:2c:05:a4:03:a7:6a:41:82:f5:21:69:29:c6:
c6:9f:cd:98:69:b4:a3:48:d8:49:8e:3e:6b:59:4a:66:22:36:
df:a6:9c:09:4b:25:61:7f:38:e7:b3:ad:9c:d4:79:a9:8b:49:
f7:ec:5c:96:55:32:4b:02:49:e5:30:13:6e:fa:ef:39:3f:33:
b8:14:9b:ed:a4:b5:83:84:dd:8d:3f:53:68:fb:a4:9d:7b:76:
cb:ab:aa:cf:54:2c:32:d1:3e:89:5e:e0:7c:c9:ac:23:5b:c8:
71:51:fc:6f:b0:bf:32:d0:71:a5:3d:d1:45:a8:1b:63:9c:3f:
79:ff:ed:c1:57:b0:70:7a:5b:e0:fb:05:4f:15:8c:f8:cd:75:
80:99:2d:94:91:fd:bb:11:ee:c6:4e:36:05:1e:62:0c:73:d1:
11:ca:ed:bd:c4:e7:c6:b8:1a:16:14:05:a5:fb:13:6b:ac:9a:
c7:64:b6:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 13:12:15 2025 by rpki-client