Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft
File: BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft (raw, json)
Hash identifier: H+8JKNnKtwx3dL5gEh9br9osE4M1PmvUOq3CVuLNUZI=
Subject key identifier: 24:39:3D:FA:DE:95:8F:B7:C4:14:EC:47:0D:55:53:AC:C9:0F:2B:5C
Authority key identifier: 05:F2:74:8C:B4:38:62:A1:04:B5:6F:8C:62:04:B6:20:97:06:55:8C
Certificate issuer: /CN=05f2748cb43862a104b56f8c6204b6209706558c
Certificate serial: 019D2A04B30C554C59EEDFC74ECC1137065F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft
Manifest number: 0F72
Signing time: Thu 26 Mar 2026 12:00:44 +0000
Manifest this update: Thu 26 Mar 2026 12:00:44 +0000
Manifest next update: Fri 27 Mar 2026 12:00:44 +0000
Files and hashes: 1: BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.crl (hash: SO+VcPTGJ92/g8D73E3zPyyX9W0mmewjf2iEM1H+x+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:b3:0c:55:4c:59:ee:df:c7:4e:cc:11:37:06:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f2748cb43862a104b56f8c6204b6209706558c
Validity
Not Before: Mar 26 12:00:44 2026 GMT
Not After : Mar 27 12:00:44 2026 GMT
Subject: CN=24393dfade958fb7c414ec470d5553acc90f2b5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b8:b3:5f:b3:ae:b1:0e:fd:d9:c6:33:df:1b:
3b:62:0d:1c:bc:d3:3e:e4:ef:24:bb:4f:0e:2e:3f:
61:d1:d4:6b:c2:05:d9:68:a4:12:f6:fe:b9:58:f5:
a5:e9:c9:ea:c0:7d:82:93:11:e3:dd:5d:98:22:31:
d1:12:89:49:74:12:91:21:40:64:77:82:09:19:30:
27:3a:92:f6:6d:6b:35:b8:a7:8f:e6:18:d5:95:fb:
7f:69:40:99:06:2e:06:eb:fe:69:cb:01:18:7c:95:
14:45:6e:b5:be:c7:f5:85:2b:9e:94:40:2d:03:cf:
84:7a:0a:2a:18:67:f8:56:a7:db:5b:3b:a1:34:f1:
a0:65:c1:c2:ba:37:28:45:9a:85:01:71:b4:e0:08:
3f:ba:15:88:a5:dd:51:1e:1a:28:30:49:e5:21:3e:
e2:42:8b:6e:20:01:42:0e:d4:14:d9:84:69:73:56:
82:e3:94:f8:0b:3e:8d:ca:63:4d:90:e0:7b:ee:96:
6f:ed:5f:0d:50:b4:fb:27:25:e6:3e:79:a7:2f:17:
f7:5b:97:ea:fb:06:62:ad:ed:93:d0:d2:80:df:02:
b3:c3:c8:e4:c1:2c:f2:62:2c:e0:b8:53:02:ed:d4:
93:2e:59:12:78:35:27:f1:9a:61:6e:74:f0:a6:da:
4a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:39:3D:FA:DE:95:8F:B7:C4:14:EC:47:0D:55:53:AC:C9:0F:2B:5C
X509v3 Authority Key Identifier:
keyid:05:F2:74:8C:B4:38:62:A1:04:B5:6F:8C:62:04:B6:20:97:06:55:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:8c:cc:5a:6b:94:c9:41:a7:88:4e:74:0f:38:23:87:af:59:
28:b5:f3:79:40:41:ec:5b:db:e7:8e:71:66:ac:93:48:fb:4f:
0e:96:32:b7:ec:1a:06:99:99:d6:22:f4:b0:7b:c4:03:3a:70:
f7:d8:4f:ea:66:ce:f7:70:86:b0:f9:54:4e:a3:46:bd:e8:ab:
10:f4:8f:ee:3a:05:7a:54:77:e7:d1:77:e1:eb:59:0b:cb:96:
1d:5c:9e:af:c2:5a:e3:08:83:af:d6:b2:68:82:03:7c:c4:43:
da:5a:f0:cb:48:35:6e:2a:77:8c:9f:39:ef:22:73:ee:8c:8c:
2a:3f:38:95:87:52:07:e6:34:4e:3f:e1:44:c5:86:82:d4:35:
d9:69:e1:62:e9:b7:90:dc:c5:2c:81:39:ee:22:aa:c5:48:36:
17:ff:b7:ed:8b:8f:81:b3:c2:ee:d5:54:51:be:0b:73:fa:1a:
7b:c3:1a:3a:bf:b3:00:29:91:b7:a6:fe:a4:3f:ba:71:20:27:
08:80:9a:c3:07:83:05:77:78:53:03:4d:e0:d7:9b:7f:41:3c:
13:12:2d:8b:3d:5b:a5:64:f9:8f:74:fc:e9:74:d1:b2:bd:13:
c6:19:bf:1c:1a:16:45:95:bc:aa:4a:1a:75:c1:42:b5:3b:65:
e8:bc:6b:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:38:06 2026 by rpki-client