Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
File: BcW97HMY-HHVPoZkgvQXM97wlCg.mft (raw, json)
Hash identifier: Kgn7QuTx0JH8aqPfVLf2xGG8HRgppeCvzeFlnc8RUIA=
Subject key identifier: 48:F8:69:D0:89:9E:C3:DD:4C:4D:26:F2:02:1D:5A:6B:D1:75:FE:8C
Authority key identifier: 05:C5:BD:EC:73:18:F8:71:D5:3E:86:64:82:F4:17:33:DE:F0:94:28
Certificate issuer: /CN=05c5bdec7318f871d53e866482f41733def09428
Certificate serial: 019957C630E631C5BEBC1814FFB960AD855B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
Manifest number: 0DED
Signing time: Wed 17 Sep 2025 13:03:50 +0000
Manifest this update: Wed 17 Sep 2025 13:03:50 +0000
Manifest next update: Thu 18 Sep 2025 13:03:50 +0000
Files and hashes: 1: BcW97HMY-HHVPoZkgvQXM97wlCg.crl (hash: c92BHYzAnqkVpIHW1M0GUhrq308PsbJ5oaXWaNJ3hnY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:57:c6:30:e6:31:c5:be:bc:18:14:ff:b9:60:ad:85:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05c5bdec7318f871d53e866482f41733def09428
Validity
Not Before: Sep 17 13:03:50 2025 GMT
Not After : Sep 18 13:03:50 2025 GMT
Subject: CN=48f869d0899ec3dd4c4d26f2021d5a6bd175fe8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:85:23:de:4b:94:23:98:d1:88:76:ee:a2:6d:
3a:76:13:8d:c7:46:03:9b:d1:47:dd:ed:d9:ad:ff:
f7:bb:76:a9:e2:90:3d:76:0e:8f:74:89:61:c9:74:
7f:c4:78:41:95:2e:ce:75:2f:6d:ca:db:ef:84:c9:
3c:e7:73:ed:7d:14:13:ef:0d:aa:11:aa:aa:80:4c:
fd:12:d7:39:2f:85:58:67:32:01:d9:c4:57:e4:b1:
1d:da:84:99:e0:88:1d:15:18:43:b4:24:b3:a3:26:
5e:d0:2c:ea:e9:a2:56:ae:0e:94:a2:e2:2b:1f:cc:
98:9e:2c:a7:dc:86:7f:b1:0d:2f:81:90:09:04:ee:
95:ce:85:7d:99:53:b8:8f:51:53:c0:7e:d2:b5:1c:
ad:e5:46:87:5b:54:37:6b:22:f2:49:d7:88:bd:49:
25:df:a3:5b:20:38:7c:49:42:73:db:8b:53:54:a5:
14:1b:1f:fa:6c:e0:d8:ff:e6:95:2a:67:9b:6a:15:
29:38:6e:df:74:e8:cb:08:bc:52:23:fc:a4:02:d5:
bc:3e:07:a9:64:4b:e6:da:a8:e5:56:62:47:e6:bb:
f4:91:ca:40:d9:94:8b:75:b2:de:fd:e2:69:7a:1b:
7e:03:89:63:51:b1:06:5f:35:1c:0f:f9:f7:99:52:
5f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:F8:69:D0:89:9E:C3:DD:4C:4D:26:F2:02:1D:5A:6B:D1:75:FE:8C
X509v3 Authority Key Identifier:
keyid:05:C5:BD:EC:73:18:F8:71:D5:3E:86:64:82:F4:17:33:DE:F0:94:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BcW97HMY-HHVPoZkgvQXM97wlCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebd0c-2991-4583-bfec-7122feafc8c7/1/BcW97HMY-HHVPoZkgvQXM97wlCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:5d:cb:22:76:96:67:bc:00:9a:f8:75:ec:5d:27:88:78:4b:
5c:79:96:6c:f8:26:ab:ce:e9:9f:d0:5d:d2:a8:44:c4:5f:78:
be:70:c7:53:7b:74:ec:ce:01:57:93:6b:4d:d5:fc:fd:72:6b:
73:d9:0a:3d:75:68:dc:98:b9:60:7e:ef:29:ff:90:4c:2e:24:
9d:b5:38:08:22:83:7c:0b:46:e6:67:65:55:5d:03:e0:78:68:
73:48:31:7b:18:c2:8e:12:a3:71:f5:99:ba:8d:50:80:c3:05:
8a:2f:50:22:67:12:17:47:45:0f:85:33:2f:56:f8:4f:84:01:
3a:1f:85:b1:92:8c:7b:88:48:68:11:07:c5:9f:c9:88:e8:e7:
75:73:c2:2a:4e:40:c6:7a:25:d3:68:57:94:bc:5d:84:83:35:
38:28:c3:16:6c:d6:42:a4:e6:fb:bb:49:94:0b:56:55:2b:33:
04:60:94:c4:27:92:fc:40:92:a9:ab:da:aa:46:6b:e0:95:25:
6d:a5:1a:6a:3f:87:71:29:37:ab:f2:bb:ba:31:d4:39:dd:f0:
c9:66:82:c0:f8:bf:fe:84:30:cb:24:71:4c:b6:c7:e5:55:57:
05:d0:2e:65:b1:b6:1a:c5:54:ad:32:07:4a:d6:da:50:81:b7:
0d:14:53:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:35:45 2025 by rpki-client