Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft
File: BLHnVu2xw70vV2afWCv2qVG4P0g.mft (raw, json)
Hash identifier: m/TPno47BGV0+eq8ERhSHlogjZn412SOneeXnwGFLcM=
Subject key identifier: E6:2A:AE:93:AC:76:54:10:C1:FB:61:20:A5:B9:A8:74:42:51:E4:24
Authority key identifier: 04:B1:E7:56:ED:B1:C3:BD:2F:57:66:9F:58:2B:F6:A9:51:B8:3F:48
Certificate issuer: /CN=04b1e756edb1c3bd2f57669f582bf6a951b83f48
Certificate serial: 019D270475B85D1DB7EA890FF668CE1B2C55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BLHnVu2xw70vV2afWCv2qVG4P0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 22:01:36 +0000
Manifest this update: Wed 25 Mar 2026 22:01:36 +0000
Manifest next update: Thu 26 Mar 2026 22:01:36 +0000
Files and hashes: 1: BLHnVu2xw70vV2afWCv2qVG4P0g.crl (hash: F12+ARj8w312vNyXyuEeiShEzJK3Y0VrANTq4gjfC4s=)
2: XvWth5JnRTo0n6WWkbtF-kr40Bo.roa (hash: FcXBAVVeRl2iDfImKR5vQ2YlB5INy+hid9PG+FEh1dU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/BLHnVu2xw70vV2afWCv2qVG4P0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:75:b8:5d:1d:b7:ea:89:0f:f6:68:ce:1b:2c:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04b1e756edb1c3bd2f57669f582bf6a951b83f48
Validity
Not Before: Mar 25 22:01:36 2026 GMT
Not After : Mar 26 22:01:36 2026 GMT
Subject: CN=e62aae93ac765410c1fb6120a5b9a8744251e424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4b:94:1e:e3:f1:b2:9b:c2:b5:e0:54:da:7d:
e2:59:84:5e:c7:ac:52:ab:2b:4a:aa:59:57:64:d6:
c1:27:97:78:c4:7a:ee:bf:ff:60:07:ca:e5:5c:23:
11:26:e4:84:5f:6e:3f:7c:0b:4a:4d:ce:09:ee:8f:
2b:52:9c:86:ca:d8:84:1d:db:ba:3d:f3:1a:38:7e:
cd:2c:85:73:9a:40:06:dd:a9:d7:65:a7:c0:b9:9c:
4f:b0:51:1f:be:bf:a6:ab:bb:81:b3:c8:be:f6:02:
15:9d:14:3a:9f:93:b4:8c:84:a4:3b:60:c3:fb:e8:
4a:70:f8:ee:f2:fd:54:e2:58:d7:5c:82:63:7a:8f:
63:a7:29:69:48:56:a3:33:e9:8f:17:cd:c9:66:0b:
3c:b4:bb:1f:8b:39:e5:76:08:eb:10:10:f6:d5:81:
13:f8:78:65:d9:a8:13:3f:81:e1:3c:ea:aa:10:83:
52:bd:df:6f:5c:85:df:52:26:7e:70:9b:7e:8e:67:
a4:e8:82:bf:cc:47:50:aa:98:a2:03:24:4a:d1:cd:
df:31:f4:a5:7b:44:55:3f:60:0c:c5:e4:df:2c:9e:
30:5c:b0:74:ee:10:2d:40:6c:4a:37:7f:f0:62:36:
82:32:ec:2a:97:12:7d:aa:f8:60:38:3f:ca:3f:ff:
d0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:2A:AE:93:AC:76:54:10:C1:FB:61:20:A5:B9:A8:74:42:51:E4:24
X509v3 Authority Key Identifier:
keyid:04:B1:E7:56:ED:B1:C3:BD:2F:57:66:9F:58:2B:F6:A9:51:B8:3F:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BLHnVu2xw70vV2afWCv2qVG4P0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:9d:38:a3:d4:ea:45:04:47:ef:fa:3f:99:63:64:e9:bc:54:
ca:6d:bd:e9:87:dd:97:95:0f:09:2b:38:91:88:1a:89:d5:10:
c2:45:7e:dc:8c:dc:ff:dc:60:36:97:2b:f6:12:4a:8e:3c:03:
7e:cb:0d:0d:0f:6f:b0:7d:6c:cb:78:bf:ab:5a:70:b6:47:49:
32:67:e1:36:dd:fc:6c:04:db:0e:70:c4:c1:6c:33:ba:e0:30:
5e:55:7f:35:1e:27:78:8b:bd:9c:f8:77:d0:91:51:27:22:69:
fd:2e:dc:3b:c0:04:da:3e:70:c3:1f:e6:9c:c2:00:b9:2e:08:
1b:5b:29:d7:14:17:26:11:96:42:f1:1f:ad:37:22:c9:fb:b1:
1d:f6:2a:9c:34:2e:b6:40:4d:4f:5d:19:00:ea:7e:be:8c:85:
45:ce:69:6e:45:45:c3:c8:5c:ad:43:a6:9a:78:68:4d:e9:69:
fd:30:fe:35:fb:40:53:04:30:14:c3:05:dd:51:81:69:34:09:
8b:9c:4d:f6:3a:7a:1f:9a:89:d0:7e:5b:60:ec:63:47:af:f3:
9e:26:03:fc:5b:13:e3:e0:f2:14:bd:d1:9c:91:aa:cf:11:0c:
c3:05:28:67:38:55:c6:b8:7e:cc:04:62:ea:1c:5c:d2:6b:8d:
f1:bd:26:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:18:08 2026 by rpki-client