Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
File: BXEVMhUM58l6fqSMDXekLm8NX8M.mft (raw, json)
Hash identifier: 3055VI382UED1j/dEZ+l8izMoVVLhP6eK/ebXE7bWaw=
Subject key identifier: 8B:06:AA:A2:CB:08:ED:B0:71:2B:66:13:17:42:1E:69:8A:EF:36:98
Authority key identifier: 05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
Certificate issuer: /CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Certificate serial: 019D2627F3383F9B6005C34D097757BDEA83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
Manifest number: 090D
Signing time: Wed 25 Mar 2026 18:00:45 +0000
Manifest this update: Wed 25 Mar 2026 18:00:45 +0000
Manifest next update: Thu 26 Mar 2026 18:00:45 +0000
Files and hashes: 1: 2gFrlERikbTFKdI9rMWrqLB3sHI.roa (hash: +aPRdRcOO01yT/CtMcgLBuyFBxEuzS6PPgSrwq5FEhk=)
2: BXEVMhUM58l6fqSMDXekLm8NX8M.crl (hash: 1NC4x6XpOdKxY1fR8oyBIOo3dceXXzoRm6Yd44HacFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:27:f3:38:3f:9b:60:05:c3:4d:09:77:57:bd:ea:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Validity
Not Before: Mar 25 18:00:45 2026 GMT
Not After : Mar 26 18:00:45 2026 GMT
Subject: CN=8b06aaa2cb08edb0712b661317421e698aef3698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:df:ba:a6:4e:d3:a6:4f:0f:f9:4d:86:a7:0e:
c6:62:aa:86:9e:df:d7:f3:d1:f0:dd:9a:44:ae:fb:
4a:75:6f:45:80:14:e6:c2:e6:30:51:fa:38:be:8f:
c5:34:c5:be:ee:8b:68:df:32:34:97:11:ba:e0:b2:
45:a1:13:e9:50:49:3a:80:c7:61:75:75:a6:dd:95:
40:4a:a0:6c:71:96:fc:6e:1d:dc:b2:47:91:54:9f:
92:9d:7d:14:94:86:dc:c8:f0:c6:08:b3:1c:ae:43:
c8:35:3a:37:52:21:b3:31:38:24:8a:29:a7:cf:0b:
e4:1f:eb:a7:f0:79:37:0f:49:21:a7:5a:53:ab:c7:
81:53:dc:2d:e2:bf:5b:ea:1c:06:60:0b:3a:e0:67:
20:47:38:a0:a4:53:fb:cc:b3:df:df:4a:62:d3:bd:
9b:a4:31:4f:54:66:a9:46:91:fb:e8:37:14:66:52:
3f:af:c0:b2:59:a4:6c:9d:fe:cd:2d:4a:dd:a2:e4:
38:48:c2:99:47:7b:93:29:d1:f1:d5:b2:d6:93:c4:
af:ae:7d:12:77:2a:30:64:5e:ac:e1:4d:75:46:bd:
ef:35:fc:76:4d:af:e7:61:06:c3:87:8b:21:ea:3a:
bc:47:23:db:16:26:a5:cc:8d:3e:1a:d8:08:fb:0f:
ba:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:06:AA:A2:CB:08:ED:B0:71:2B:66:13:17:42:1E:69:8A:EF:36:98
X509v3 Authority Key Identifier:
keyid:05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:74:5c:88:c9:78:c8:0a:b1:26:c0:cb:f5:40:50:ea:87:e1:
10:c7:e4:30:a3:42:a5:d4:f5:1b:47:45:05:05:34:d0:a4:ba:
b7:90:31:2b:e6:78:6b:16:65:19:34:ab:39:a1:3d:6e:b7:c9:
af:f0:6f:e4:72:c7:e7:ae:63:d7:31:ec:6f:5d:58:d9:82:6a:
3f:60:11:6d:32:4b:75:70:63:70:f0:a9:cc:c6:36:eb:28:b9:
da:00:21:81:99:9d:e5:05:45:18:67:44:13:e8:95:8b:53:e7:
18:1d:72:90:22:be:cf:54:84:06:2f:e9:8f:2d:3f:19:3c:3f:
9e:a1:a9:54:5e:dc:19:ee:61:88:ea:b4:df:1b:51:56:32:22:
c0:69:43:cb:47:01:f2:15:36:4c:d0:31:d9:39:db:57:bd:47:
ae:4c:45:2d:2e:71:4c:bd:9a:67:c6:d1:67:82:ae:46:44:5f:
6d:66:f5:a1:04:6f:69:60:36:57:d5:e7:7c:66:40:1d:28:a7:
52:4a:dc:8b:af:cc:ef:4f:4e:b8:e0:9d:d0:ba:8f:8f:31:17:
1e:33:b5:cd:18:5e:3f:6c:41:67:93:be:6d:3d:2c:2d:e1:67:
8e:b8:bc:9c:b9:c8:ed:b0:0c:12:7a:25:1b:05:8a:36:5b:90:
63:d0:df:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:14:28 2026 by rpki-client