Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft
File: BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft (raw, json)
Hash identifier: QxmQb1e6tTPvDCfFWbiieSnAY83udY3z+36RhU9dTqA=
Subject key identifier: 12:DC:FC:EA:C7:ED:51:A1:B4:0F:F2:72:07:78:FE:71:13:B4:22:5D
Authority key identifier: 05:F2:74:8C:B4:38:62:A1:04:B5:6F:8C:62:04:B6:20:97:06:55:8C
Certificate issuer: /CN=05f2748cb43862a104b56f8c6204b6209706558c
Certificate serial: 019E1D59E591576378CF64D1BDE391F89EA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft
Manifest number: 0FF0
Signing time: Tue 12 May 2026 18:01:31 +0000
Manifest this update: Tue 12 May 2026 18:01:31 +0000
Manifest next update: Wed 13 May 2026 18:01:31 +0000
Files and hashes: 1: BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.crl (hash: XwLkIkhR98aPudP9uwHRlrH42lvjTxZ3SMrzqYJclb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:e5:91:57:63:78:cf:64:d1:bd:e3:91:f8:9e:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f2748cb43862a104b56f8c6204b6209706558c
Validity
Not Before: May 12 18:01:31 2026 GMT
Not After : May 13 18:01:31 2026 GMT
Subject: CN=12dcfceac7ed51a1b40ff2720778fe7113b4225d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4b:06:77:41:f9:c3:79:a4:67:32:4b:4f:1c:
46:16:cd:e0:85:3b:38:e2:9c:84:a9:aa:d8:08:2e:
d3:32:43:86:b4:5e:a0:4c:42:de:a0:6e:21:e8:8b:
59:43:0d:26:be:c8:60:77:05:ae:5b:18:14:cd:ce:
c9:9d:11:22:f8:c4:8b:0a:9c:28:ac:71:0d:67:59:
ba:31:27:66:b0:fd:59:03:a9:82:65:67:06:e7:d4:
9c:f4:6c:f2:de:37:88:2e:6a:ea:05:47:28:80:06:
ee:2a:1b:75:5f:4e:19:e6:ce:9a:d8:f8:ce:04:90:
89:fe:83:fd:26:6a:0b:c2:4f:3e:16:05:33:87:e0:
c0:61:38:2c:45:fe:37:0d:7d:f9:df:ad:ea:d9:96:
d9:de:e7:ad:e6:e0:f0:88:d6:9e:40:fc:30:31:07:
dd:ab:66:4e:a6:8c:cb:8f:a3:12:5f:85:11:30:0d:
9d:3a:a7:12:af:f7:b5:13:79:b5:aa:3f:b0:bd:03:
24:8b:25:a4:58:66:32:c0:c2:d0:fd:3d:59:79:a6:
92:9c:14:5c:09:18:53:4a:3c:7a:cb:d5:d5:3b:24:
0e:22:e6:12:76:5f:2e:2e:ae:ae:6e:e9:16:a5:50:
bd:9c:7d:d1:b2:2b:4c:49:1e:96:43:1c:5c:f5:a5:
3e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:DC:FC:EA:C7:ED:51:A1:B4:0F:F2:72:07:78:FE:71:13:B4:22:5D
X509v3 Authority Key Identifier:
keyid:05:F2:74:8C:B4:38:62:A1:04:B5:6F:8C:62:04:B6:20:97:06:55:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:4c:dc:6b:1b:87:1f:bc:15:95:2c:1f:9c:ac:86:ca:68:e1:
09:7d:65:31:5f:46:78:f6:c1:5b:97:80:e3:eb:8d:d2:69:6f:
ba:c1:87:eb:e1:12:85:eb:e1:67:30:7d:b9:52:e1:d6:c8:1b:
de:cd:2d:55:57:72:b1:69:09:5a:e9:13:88:05:d6:d9:1b:29:
6e:22:88:98:4f:62:fa:9e:19:1e:d4:7c:f2:f4:98:b2:2d:16:
9f:ee:d1:26:cf:9a:94:d9:61:8d:66:e5:ee:4a:5b:e8:ea:f1:
54:48:fc:3d:8a:c8:d3:9e:2d:d5:e9:a4:d8:6e:d4:a5:1a:d7:
ec:7e:3d:4a:01:8d:5a:6f:5c:16:88:3d:15:a8:3a:c8:35:e9:
01:ce:8d:2b:3a:0c:a8:ff:4f:e7:44:62:37:66:39:74:5b:2f:
c8:b0:20:60:66:c7:97:28:66:d5:2a:e1:83:77:63:e4:ea:59:
77:28:04:9f:85:81:a5:d0:c5:2c:1e:92:ff:50:47:53:b1:76:
2c:a4:55:a5:5d:32:de:ad:5f:c5:63:ef:08:be:79:3b:a5:28:
e8:03:05:55:1a:18:c2:6e:af:5b:36:37:ff:d5:e2:de:b4:20:
dc:8a:d4:d6:00:d3:81:15:57:22:7b:7d:de:a3:95:98:be:23:
af:98:a4:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:15:37 2026 by rpki-client