Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
File: BEMrQbKmzMlHFxP39wfXac1Mfb8.mft (raw, json)
Hash identifier: lXVrvCfsFxAMEM9/qLuY28tr34EeZRfqw90Z2zMt3Ns=
Subject key identifier: 93:FC:08:EA:F4:64:2A:B8:1B:47:E9:07:65:D1:3F:B7:49:52:0D:B4
Authority key identifier: 04:43:2B:41:B2:A6:CC:C9:47:17:13:F7:F7:07:D7:69:CD:4C:7D:BF
Certificate issuer: /CN=04432b41b2a6ccc9471713f7f707d769cd4c7dbf
Certificate serial: 019E1DC7186E20B3DF49C36AFAFE82A55222
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BEMrQbKmzMlHFxP39wfXac1Mfb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
Manifest number: 056A
Signing time: Tue 12 May 2026 20:00:47 +0000
Manifest this update: Tue 12 May 2026 20:00:47 +0000
Manifest next update: Wed 13 May 2026 20:00:47 +0000
Files and hashes: 1: BEMrQbKmzMlHFxP39wfXac1Mfb8.crl (hash: bFTeebtedpRDqBEo1sf3r11kMQQ4vLRsrfEHhU34Ths=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BEMrQbKmzMlHFxP39wfXac1Mfb8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:18:6e:20:b3:df:49:c3:6a:fa:fe:82:a5:52:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04432b41b2a6ccc9471713f7f707d769cd4c7dbf
Validity
Not Before: May 12 20:00:47 2026 GMT
Not After : May 13 20:00:47 2026 GMT
Subject: CN=93fc08eaf4642ab81b47e90765d13fb749520db4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:aa:e1:98:de:f2:79:a7:43:de:ef:e8:31:a3:
c4:a2:f7:36:b8:6a:82:c1:60:9e:2e:cf:3b:76:d5:
eb:95:49:65:9d:eb:89:c5:7b:17:e3:3f:a1:ee:10:
a9:b3:0c:40:45:57:32:83:a2:b2:27:36:4d:fc:45:
9f:3f:9d:30:01:90:21:56:03:25:69:66:3b:ec:fd:
60:be:e7:ac:d2:3e:97:1a:87:36:77:ec:60:48:91:
9a:e3:b5:f4:6b:0a:ef:23:ed:e3:82:4f:1a:17:95:
45:60:da:fb:ed:33:e6:1e:8e:5a:99:cf:a4:f5:36:
86:3b:d2:77:38:70:3c:e0:44:d2:28:06:08:03:60:
7c:9f:7a:34:b7:7f:2d:e2:bb:7f:94:23:e2:2e:c0:
be:87:62:de:2d:c5:14:df:ff:15:36:7e:91:be:50:
71:99:ed:e5:81:e9:0f:3c:15:1b:0d:4c:1a:b2:ee:
67:6a:f4:2c:15:19:7c:ad:1b:40:03:b2:b9:28:84:
c5:fe:6b:73:c5:50:fd:c0:0a:b3:d8:30:33:fd:33:
e3:b2:1c:de:78:55:9d:2a:5c:70:a4:36:ea:44:75:
00:61:d5:1a:42:e9:9b:39:f2:e0:4a:11:8b:9b:2a:
b9:d1:4c:a0:d3:c9:8f:b4:22:1c:b7:e5:46:4a:94:
2c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:FC:08:EA:F4:64:2A:B8:1B:47:E9:07:65:D1:3F:B7:49:52:0D:B4
X509v3 Authority Key Identifier:
keyid:04:43:2B:41:B2:A6:CC:C9:47:17:13:F7:F7:07:D7:69:CD:4C:7D:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BEMrQbKmzMlHFxP39wfXac1Mfb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/72a3de-76c6-4ddb-a4b8-6591d4e7f41f/1/BEMrQbKmzMlHFxP39wfXac1Mfb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:27:2d:1e:54:b4:ee:6a:0e:d8:69:54:c4:68:a7:d3:28:be:
06:e1:9a:4c:97:7f:fb:c8:1d:5c:ed:e5:3c:c6:b0:fa:d6:d0:
58:ef:b4:56:1b:4e:d7:4b:12:d5:9a:0c:d6:a7:18:dc:09:94:
f1:41:41:ca:7b:3a:07:c2:af:06:c6:bf:08:fa:a7:18:2c:0b:
7a:ea:23:bd:d6:08:8a:8b:51:02:c5:29:5f:34:d4:48:74:16:
2b:15:72:44:c6:12:1d:20:4a:82:8c:de:c9:79:eb:f8:6d:47:
4b:f8:30:25:86:48:f6:15:41:1b:fa:55:2e:cf:45:4b:d0:bb:
82:a7:bc:27:10:0b:74:c1:75:a5:88:cc:20:38:5d:57:0b:72:
c8:84:b3:e2:4f:86:65:45:ea:cd:4f:d9:63:67:98:11:01:3f:
86:d9:89:48:d6:bd:96:e4:02:a6:d6:66:6e:94:52:79:f9:8c:
3f:46:d9:c7:54:f6:72:29:6a:93:2f:11:d8:1b:2f:17:1c:5e:
af:59:26:ae:56:2d:6b:f2:39:7b:22:ac:29:bc:0d:49:93:af:
cc:d2:f8:fd:18:68:e6:b0:ba:82:aa:1e:d8:79:97:64:6b:9a:
c3:a7:ca:30:6b:6c:f9:0f:c5:79:75:45:49:61:71:71:d2:5f:
c2:27:5b:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:56:06 2026 by rpki-client