Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
File: BPD3XK7T8miFrGVjD_qu53pw69k.mft (raw, json)
Hash identifier: tcX+Aa++3rzHeMJy5egWC1U4hyXS6u1ncNoa08ed3ZU=
Subject key identifier: 21:09:A8:09:E5:AC:C8:40:4E:2A:4B:DC:31:BC:21:D0:A3:1E:E7:56
Authority key identifier: 04:F0:F7:5C:AE:D3:F2:68:85:AC:65:63:0F:FA:AE:E7:7A:70:EB:D9
Certificate issuer: /CN=04f0f75caed3f26885ac65630ffaaee77a70ebd9
Certificate serial: 019D265F67A1355E624B8A69FC69333745F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
Manifest number: 1625
Signing time: Wed 25 Mar 2026 19:01:19 +0000
Manifest this update: Wed 25 Mar 2026 19:01:19 +0000
Manifest next update: Thu 26 Mar 2026 19:01:19 +0000
Files and hashes: 1: 1dYhzWKh39b-0GLPb-ct32MCxhk.roa (hash: HvZcxTszijTpa0P8i88U2ahY8WNXyPEFJPNOW2Ie54g=)
2: BPD3XK7T8miFrGVjD_qu53pw69k.crl (hash: zmDEkIIcE/DZzHKlHLNpbDAE2KSnfW0blZzC8gpBIAE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:67:a1:35:5e:62:4b:8a:69:fc:69:33:37:45:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04f0f75caed3f26885ac65630ffaaee77a70ebd9
Validity
Not Before: Mar 25 19:01:19 2026 GMT
Not After : Mar 26 19:01:19 2026 GMT
Subject: CN=2109a809e5acc8404e2a4bdc31bc21d0a31ee756
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1e:71:eb:27:39:0e:d7:ec:66:55:37:e1:99:
8e:79:56:af:b8:4c:cb:1a:4d:1f:ac:ba:5d:92:eb:
23:6a:18:b2:cd:46:8e:49:09:15:44:78:f9:d2:1d:
38:9c:fd:e7:cd:42:63:c2:59:d1:ac:04:89:3a:ee:
35:80:36:3f:09:da:45:62:82:d2:90:fa:64:ba:b1:
82:1e:e2:bc:b0:13:de:ad:e9:ab:fe:51:f0:b1:02:
cd:db:39:7a:29:f0:62:1f:6a:73:ab:53:80:08:d3:
34:7a:5e:d0:6c:ec:8a:78:97:a9:7c:b8:5b:fd:42:
2c:75:42:aa:3a:62:1e:97:75:21:d2:6c:49:44:75:
63:4c:ac:32:af:31:13:90:ea:01:48:96:ac:1f:18:
20:66:91:10:04:e7:3d:45:ae:20:97:34:23:ee:55:
93:34:21:3f:e2:1a:9a:5c:57:da:4b:d3:31:22:a9:
7e:b4:fb:7e:1e:71:85:71:eb:3e:2d:86:e8:95:53:
13:73:40:89:15:b8:fb:19:cf:a5:9e:aa:a6:5a:b0:
7f:51:e8:d5:46:c4:0c:fe:09:6e:b0:b2:1d:5f:d4:
2c:35:5a:9d:e7:d7:36:d7:da:62:ba:d0:46:5c:f4:
88:ae:2d:98:7c:75:18:1c:a9:f4:08:80:46:67:fd:
fc:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:09:A8:09:E5:AC:C8:40:4E:2A:4B:DC:31:BC:21:D0:A3:1E:E7:56
X509v3 Authority Key Identifier:
keyid:04:F0:F7:5C:AE:D3:F2:68:85:AC:65:63:0F:FA:AE:E7:7A:70:EB:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:12:19:6b:1e:42:f3:a1:7e:a7:b6:db:90:74:68:40:ff:08:
1c:10:cd:fc:d0:e1:ce:e7:ea:8f:68:75:26:a8:87:28:02:88:
6b:73:da:35:b6:d1:69:5e:a1:cd:18:77:6c:c8:0a:ca:85:d7:
60:61:ec:b5:39:ee:ac:01:0c:db:5b:25:3d:b6:a0:06:74:cb:
f3:44:b6:86:32:17:42:ec:14:94:e6:21:c5:1e:a6:47:8e:6e:
54:23:ca:fb:d8:d4:c8:1e:53:1e:b0:1b:22:31:ac:ec:c9:08:
7b:1e:90:fe:b1:40:a8:76:a9:50:13:4f:0f:f3:b3:2d:e4:88:
36:c6:84:9d:52:b9:59:75:72:00:9b:a7:f2:0e:df:35:90:7a:
12:2a:c7:fb:a5:2a:e5:d3:b5:65:54:ad:e5:97:49:38:bb:b7:
9f:1a:60:f4:06:24:ec:6f:20:4a:8d:e7:2d:40:79:f7:70:6f:
a4:a1:e2:5d:6c:11:35:0d:2b:ea:c1:1a:77:f1:4b:b9:37:43:
ff:e8:e6:9e:87:77:b5:4f:02:7a:c0:2b:7c:c9:a9:9a:23:c5:
5f:8f:95:27:37:9e:c2:de:1c:58:37:1a:42:68:39:59:e0:ea:
5c:f4:c1:8e:a6:ad:b0:82:fc:dc:cb:d2:11:7d:c2:b6:14:e8:
ed:68:a6:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:30:27 2026 by rpki-client