Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
File: BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft (raw, json)
Hash identifier: Sylru6uFA4K2EkFmibsbUzdxB5Hhy1/74lJishvzhkI=
Subject key identifier: D1:6B:9E:B6:DE:EA:81:EA:43:19:DE:24:A7:4C:30:60:7A:9F:76:EA
Authority key identifier: 04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
Certificate issuer: /CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Certificate serial: 019E1E3550983A4C3616F475743E03B863AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
Manifest number: 0DEB
Signing time: Tue 12 May 2026 22:01:10 +0000
Manifest this update: Tue 12 May 2026 22:01:10 +0000
Manifest next update: Wed 13 May 2026 22:01:10 +0000
Files and hashes: 1: BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl (hash: XRzOO5QsLJQCr66tF4XieYMc4cMlvYx1FDTtJyg6g9g=)
2: we5jn01Cx98OQV43_9pqKOC3HXA.roa (hash: s+Xsw2hTwbHWmllV0HmHTjp9ztGy7bm5p6ULJLREmd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:50:98:3a:4c:36:16:f4:75:74:3e:03:b8:63:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Validity
Not Before: May 12 22:01:10 2026 GMT
Not After : May 13 22:01:10 2026 GMT
Subject: CN=d16b9eb6deea81ea4319de24a74c30607a9f76ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6c:73:1c:71:1f:37:35:41:3b:68:aa:ea:da:
ee:47:5f:82:68:82:20:72:e3:f8:d9:62:8d:ea:79:
86:41:a9:6e:eb:2a:b2:45:ca:b6:4c:a0:aa:cf:79:
61:f3:4d:c4:28:15:90:ff:e0:d8:aa:f1:c7:cd:de:
da:61:e6:71:fb:10:a2:22:cd:81:36:20:de:2e:29:
72:ca:39:f0:ed:3f:6b:ba:39:8e:a9:0a:99:0a:a1:
98:3d:4e:f1:3e:a6:c5:a1:15:32:41:ce:5a:0b:db:
af:ef:cd:fd:fa:b6:e7:ff:fd:b8:56:ff:a1:87:8a:
ab:43:96:46:b7:84:0f:c5:04:b4:e6:c2:5e:ec:3e:
1c:bf:ae:3f:5c:dd:92:be:f9:ba:ca:f0:36:71:63:
96:47:a5:c4:4a:ea:2e:48:75:01:be:87:18:d6:a7:
c0:8b:3b:fb:9c:3b:3c:ba:bd:39:5d:72:5d:ee:64:
9d:f8:b9:89:8f:ad:65:02:d0:62:7a:b1:24:e3:cd:
a4:b9:5e:31:a2:8f:99:26:1e:9e:63:0c:e3:d8:80:
36:e7:39:16:c6:07:41:bf:cf:81:21:77:94:7a:d9:
9c:b8:8d:7c:08:46:a1:27:6e:05:dd:6b:11:b9:5f:
1c:2a:7a:aa:77:d7:a7:d8:1b:32:50:2b:e8:d0:7d:
1a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:6B:9E:B6:DE:EA:81:EA:43:19:DE:24:A7:4C:30:60:7A:9F:76:EA
X509v3 Authority Key Identifier:
keyid:04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:f8:22:2c:d6:80:1c:b3:ba:e4:ab:4e:ee:b8:df:1c:4e:fd:
75:77:78:11:24:6f:55:45:b2:57:30:f1:f7:99:4c:55:88:94:
ca:9c:9c:a3:68:e1:f6:29:f7:33:8e:48:e0:02:a4:69:a0:87:
80:4c:df:1a:9f:fd:b2:a6:f1:b7:36:d7:b9:52:27:44:7a:b0:
1f:c9:5d:99:09:c4:1a:f5:e1:cd:32:4e:7b:c1:f3:d1:91:c5:
21:ba:94:d5:01:76:cb:50:63:aa:66:f8:c5:2c:fe:ba:29:73:
07:97:98:59:6d:28:a0:b3:11:4b:55:34:1c:ba:8b:99:59:22:
9c:af:21:85:57:4e:dc:c0:5a:85:22:1b:ec:2b:76:9c:fe:31:
dd:8d:76:0a:e3:54:ad:33:9a:4a:f7:46:ee:58:c2:1e:1c:87:
c1:f6:2c:d0:8b:eb:6b:c5:22:9c:f0:84:78:64:cc:8c:54:42:
f5:95:a6:eb:e0:fe:3f:d8:18:31:34:fc:2b:d2:51:4b:ed:8c:
16:6e:59:69:81:46:9f:a2:28:27:f2:b7:8a:3b:1e:bf:ce:7c:
0f:73:0c:c3:84:0c:f3:a7:74:b6:6c:69:e6:ba:cd:f5:52:f9:
c8:75:7b:b2:92:bd:c5:80:db:57:bc:74:65:07:20:8f:f6:9f:
a8:b5:67:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:23:19 2026 by rpki-client