Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
File: bfhqH1cK4xUpAiqk9h79nsK5fQU.mft (raw, json)
Hash identifier: P6Vudk3hjGl0BCL0GjLqByFjCOqTbC7xL1sFPSdb6Ps=
Subject key identifier: 82:C7:40:EB:D2:D5:13:F4:78:0A:11:67:0A:AB:F8:CB:4C:2B:2F:F9
Authority key identifier: 6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
Certificate issuer: /CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Certificate serial: 019A54BF99E20DED477C3AD10ED452A257BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
Manifest number: 158B
Signing time: Wed 05 Nov 2025 16:00:34 +0000
Manifest this update: Wed 05 Nov 2025 16:00:34 +0000
Manifest next update: Thu 06 Nov 2025 16:00:34 +0000
Files and hashes: 1: BpLbGApyHXLB4qqgJyw3nGH9lH0.roa (hash: 4AoUx/2M994KEwtEdAKInOt11G1446xmTonI1qJPrOg=)
2: bfhqH1cK4xUpAiqk9h79nsK5fQU.crl (hash: l3VjydjDAfwgp4qRlk7ruJwWyKsKpxiuScejpOrxPYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:bf:99:e2:0d:ed:47:7c:3a:d1:0e:d4:52:a2:57:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Validity
Not Before: Nov 5 16:00:34 2025 GMT
Not After : Nov 6 16:00:34 2025 GMT
Subject: CN=82c740ebd2d513f4780a11670aabf8cb4c2b2ff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ec:66:07:c2:22:71:93:1d:57:7d:86:fc:a4:
77:f2:16:42:52:46:9e:9f:8b:5a:1a:e4:2f:00:42:
b3:94:5b:21:90:bc:01:30:9c:06:bf:0a:e5:a6:cf:
a7:d2:15:da:51:d9:bc:e3:63:29:8d:e8:6b:34:95:
8b:de:29:d0:2f:4d:50:a9:f6:aa:e7:f1:fa:27:ef:
d3:67:2a:46:d3:14:6d:cd:3e:2a:32:f7:9e:77:60:
95:04:e8:10:85:a1:cc:ad:7c:68:1a:90:ee:9c:c0:
e7:05:73:b8:27:1f:49:fb:6f:1b:3a:30:d0:e5:14:
43:8a:13:09:f0:f6:e4:98:8c:5a:4c:51:d9:dd:9d:
de:62:86:cd:2c:1d:3c:ea:6c:e9:b0:47:bd:44:d1:
30:aa:d7:26:e9:4b:81:3b:f3:37:a7:2f:51:fa:6a:
c4:db:66:c4:9f:6b:72:d0:48:39:e7:41:f3:80:25:
66:a1:0a:17:de:7c:de:ec:91:23:55:15:2c:fa:b3:
5a:f7:06:5c:8d:8b:c9:67:7c:be:08:5f:73:f8:d4:
2b:e3:74:aa:ac:a0:1e:58:34:ad:14:c5:ee:b4:04:
20:f7:31:0f:a0:42:3c:82:8a:af:72:4a:26:29:26:
03:47:b9:50:59:f3:2f:f0:e5:88:b1:47:30:39:aa:
a0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:C7:40:EB:D2:D5:13:F4:78:0A:11:67:0A:AB:F8:CB:4C:2B:2F:F9
X509v3 Authority Key Identifier:
keyid:6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:2b:02:cc:97:39:f5:0c:e1:3b:ea:4f:10:0a:67:f5:05:ad:
bc:3b:00:e3:da:f6:75:a9:24:d0:38:fe:4f:e2:9f:07:69:cb:
f4:3e:c1:e3:2d:7f:64:3d:05:07:91:0d:f6:99:df:5b:e2:ef:
f9:f7:84:f5:57:20:37:6e:62:5e:38:8c:d2:58:e1:f4:c6:29:
03:b2:5d:9e:9a:7d:10:13:76:ff:f3:1a:9a:66:e6:92:13:c5:
4c:05:93:14:8a:36:88:f7:90:bf:d9:9c:43:6e:85:1d:7f:33:
4b:00:5a:e9:c4:94:c5:0a:5f:5a:2c:38:c4:dd:d9:0d:79:6f:
e3:6c:34:38:35:4d:8d:f4:8b:9b:76:11:89:b4:91:71:54:1e:
39:6e:c6:d8:a1:ac:38:ba:ac:2a:16:2e:72:9f:7e:7c:0f:3e:
c0:46:1f:90:69:b1:1a:55:90:d2:9b:e6:c1:61:20:7d:5d:b6:
92:85:95:6e:c7:23:f9:61:26:29:41:27:ce:13:da:26:f9:ea:
c3:15:6a:14:16:2e:1e:30:a4:38:a5:48:be:34:79:71:71:40:
fc:76:d9:cd:67:f3:34:a5:5b:45:49:d1:57:7b:2a:21:09:31:
c5:03:ea:33:fd:b1:4f:1e:ce:c6:f7:2e:be:e5:b6:26:40:53:
69:88:4f:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpUv5niDe1HfDrRDtRSole6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZjg2YTFmNTcwYWUzMTUyOTAyMmFhNGY2MWVmZDllYzJi
OTdkMDUwHhcNMjUxMTA1MTYwMDM0WhcNMjUxMTA2MTYwMDM0WjAzMTEwLwYDVQQD
Eyg4MmM3NDBlYmQyZDUxM2Y0NzgwYTExNjcwYWFiZjhjYjRjMmIyZmY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvuxmB8IicZMdV32G/KR38hZCUkae
n4taGuQvAEKzlFshkLwBMJwGvwrlps+n0hXaUdm842MpjehrNJWL3inQL01Qqfaq
5/H6J+/TZypG0xRtzT4qMveed2CVBOgQhaHMrXxoGpDunMDnBXO4Jx9J+28bOjDQ
5RRDihMJ8PbkmIxaTFHZ3Z3eYobNLB086mzpsEe9RNEwqtcm6UuBO/M3py9R+mrE
22bEn2ty0Eg550HzgCVmoQoX3nze7JEjVRUs+rNa9wZcjYvJZ3y+CF9z+NQr43Sq
rKAeWDStFMXutAQg9zEPoEI8goqvckomKSYDR7lQWfMv8OWIsUcwOaqg9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFILHQOvS1RP0eAoRZwqr+MtMKy/5MB8GA1UdIwQY
MBaAFG34ah9XCuMVKQIqpPYe/Z7CuX0FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmZocUgxY0s0eFVwQWlxazloNzluc0s1ZlFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS82YWRkMzUtYTk4My00MDExLWFmOGEt
N2FhYzJkODQ3OTU1LzEvYmZocUgxY0s0eFVwQWlxazloNzluc0s1ZlFVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS82YWRkMzUtYTk4My00MDExLWFmOGEtN2FhYzJkODQ3OTU1
LzEvYmZocUgxY0s0eFVwQWlxazloNzluc0s1ZlFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXysCzJc5
9QzhO+pPEApn9QWtvDsA49r2dakk0Dj+T+KfB2nL9D7B4y1/ZD0FB5EN9pnfW+Lv
+feE9VcgN25iXjiM0ljh9MYpA7Jdnpp9EBN2//MammbmkhPFTAWTFIo2iPeQv9mc
Q26FHX8zSwBa6cSUxQpfWiw4xN3ZDXlv42w0ODVNjfSLm3YRibSRcVQeOW7G2KGs
OLqsKhYucp9+fA8+wEYfkGmxGlWQ0pvmwWEgfV22koWVbscj+WEmKUEnzhPaJvnq
wxVqFBYuHjCkOKVIvjR5cXFA/HbZzWfzNKVbRUnRV3sqIQkxxQPqM/2xTx7Oxvcu
vuW2JkBTaYhPcQ==
-----END CERTIFICATE-----
Generated at Wed Nov 5 19:23:04 2025 by rpki-client