Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
File: BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft (raw, json)
Hash identifier: D1vkWFdaYAOkbOnUxYTxIuk5ZP32Y+yhDUplPS0Pj0k=
Subject key identifier: E7:A7:A0:21:DE:E1:08:24:49:49:E8:DA:05:CE:24:CF:2B:84:42:E6
Authority key identifier: 04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
Certificate issuer: /CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Certificate serial: 019D270475987F910054EE3DDA931E3F1A20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
Manifest number: 0D6B
Signing time: Wed 25 Mar 2026 22:01:36 +0000
Manifest this update: Wed 25 Mar 2026 22:01:36 +0000
Manifest next update: Thu 26 Mar 2026 22:01:36 +0000
Files and hashes: 1: BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl (hash: G5seuDDq3kH1cnvivQboEMq2Oi+eeghCg88lG7z5GV0=)
2: we5jn01Cx98OQV43_9pqKOC3HXA.roa (hash: s+Xsw2hTwbHWmllV0HmHTjp9ztGy7bm5p6ULJLREmd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:75:98:7f:91:00:54:ee:3d:da:93:1e:3f:1a:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Validity
Not Before: Mar 25 22:01:36 2026 GMT
Not After : Mar 26 22:01:36 2026 GMT
Subject: CN=e7a7a021dee108244949e8da05ce24cf2b8442e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:20:24:96:6d:04:9a:e1:cd:71:46:64:cb:b4:
e6:9c:66:3b:a0:ff:dc:b6:2c:23:f9:c5:74:75:b4:
7e:3b:e0:f3:4f:29:5b:ab:12:ac:92:c5:96:08:86:
a1:44:76:d5:30:ac:c9:7a:49:c3:ae:61:dd:6d:b6:
b8:18:f9:4e:77:46:42:5a:16:35:d0:c7:a1:7f:10:
0b:69:75:83:b0:24:0c:5f:ed:2a:e1:36:37:b0:8b:
5a:db:7d:fe:db:29:67:b5:f9:20:46:32:ec:fa:5b:
2a:fc:b2:86:b1:a3:12:81:e2:f3:3c:1a:52:96:9b:
1d:cb:64:9b:e1:43:6a:ff:cb:bd:2b:34:74:06:ca:
06:02:a5:33:e4:7f:9e:66:be:98:00:e0:25:d7:5a:
7d:14:84:bf:fd:69:30:a5:0a:a0:3d:34:c0:4f:ff:
bc:60:7d:03:e5:54:de:60:fe:02:f5:ba:64:a5:93:
91:48:37:12:a5:6e:95:88:e3:54:17:73:d5:85:9b:
d4:50:1f:dd:82:35:d3:96:c3:dc:64:08:9f:08:52:
56:9c:bc:2b:bf:0c:cc:66:d0:32:d0:28:c1:56:3e:
26:a2:71:98:43:26:01:37:1e:02:e2:a5:b4:d2:de:
55:72:c2:11:01:4f:5a:ff:3a:06:06:8f:58:e4:a7:
4c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:A7:A0:21:DE:E1:08:24:49:49:E8:DA:05:CE:24:CF:2B:84:42:E6
X509v3 Authority Key Identifier:
keyid:04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:13:f3:5b:fc:bb:4c:f7:f7:a3:49:62:4a:f0:7e:aa:f5:8b:
93:34:15:5d:10:a9:49:bf:a0:32:c5:19:15:be:5f:b4:99:47:
6e:da:b9:f0:10:dc:c9:a5:b5:8e:23:7a:d8:04:3d:96:fd:45:
dc:45:a8:3d:15:7b:fe:94:42:18:a8:97:c4:b0:84:ae:06:eb:
9c:c4:da:26:84:61:0c:4f:e0:c8:e0:c6:4f:ee:8c:22:e2:78:
9a:13:8b:cb:47:4d:d9:fc:6e:31:ee:01:b2:01:54:d2:01:6f:
93:c6:10:b7:92:b9:31:e7:33:0d:3b:8c:22:9a:5a:d3:2f:61:
1f:94:ee:80:f5:59:8f:4b:2e:c0:e0:d0:34:3d:9a:49:f5:e1:
ed:46:9e:8d:07:cf:86:2b:d4:3d:e3:06:b7:20:dd:76:b2:ed:
6f:dc:9d:e3:d9:3c:d0:ba:d0:48:0e:99:5b:d3:64:78:a1:5f:
df:b0:fb:92:d9:06:d7:f6:7e:06:63:63:18:44:df:84:22:f3:
2b:71:2c:fd:d2:b9:a6:eb:82:bf:0b:8a:3c:02:60:21:09:a9:
15:fb:5b:76:e8:b0:96:04:94:52:51:ab:d5:74:f7:13:9a:76:
3f:2b:ec:90:3d:49:28:d5:52:98:db:63:ee:a8:a6:0b:dd:5b:
85:a1:70:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:18:52 2026 by rpki-client