Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
File: BPD3XK7T8miFrGVjD_qu53pw69k.mft (raw, json)
Hash identifier: Ff/lg1cJcswyIvJxzFDpzi1GkWBvSdYwgST7K3M669s=
Subject key identifier: 8B:AF:5E:7B:73:C8:DD:9F:E2:9C:A1:0E:18:D7:1C:45:C7:28:F0:AE
Authority key identifier: 04:F0:F7:5C:AE:D3:F2:68:85:AC:65:63:0F:FA:AE:E7:7A:70:EB:D9
Certificate issuer: /CN=04f0f75caed3f26885ac65630ffaaee77a70ebd9
Certificate serial: 019E1D9076BF63C824561DA0A44E613113A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
Manifest number: 16A5
Signing time: Tue 12 May 2026 19:01:07 +0000
Manifest this update: Tue 12 May 2026 19:01:07 +0000
Manifest next update: Wed 13 May 2026 19:01:07 +0000
Files and hashes: 1: 1dYhzWKh39b-0GLPb-ct32MCxhk.roa (hash: HvZcxTszijTpa0P8i88U2ahY8WNXyPEFJPNOW2Ie54g=)
2: BPD3XK7T8miFrGVjD_qu53pw69k.crl (hash: OxkX7DhCeZqtlELVJUtnhLtSEsmtGb3F8bcgyYLgZUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:76:bf:63:c8:24:56:1d:a0:a4:4e:61:31:13:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04f0f75caed3f26885ac65630ffaaee77a70ebd9
Validity
Not Before: May 12 19:01:07 2026 GMT
Not After : May 13 19:01:07 2026 GMT
Subject: CN=8baf5e7b73c8dd9fe29ca10e18d71c45c728f0ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:df:a1:a9:07:4a:7b:a4:2e:e9:ee:b1:fb:95:
e2:25:d7:c7:96:70:2c:8d:58:82:a3:d3:27:a3:d8:
02:ed:6c:5c:41:e0:2f:21:aa:72:50:60:f1:73:e5:
48:fb:ff:c8:1c:f5:5b:fe:67:84:19:45:b7:b8:d2:
84:91:f7:88:20:3e:8a:9f:98:1d:20:7b:fe:68:e7:
38:d4:76:a2:1a:1d:12:1b:76:b2:93:86:94:f9:58:
36:38:b5:9b:04:05:bb:29:77:10:b9:85:38:d3:a2:
72:47:80:0b:95:b3:9d:05:dc:35:82:ec:12:39:9b:
e3:d6:ab:68:f6:56:00:2a:40:36:e9:6e:a7:33:fc:
18:1a:09:df:35:bc:56:2c:a2:5d:58:8e:73:b5:a4:
70:eb:c7:f4:c6:93:6e:80:fc:4c:8f:60:f8:80:67:
6d:aa:b0:9e:e1:02:33:f9:bf:b4:d1:b7:91:45:2d:
8e:5a:89:55:9f:b1:fc:bc:d2:4f:84:09:df:28:bb:
c7:73:ba:6e:29:53:66:86:cb:40:c7:06:92:ac:05:
01:01:c8:da:36:a7:ea:b6:8a:bd:5b:39:62:a0:63:
7b:40:a9:46:02:db:a7:15:3e:5f:ab:89:bc:65:d6:
a4:c3:3f:71:17:a4:c4:e0:50:1e:c7:fb:fc:12:88:
22:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:AF:5E:7B:73:C8:DD:9F:E2:9C:A1:0E:18:D7:1C:45:C7:28:F0:AE
X509v3 Authority Key Identifier:
keyid:04:F0:F7:5C:AE:D3:F2:68:85:AC:65:63:0F:FA:AE:E7:7A:70:EB:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:49:a2:ae:f8:ed:b2:75:6b:cb:9d:97:5d:4a:a3:8c:c6:74:
aa:04:25:61:f8:31:d3:65:bb:d2:c4:3f:3c:8b:e7:d9:d6:b4:
fd:cf:e0:8c:f3:ce:12:2b:cd:9a:a5:bd:40:71:9d:b8:da:c3:
32:7f:cc:d6:46:cb:ce:67:47:75:5a:ed:a0:48:e2:4b:a8:aa:
b9:d0:f0:a6:21:7e:ce:99:cf:00:05:50:85:2d:1a:9c:a3:50:
f9:04:16:cc:44:bb:62:25:7b:15:41:b0:2a:c2:a3:4d:a2:3e:
b5:bc:34:82:ed:46:c0:65:90:1a:41:24:fd:02:57:9d:c4:d9:
90:82:d9:3d:bd:6c:18:df:13:9c:15:cf:84:0d:ad:e9:a0:33:
08:ff:81:46:04:d9:3e:f9:45:a9:28:aa:6a:07:43:33:53:ae:
de:21:24:73:4d:18:24:df:d6:27:ad:7f:b2:dd:47:00:1f:67:
5d:e6:21:85:6d:b0:1e:5f:12:4a:d7:f9:b2:ea:00:d9:eb:68:
94:95:08:f0:07:ac:27:6e:d5:d5:01:67:af:8e:f1:3b:bc:cf:
d0:26:dd:4a:8e:71:fd:ef:c1:3b:90:ee:61:f9:99:dd:af:d6:
6a:01:f7:7c:39:e0:22:0a:61:37:33:93:a8:35:ab:a5:38:cd:
ae:61:90:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:09:32 2026 by rpki-client