Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
File: BGelYhGyHprHzcj7Y58xCpLCEEw.mft (raw, json)
Hash identifier: 21zTqy4w6VHAO9Ohicv1K9ztmQYyKlG5i417U6gjH7M=
Subject key identifier: 01:6A:EB:5A:70:61:8B:84:75:CE:1C:B5:26:BE:1E:FA:73:9D:DB:7B
Authority key identifier: 04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C
Certificate issuer: /CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c
Certificate serial: 019D273AC304C899ED365B6B68F2C5405AD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
Manifest number: 0F68
Signing time: Wed 25 Mar 2026 23:00:55 +0000
Manifest this update: Wed 25 Mar 2026 23:00:55 +0000
Manifest next update: Thu 26 Mar 2026 23:00:55 +0000
Files and hashes: 1: 1-WmJXUzndEvurHNC9z-EdX-GqLg.roa (hash: k4/qUPEWtP0yhAjTXryxItYMnfRgWY9Qd/ypPo+vPZA=)
2: BGelYhGyHprHzcj7Y58xCpLCEEw.crl (hash: k/g4oEZtPtlPq2fBuqZxr57MR1CiZTzb/82kCsjby0E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:c3:04:c8:99:ed:36:5b:6b:68:f2:c5:40:5a:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c
Validity
Not Before: Mar 25 23:00:55 2026 GMT
Not After : Mar 26 23:00:55 2026 GMT
Subject: CN=016aeb5a70618b8475ce1cb526be1efa739ddb7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:cf:60:38:17:91:f5:4d:91:c9:bb:48:55:94:
60:28:92:76:22:32:ec:83:cb:ea:00:64:48:4e:f2:
c6:f4:5b:c0:a2:22:09:91:78:a4:de:c8:a8:6c:68:
69:41:1d:9e:de:9e:ce:20:26:63:0a:7b:88:d8:e9:
56:7f:57:30:cc:7c:c6:56:22:92:bd:f6:94:1e:e9:
08:95:c3:99:3f:57:72:1b:c6:08:ad:71:20:f8:d7:
e2:cf:15:af:9a:98:67:79:08:97:ec:52:ee:27:8c:
30:7a:02:65:b7:6c:17:a6:1b:cf:a8:08:a0:5c:b1:
1f:e9:17:55:b9:db:2e:44:e0:82:df:9d:fd:66:30:
40:bb:eb:a2:c4:47:f8:bf:6d:d5:77:5e:44:18:03:
13:c8:0f:c0:4f:a7:00:53:93:da:04:e9:bd:94:1e:
8e:38:aa:05:12:29:04:39:d1:90:61:36:52:ef:39:
3c:64:4f:21:db:a9:64:e7:fa:62:71:40:5d:e0:8a:
55:83:8a:85:b2:dc:8f:40:d5:17:ed:d0:44:ba:1e:
18:01:5e:8b:c1:8a:c6:9e:9d:89:59:30:a2:ec:69:
37:c9:67:05:aa:9b:80:c8:d3:a1:30:da:a5:2f:59:
0d:03:ac:11:a8:8f:e4:5e:02:95:3a:da:e4:0f:e8:
ae:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:6A:EB:5A:70:61:8B:84:75:CE:1C:B5:26:BE:1E:FA:73:9D:DB:7B
X509v3 Authority Key Identifier:
keyid:04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:5c:0b:13:03:6a:fd:a1:56:47:70:65:ed:4e:7f:e1:f8:aa:
e1:51:eb:6a:3f:b6:b4:9e:6c:5f:f6:de:e3:33:97:93:74:7b:
45:36:55:09:ed:3c:12:17:92:a9:f7:0b:58:aa:57:4f:36:f1:
eb:0d:58:4e:be:b5:14:53:bf:13:d7:41:46:89:9c:d2:52:a0:
fa:1c:6d:f5:c3:4a:d1:75:aa:b2:0d:b4:41:04:df:be:1b:e3:
fd:24:5c:db:42:df:01:ca:18:61:cb:84:12:4a:f8:38:d4:54:
27:e7:1f:7a:37:8c:3e:b5:dc:2e:83:1d:2c:5a:c9:0d:29:e4:
11:51:29:37:64:63:f6:12:b8:6d:12:ae:23:47:7d:78:1a:87:
c1:42:9f:0f:23:48:ea:b4:95:c8:ce:a6:be:47:f1:da:e9:2a:
e3:6e:f1:fa:ee:f9:cd:87:0d:90:f3:67:4c:86:09:bd:0e:30:
60:70:6b:b1:47:1f:7b:72:28:fe:7d:fd:00:ae:12:aa:0c:6f:
ed:db:de:db:91:0b:8a:0c:80:e6:ab:0d:50:f3:b8:cc:b4:f1:
46:a9:cf:3b:b1:0d:88:82:ad:3f:2d:fd:99:b5:cf:73:30:c3:
73:15:81:8e:77:f4:b4:9c:8e:d4:f1:10:b1:99:ec:a6:31:4d:
85:30:66:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:53:44 2026 by rpki-client