Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft
File: BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft (raw, json)
Hash identifier: F9cOvpHkRFth2z7kfKFTUN3+/RLLw2W++sXPhV+HJwk=
Subject key identifier: F0:83:C1:45:16:35:72:E6:6E:EB:99:39:C8:C1:5B:00:BA:FF:0D:EA
Authority key identifier: 04:71:88:17:78:A1:E1:2F:6D:97:C5:28:8E:FD:4C:B9:56:3D:1D:49
Certificate issuer: /CN=0471881778a1e12f6d97c5288efd4cb9563d1d49
Certificate serial: 019E1DC779AC9D9883DE99D8F6EADAB01E7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BHGIF3ih4S9tl8Uojv1MuVY9HUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft
Manifest number: 02DB
Signing time: Tue 12 May 2026 20:01:12 +0000
Manifest this update: Tue 12 May 2026 20:01:12 +0000
Manifest next update: Wed 13 May 2026 20:01:12 +0000
Files and hashes: 1: BHGIF3ih4S9tl8Uojv1MuVY9HUk.crl (hash: glc/MmNnAtCm9lPXZXq9tCu2bH1uJkwDiSaLN6Ft34o=)
2: eTOwOWQzkIQMSFcd7XvHaxwHhHg.roa (hash: wPtbDFR3QsqzxzI7/DNrIndvuS59lQkNZu8MuJSmfaE=)
3: hebM_59_tHRwgwIXMubQjV7ZKnA.roa (hash: 67WRXgG1YYYSINNxV4jZ+taQ8P62HynuQpfE/cUxzG0=)
4: xCZyOX3UdGqJ4N0H4sVFPUltMyA.roa (hash: pKVwIh7ZBo3ZwPW274FG7Z+VnBFjJnW9qgbfx0gaNg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/BHGIF3ih4S9tl8Uojv1MuVY9HUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:79:ac:9d:98:83:de:99:d8:f6:ea:da:b0:1e:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0471881778a1e12f6d97c5288efd4cb9563d1d49
Validity
Not Before: May 12 20:01:12 2026 GMT
Not After : May 13 20:01:12 2026 GMT
Subject: CN=f083c145163572e66eeb9939c8c15b00baff0dea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a4:ba:fc:e2:0a:99:c2:06:d1:7b:c3:a2:db:
d5:45:72:d5:d9:a8:5c:ef:f8:35:e4:03:73:71:76:
4f:d0:1a:61:bb:25:c2:27:ff:2f:e2:ac:19:19:01:
f0:d5:06:83:de:70:86:09:ab:f4:64:bb:17:5d:b6:
e6:9d:27:70:08:68:ec:1c:ad:92:97:cc:2a:c4:fc:
93:fc:17:8d:c7:1f:fe:3d:b2:d0:b3:4d:21:5e:35:
e0:93:88:c8:c9:64:99:44:d4:5a:eb:02:09:db:60:
52:02:38:05:53:35:ba:ec:10:5a:6f:c4:3c:b6:75:
39:a2:a8:72:ec:af:23:06:0f:fb:a4:b6:ab:2a:93:
12:fb:86:15:4e:6a:ca:83:07:54:fc:62:66:9e:e8:
2a:4f:33:f4:bc:2a:ee:14:a1:97:c0:64:ed:7c:c7:
8a:5f:79:7a:06:43:11:d0:85:69:0e:a9:d0:25:11:
6a:dd:c4:f5:d3:bb:4e:78:cb:99:a1:38:91:93:7b:
e2:02:36:07:13:6f:b7:d8:92:32:38:30:73:7d:71:
62:52:68:99:42:08:b8:e3:44:c0:6e:6c:02:57:81:
e2:d9:ce:1e:fd:2c:94:1c:8b:39:84:30:de:ad:bb:
9e:ef:15:c3:c3:4d:98:f2:9b:de:49:3b:c0:ce:81:
1a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:83:C1:45:16:35:72:E6:6E:EB:99:39:C8:C1:5B:00:BA:FF:0D:EA
X509v3 Authority Key Identifier:
keyid:04:71:88:17:78:A1:E1:2F:6D:97:C5:28:8E:FD:4C:B9:56:3D:1D:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BHGIF3ih4S9tl8Uojv1MuVY9HUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:df:26:06:56:9a:56:40:ba:c3:83:13:ba:e8:26:cc:1a:c1:
02:c2:de:f9:a1:3f:43:43:30:f5:4f:4e:db:57:40:50:fb:86:
38:71:f1:21:b9:47:69:95:8d:e4:77:f5:06:85:ec:96:3f:dd:
ad:75:c9:54:f8:1d:b2:43:5a:38:56:95:2b:60:71:3a:dd:cb:
62:54:62:83:8f:f3:05:be:07:ec:9b:49:52:6f:aa:7f:67:64:
e2:4f:6b:71:e1:01:7c:2f:91:7c:12:f3:fa:a5:e5:03:1a:c6:
49:ba:19:e6:ef:e4:87:6e:e2:c5:bd:89:46:b7:c3:0f:d1:15:
18:67:45:75:11:80:4f:29:3f:4a:10:f1:02:09:f6:d0:72:58:
1f:a6:e7:e0:02:38:25:f2:c9:72:ab:89:56:af:c2:9f:29:c6:
b3:a7:89:91:73:ea:2c:9b:41:60:24:6b:bb:5f:73:83:15:18:
44:37:ef:5b:8f:eb:47:d2:90:45:5e:7e:ee:84:b0:7f:fe:02:
92:66:68:8d:34:db:a0:53:a2:09:ad:54:d8:c5:f6:b5:5c:ec:
e0:83:14:ef:c7:47:2a:00:1a:9c:06:e9:70:ef:2a:e3:83:f9:
75:a6:64:01:8d:ce:94:67:da:ae:38:a8:8b:08:e6:f9:be:1a:
27:c0:d8:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:57:20 2026 by rpki-client