Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
File: BmVsWtlzg3LVTAN-OX81vpqpJNs.mft (raw, json)
Hash identifier: 5NFIfAMFv/0hosyV2eEW78+MjX1/guM7AeREK8ccv/U=
Subject key identifier: AC:2C:40:26:AE:E1:68:74:E3:78:C2:33:C4:A7:F9:C8:04:DB:3E:85
Authority key identifier: 06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
Certificate issuer: /CN=06656c5ad9738372d54c037e397f35be9aa924db
Certificate serial: 019D29976E754BAB97F592EBA518D0DF2294
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
Manifest number: 0456
Signing time: Thu 26 Mar 2026 10:01:23 +0000
Manifest this update: Thu 26 Mar 2026 10:01:23 +0000
Manifest next update: Fri 27 Mar 2026 10:01:23 +0000
Files and hashes: 1: BmVsWtlzg3LVTAN-OX81vpqpJNs.crl (hash: uIrNYDL0Sbv91r+zOG4bEonrqbhuDaWVH44KKfCuEFY=)
2: IuMZcspQ8K2Rh1GaYKyW2FT1kL4.roa (hash: 9/0A8YPeaznPXiLNVP4FFOJdTd1wwZVGFqXuoC2dxWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:6e:75:4b:ab:97:f5:92:eb:a5:18:d0:df:22:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06656c5ad9738372d54c037e397f35be9aa924db
Validity
Not Before: Mar 26 10:01:23 2026 GMT
Not After : Mar 27 10:01:23 2026 GMT
Subject: CN=ac2c4026aee16874e378c233c4a7f9c804db3e85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ef:ea:35:8e:c4:ea:d2:3a:1a:ae:ad:ad:65:
84:c9:c2:85:ae:0f:2a:7a:91:61:9d:c3:f3:c4:49:
90:88:bd:b0:53:04:58:7b:d6:08:aa:60:2a:1d:fb:
6f:5e:d7:18:ff:82:af:69:2a:13:0b:be:92:f5:1a:
2f:2e:e5:b4:c2:d8:6f:4d:3d:31:cf:c4:94:c3:6b:
d6:ed:f3:a1:bb:ad:e5:ec:63:ef:27:f0:2c:24:17:
6d:12:6a:3d:ca:96:82:5b:24:b2:13:0f:e1:a0:24:
fe:28:e9:ed:09:ad:89:d3:3d:a5:bf:59:71:a3:4b:
3f:72:c4:5b:77:ca:9b:59:ba:31:7e:b8:9d:c9:7d:
bb:ef:d6:5e:dd:69:66:92:c6:8c:eb:ad:42:c2:9a:
e5:77:86:9c:5c:95:66:9e:f3:dc:46:29:c7:21:e5:
bc:f1:cd:8e:4c:1c:63:fd:73:12:ea:fe:ef:53:f2:
25:43:52:ba:c9:34:b6:3c:dc:fc:10:89:5e:29:b3:
c4:71:0b:db:28:6b:a2:d7:33:d4:56:1f:d9:09:b5:
c2:59:3c:b5:c1:8b:39:03:7a:53:08:77:e1:de:ae:
6c:a1:f9:a2:31:1b:79:c2:90:db:b0:a7:85:ac:c0:
80:9f:c5:1d:0e:d2:35:de:0c:f5:0d:b7:7e:26:ed:
53:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:2C:40:26:AE:E1:68:74:E3:78:C2:33:C4:A7:F9:C8:04:DB:3E:85
X509v3 Authority Key Identifier:
keyid:06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:dc:87:ba:a3:ee:1f:d4:17:a1:cf:a4:23:6b:92:89:77:10:
d6:89:53:b1:2d:3c:6e:5e:71:f3:28:6f:bc:5e:10:f6:68:3d:
c8:2c:91:50:91:5b:74:da:09:1e:00:9d:8e:81:85:a0:de:68:
a8:b4:a9:1a:1a:3c:c9:67:7e:ac:9a:4f:28:b0:13:68:d1:6b:
93:7b:3e:50:1d:d7:8b:08:b0:e0:bd:09:c0:7f:44:de:bc:4b:
7e:d4:2c:b2:53:8a:e3:8b:32:f7:37:1d:9c:7f:d5:71:60:af:
0d:b4:ac:38:27:58:ce:d1:44:4d:82:09:78:77:1e:ed:b5:aa:
6e:86:13:de:1a:54:e0:fe:0b:05:2f:bc:b7:b2:69:a6:44:9f:
12:ce:91:98:a3:58:b2:cc:31:b1:0f:b0:b9:aa:b2:76:41:5f:
9a:e9:da:dc:d7:dd:b0:42:e9:68:28:c5:c2:26:24:6a:e2:3d:
3a:be:0a:6b:03:b6:e6:e1:38:47:96:18:a7:b2:89:91:0c:89:
84:e2:d9:69:d3:55:5e:76:de:b7:b2:7e:25:9a:8d:eb:83:07:
7d:fd:15:15:13:e6:22:ea:f1:2b:1f:9a:89:ec:c6:7f:6b:f7:
e2:7c:a5:a6:f0:4c:23:4f:00:d5:ac:36:ef:7c:fc:58:4f:59:
1f:f3:d3:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:43:59 2026 by rpki-client