Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
File: B-pSPsf5N3oanl1vqGgX7T1sCoI.mft (raw, json)
Hash identifier: EuIjcU2bnGhlTgonzouFcbttoWrCfpDdOwj/02uEabI=
Subject key identifier: 88:7F:C3:38:74:76:76:A2:04:F1:83:EF:8F:43:28:8B:54:5E:BF:A2
Authority key identifier: 07:EA:52:3E:C7:F9:37:7A:1A:9E:5D:6F:A8:68:17:ED:3D:6C:0A:82
Certificate issuer: /CN=07ea523ec7f9377a1a9e5d6fa86817ed3d6c0a82
Certificate serial: 019E1D59B07B3E2B099F09E2A801AC06E845
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
Manifest number: 1904
Signing time: Tue 12 May 2026 18:01:17 +0000
Manifest this update: Tue 12 May 2026 18:01:17 +0000
Manifest next update: Wed 13 May 2026 18:01:17 +0000
Files and hashes: 1: B-pSPsf5N3oanl1vqGgX7T1sCoI.crl (hash: oDgq862F5fz3YOYZz+UZDXIK9sazc29uDsfcpKL+080=)
2: KAN-qjqmnh5cqoy6zcPSS-sENok.roa (hash: KIM13RN1rwVfiqcH/vu91prDVqpHnTdoOYAr3zB4tTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 18:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:b0:7b:3e:2b:09:9f:09:e2:a8:01:ac:06:e8:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07ea523ec7f9377a1a9e5d6fa86817ed3d6c0a82
Validity
Not Before: May 12 18:01:17 2026 GMT
Not After : May 13 18:01:17 2026 GMT
Subject: CN=887fc338747676a204f183ef8f43288b545ebfa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ab:2f:52:6f:ad:ab:8d:f5:bd:ea:11:b3:af:
28:87:84:d7:1a:a1:57:8e:4b:3e:73:d6:77:cd:92:
00:64:eb:f1:b5:7a:ff:b6:db:7e:25:f5:40:f6:f9:
cb:2d:1c:1d:73:e7:81:78:8f:c4:ff:dc:aa:1b:88:
df:91:a7:93:d2:70:40:0f:47:43:f9:a3:3b:ea:07:
78:3f:6d:18:aa:96:8f:b4:56:87:33:71:56:1c:06:
c2:64:a3:9d:f5:aa:9d:7f:12:28:4b:2b:c7:8f:30:
cd:79:89:e4:0e:a5:98:bf:42:83:10:e4:7f:44:4f:
59:a9:1c:7b:33:c6:e1:4e:a1:35:2c:be:43:6b:56:
b8:c0:fe:d4:ac:51:ce:1f:a6:72:65:2d:2b:5d:38:
0a:19:28:4f:3c:54:e5:ab:7c:da:33:02:c2:3a:74:
f7:1c:bd:ac:de:20:fe:90:f2:24:56:f1:71:8b:01:
37:d8:3d:db:86:1f:f2:54:9f:e5:ed:b7:8b:69:16:
2e:15:d2:09:bb:29:15:9d:33:3b:43:e2:68:ea:79:
3e:24:98:e2:de:10:12:95:26:45:4e:a0:2c:02:11:
cb:0a:4a:67:a2:ed:e5:ba:ce:34:73:e3:00:da:b6:
bc:6b:94:13:36:db:6c:50:b1:2a:7b:a3:f5:4e:b4:
5a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:7F:C3:38:74:76:76:A2:04:F1:83:EF:8F:43:28:8B:54:5E:BF:A2
X509v3 Authority Key Identifier:
keyid:07:EA:52:3E:C7:F9:37:7A:1A:9E:5D:6F:A8:68:17:ED:3D:6C:0A:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:f5:95:f8:ec:e2:50:c7:6f:20:52:79:f0:b0:80:0e:7f:f9:
d4:f5:a5:9f:3c:f4:c3:fa:e3:44:9c:69:9c:a2:13:d1:a0:75:
6e:c7:ca:ad:61:6e:5e:66:be:b6:a1:80:52:b6:7f:9f:7a:64:
ec:02:98:24:d0:2c:a6:f6:3e:d4:64:16:46:80:e5:c5:18:0c:
9e:97:b1:60:9c:4d:1b:d4:e0:3e:b1:39:e6:ca:5f:35:d4:f9:
53:e8:7a:b1:28:ac:61:89:74:ae:86:6f:0f:c8:f6:21:f9:dd:
16:e6:11:d7:bc:3a:d7:88:15:bd:42:b7:42:41:db:03:17:fa:
c7:7f:87:5b:28:63:5a:9f:20:2c:61:de:7c:ce:50:fd:63:54:
2a:f4:2d:43:88:08:6d:31:1b:d5:27:61:3c:32:64:52:93:eb:
ad:2b:60:e2:08:eb:4e:fd:22:a5:37:ab:0f:cb:92:38:6f:88:
4b:2c:09:26:93:40:84:fa:69:3b:38:1e:8e:0c:5b:5a:13:01:
3f:cc:29:8f:93:1e:70:7d:4f:1c:e8:84:9e:fa:1a:0b:25:e6:
e3:5e:69:b1:f6:13:18:25:d5:7c:06:24:d7:9a:23:c4:ac:ac:
e8:bc:87:72:54:da:a7:74:e7:c4:1b:9e:51:85:ac:8c:08:3c:
1f:35:1c:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:18:43 2026 by rpki-client