Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
File: BGelYhGyHprHzcj7Y58xCpLCEEw.mft (raw, json)
Hash identifier: FaqfmXQhJH3m2xK4CmYVPUvNUCzZMBc2qjwsmh85l1E=
Subject key identifier: A8:E8:1B:89:00:A8:53:07:52:CD:39:3F:39:5D:7B:8A:7D:C6:81:C8
Authority key identifier: 04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C
Certificate issuer: /CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c
Certificate serial: 019E1E6C4E29EA9303A1F25DACE52A73D3FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
Manifest number: 0FE8
Signing time: Tue 12 May 2026 23:01:14 +0000
Manifest this update: Tue 12 May 2026 23:01:14 +0000
Manifest next update: Wed 13 May 2026 23:01:14 +0000
Files and hashes: 1: 1-WmJXUzndEvurHNC9z-EdX-GqLg.roa (hash: k4/qUPEWtP0yhAjTXryxItYMnfRgWY9Qd/ypPo+vPZA=)
2: BGelYhGyHprHzcj7Y58xCpLCEEw.crl (hash: MiMfiN3Yy+dsy5k5GftSfAQGstFqwRujoquo+QxBj3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:4e:29:ea:93:03:a1:f2:5d:ac:e5:2a:73:d3:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c
Validity
Not Before: May 12 23:01:14 2026 GMT
Not After : May 13 23:01:14 2026 GMT
Subject: CN=a8e81b8900a8530752cd393f395d7b8a7dc681c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:83:e5:bd:5d:c9:c1:3a:bd:29:b3:6a:88:ce:
d1:15:e5:4f:8d:8d:fb:2f:71:17:7a:82:f6:f6:8d:
e7:bf:50:41:bf:b8:0e:28:bd:39:1b:69:90:72:59:
c7:25:38:21:a8:d7:9b:0a:71:97:e3:22:c7:58:b9:
60:23:a6:ea:58:26:a1:d2:b5:38:01:00:f0:58:75:
3d:22:e8:c7:4f:ff:bd:a6:d8:72:d8:5b:ca:ce:e8:
7c:c8:5f:c2:c6:49:4e:4e:56:0b:f7:3d:43:3a:d6:
39:50:d0:19:14:69:5f:47:29:eb:74:9f:4d:c3:04:
10:2a:ee:98:1a:b1:7f:8d:a5:eb:68:63:28:64:c1:
61:6c:94:8f:db:f8:5d:91:01:79:96:79:5f:29:d7:
c3:e5:72:84:4b:93:63:6b:5b:6d:01:b7:d3:d3:6b:
eb:78:18:0b:7c:c7:5b:01:65:a8:76:85:8d:70:85:
08:25:aa:10:b4:15:f5:f8:e8:e0:ca:73:14:09:63:
fc:1e:16:69:29:d7:79:3e:f7:bc:f1:26:5d:46:b6:
0f:70:69:b2:dc:26:60:e9:d1:74:88:d6:97:62:53:
87:41:ff:68:7b:ee:17:b0:ca:bb:c7:ba:8a:68:5e:
4a:69:04:a8:65:34:0f:6e:0d:72:2a:09:7f:64:36:
89:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:E8:1B:89:00:A8:53:07:52:CD:39:3F:39:5D:7B:8A:7D:C6:81:C8
X509v3 Authority Key Identifier:
keyid:04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:ad:ea:b0:78:e3:ef:7b:88:bb:0f:d1:1b:d7:9d:6e:9a:a7:
2b:6c:ce:9a:59:49:10:90:79:1a:83:f2:8f:54:e7:1b:1c:ed:
71:b6:cb:d8:9f:37:3d:2b:9a:4b:1d:85:20:3e:20:28:a6:66:
ed:c6:0e:cf:66:1f:92:4d:81:b1:df:72:4b:1b:9a:3b:b3:01:
e8:d6:11:fe:e8:de:b4:ce:63:f3:f3:55:04:d5:24:d1:ea:b7:
99:e4:88:17:73:19:f4:9d:15:93:26:8f:89:4d:c3:e6:81:0b:
12:11:b0:b5:62:f6:64:e6:c7:98:82:d3:20:6c:68:d8:c4:fd:
0c:6c:19:bb:b9:73:f3:45:be:34:7e:a9:07:74:c7:7e:59:7b:
88:8b:f7:73:4a:7f:d3:25:93:f5:fe:e6:50:e2:30:83:56:a9:
ee:c4:fd:e7:8e:a9:02:f5:75:24:03:9c:cc:ad:d8:52:d8:41:
a2:2c:d1:45:62:ea:32:34:e2:00:3e:92:a4:5c:12:1e:e4:82:
c9:97:64:8f:c8:f7:08:a6:21:92:52:03:68:6b:df:0d:e0:f3:
5c:04:df:0e:fd:ba:74:e1:a2:a0:03:22:18:58:37:4b:34:a4:
a9:fe:69:d6:99:4b:1d:fa:58:83:49:0e:5a:7c:ca:94:b4:a7:
3d:38:2c:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:22:26 2026 by rpki-client