Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/BwM6kQ_PLBsVl3oYrOfYV7pYuao.mft
File: BwM6kQ_PLBsVl3oYrOfYV7pYuao.mft (raw, json)
Hash identifier: zZsw2lGG+yiod0K92NgOONa4P4tRdHCNeImCIln+Aqw=
Subject key identifier: 9A:C2:11:DC:49:EE:F6:CF:E4:DA:34:32:F7:6C:E6:D2:DC:57:2B:2F
Authority key identifier: 07:03:3A:91:0F:CF:2C:1B:15:97:7A:18:AC:E7:D8:57:BA:58:B9:AA
Certificate issuer: /CN=07033a910fcf2c1b15977a18ace7d857ba58b9aa
Certificate serial: 019D2A04C55B35D9A1C239BD95A964E9DF01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BwM6kQ_PLBsVl3oYrOfYV7pYuao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/BwM6kQ_PLBsVl3oYrOfYV7pYuao.mft
Manifest number: 0D17
Signing time: Thu 26 Mar 2026 12:00:48 +0000
Manifest this update: Thu 26 Mar 2026 12:00:48 +0000
Manifest next update: Fri 27 Mar 2026 12:00:48 +0000
Files and hashes: 1: BwM6kQ_PLBsVl3oYrOfYV7pYuao.crl (hash: VAhhcqkTxnR6wxst8pK1t5w0KbqZr8IMPTXlqeAFLgA=)
2: sY2TntCf1cm5rPVJjS36b5m6tZc.roa (hash: TkRTS5xgT3a1OQtVhPAIwsqGlZKttwReXi6Ay6Ls3bI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/BwM6kQ_PLBsVl3oYrOfYV7pYuao.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/BwM6kQ_PLBsVl3oYrOfYV7pYuao.mft
rsync://rpki.ripe.net/repository/DEFAULT/BwM6kQ_PLBsVl3oYrOfYV7pYuao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:c5:5b:35:d9:a1:c2:39:bd:95:a9:64:e9:df:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07033a910fcf2c1b15977a18ace7d857ba58b9aa
Validity
Not Before: Mar 26 12:00:48 2026 GMT
Not After : Mar 27 12:00:48 2026 GMT
Subject: CN=9ac211dc49eef6cfe4da3432f76ce6d2dc572b2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a4:0b:a3:a7:39:87:9d:4b:df:86:f8:87:90:
7a:39:39:99:4d:5d:94:f3:e4:c0:74:e5:79:da:f1:
17:23:f9:a0:cf:ef:8a:0c:78:9f:85:44:6b:d7:1d:
ac:34:e8:01:2d:50:dc:6f:09:f0:aa:f8:59:3a:3b:
ec:7b:7d:f3:91:09:f8:9f:0d:09:71:31:0d:35:24:
77:5d:7a:f9:40:e5:ce:ce:b9:e4:7f:06:77:6f:80:
41:c0:9a:83:8d:b8:35:8b:e0:61:ba:a2:d5:94:7a:
a9:aa:21:2f:e3:c7:2e:6f:01:97:f6:5b:b5:a4:df:
e6:12:e7:c3:af:7e:f7:ec:c5:18:df:39:be:b4:08:
85:e9:af:67:b2:7a:58:95:5b:67:95:12:3f:1a:79:
fe:ed:26:98:d7:c9:0f:a3:d6:12:e3:e1:53:44:3b:
f6:cf:d9:b2:15:75:8d:ec:16:55:a4:b7:cf:82:e6:
0c:b0:ab:10:53:8f:24:43:d8:81:f1:cd:00:01:85:
df:5a:ea:16:39:33:33:a1:d1:a9:a1:6a:91:ec:8e:
f6:e8:90:84:e2:8f:8d:03:34:e4:35:12:be:68:1f:
0a:36:1c:e2:b9:af:ce:9c:07:a9:9a:02:84:e9:ba:
69:71:8e:0f:3b:5f:34:db:05:79:9b:d4:d0:d0:3b:
b1:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C2:11:DC:49:EE:F6:CF:E4:DA:34:32:F7:6C:E6:D2:DC:57:2B:2F
X509v3 Authority Key Identifier:
keyid:07:03:3A:91:0F:CF:2C:1B:15:97:7A:18:AC:E7:D8:57:BA:58:B9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BwM6kQ_PLBsVl3oYrOfYV7pYuao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/BwM6kQ_PLBsVl3oYrOfYV7pYuao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/BwM6kQ_PLBsVl3oYrOfYV7pYuao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:45:40:56:51:a5:c8:51:3b:a8:f4:6b:9a:3c:e6:81:5b:d3:
91:d3:bc:82:97:29:fe:c6:b5:9f:ab:f3:96:c9:4f:fd:4a:a6:
db:0e:92:3e:43:40:2b:33:c8:3f:07:72:52:09:94:1b:25:70:
bd:e3:3d:ca:cd:02:26:b7:a1:e9:87:c4:e9:1f:88:42:fb:55:
47:95:91:3d:81:ad:71:df:f6:8a:2c:ef:4b:e4:1a:53:97:c7:
d1:e2:3b:d5:e4:4d:57:cf:19:46:2f:da:0a:ad:07:11:7b:a0:
17:c4:1c:e2:60:58:5a:2b:64:52:2d:fd:f8:f7:3b:eb:13:07:
fb:ed:99:19:34:98:58:a8:28:2a:4c:60:ad:bb:a4:37:b9:cb:
d9:82:80:8c:56:a5:1d:e4:aa:19:9a:a9:b3:d4:d8:30:10:e4:
6e:7d:a7:79:67:4b:36:c7:80:4b:06:b6:f1:f7:90:25:c3:9b:
d1:97:4e:2e:9c:92:9e:ff:a3:e4:c9:86:c8:32:45:c4:00:81:
f5:e6:f4:17:ef:f7:1b:52:aa:e0:fe:8b:67:86:8a:e5:d4:53:
2b:45:4e:7b:b6:0e:12:d5:5d:38:53:6d:a9:2b:b3:78:9f:33:
a4:96:05:08:f5:11:69:ca:db:de:2c:b5:ad:81:c1:c7:c1:93:
76:c1:e4:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:45:37 2026 by rpki-client