Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
File: BXEVMhUM58l6fqSMDXekLm8NX8M.mft (raw, json)
Hash identifier: VZXUEFvT7ofGGl8ZWuFZWDtKKDh6iap9dc+qaX2Jvz4=
Subject key identifier: AF:E4:6E:00:B1:45:03:D7:1A:58:62:1E:CE:EB:B8:F2:97:CF:73:D1
Authority key identifier: 05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
Certificate issuer: /CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Certificate serial: 019E1F47B1112157817B5F8CF7B9FB01A1EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
Manifest number: 098E
Signing time: Wed 13 May 2026 03:00:52 +0000
Manifest this update: Wed 13 May 2026 03:00:52 +0000
Manifest next update: Thu 14 May 2026 03:00:52 +0000
Files and hashes: 1: 2gFrlERikbTFKdI9rMWrqLB3sHI.roa (hash: +aPRdRcOO01yT/CtMcgLBuyFBxEuzS6PPgSrwq5FEhk=)
2: BXEVMhUM58l6fqSMDXekLm8NX8M.crl (hash: sYbwKsPCGK9dOwk8GoywAsPr8Z3yYW8m/twPC+PpUTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:b1:11:21:57:81:7b:5f:8c:f7:b9:fb:01:a1:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Validity
Not Before: May 13 03:00:52 2026 GMT
Not After : May 14 03:00:52 2026 GMT
Subject: CN=afe46e00b14503d71a58621eceebb8f297cf73d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:2c:a2:5d:e3:7c:9b:db:d1:99:b1:c0:27:b3:
5e:31:df:e7:2b:2a:ad:8f:1a:02:0c:47:08:d9:51:
0e:9f:b0:72:26:0e:69:95:78:5f:bd:f7:79:04:81:
bb:55:1d:ad:fb:d5:cd:7d:f9:23:c8:01:c0:82:15:
23:26:91:74:f9:6d:59:b4:df:9d:0b:f7:be:cb:a9:
89:96:0d:44:03:1a:f0:92:42:02:e2:e7:9b:89:8a:
df:3e:6b:09:7f:c7:23:ee:b6:dd:53:42:8b:6f:ab:
d6:f6:5f:90:76:70:e2:ca:33:96:6e:de:6c:2f:39:
71:38:2c:c9:f8:6c:57:10:7c:48:92:7d:42:65:39:
af:39:09:0a:0b:67:79:3b:14:2a:5e:66:0b:e5:68:
d1:60:d2:c3:0c:6b:a8:b5:92:70:d9:88:81:64:46:
63:a9:ea:80:89:ac:4e:b7:be:97:fe:b2:35:38:ac:
e0:98:4f:ee:e4:a0:3d:5e:ac:74:45:ef:fa:ca:53:
7d:15:c7:8e:dd:55:e3:6b:c3:af:90:82:9c:4f:ee:
b1:de:46:72:ca:60:4a:1f:6f:f7:29:3e:22:ea:3a:
d8:94:44:ac:a5:7a:d1:19:eb:65:62:03:00:de:6e:
4c:2d:2f:39:b9:61:b9:06:5c:14:1e:32:21:31:5d:
4a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:E4:6E:00:B1:45:03:D7:1A:58:62:1E:CE:EB:B8:F2:97:CF:73:D1
X509v3 Authority Key Identifier:
keyid:05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:ce:cc:04:34:85:cb:e7:8b:5f:ee:76:c8:7c:b5:aa:d3:5c:
f6:f5:31:c6:cb:80:06:93:a9:0f:30:e6:13:4c:90:90:af:39:
c3:5d:eb:9c:f9:3d:1d:f1:f2:b0:64:42:a9:42:91:20:a4:82:
53:b2:9d:df:ca:8b:d0:f3:c3:d0:d1:90:8a:6a:68:17:b7:8d:
81:e7:01:13:39:c6:83:8a:e0:16:ba:d7:bf:9a:59:1f:f6:42:
8c:55:a2:fe:03:21:5b:8e:49:d8:3a:6e:c2:35:c3:82:67:3b:
5a:7c:c4:c0:6f:b6:7c:b6:f7:a8:3a:fd:65:f4:d7:1f:3d:57:
cb:23:d4:7f:0d:c3:a3:b3:33:71:28:c5:47:74:3f:19:fe:5f:
25:b1:89:7e:44:eb:95:c1:a8:b1:91:0c:48:9b:eb:53:2d:fd:
ae:90:c1:6d:77:a9:50:4e:c9:84:f8:a8:92:37:9c:62:4c:e4:
a8:c1:4d:e4:e9:6b:73:fa:72:34:59:de:b4:79:e5:c7:5d:99:
e3:af:61:76:db:cc:e2:38:f6:ea:5a:80:68:bc:31:aa:30:30:
e7:78:c3:28:20:bd:45:34:ed:e0:c9:24:fa:b4:8e:48:f9:24:
be:75:25:8b:8f:c5:44:91:70:38:58:c2:6f:3c:2f:22:98:f6:
1f:18:a7:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:08:49 2026 by rpki-client