Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
File: BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft (raw, json)
Hash identifier: Nj/py/v/8+KbfpOX3b1tnZNCxopPDIJYvJmTcrflKKI=
Subject key identifier: 3B:E5:01:B0:02:30:C0:BE:D7:98:6F:CE:4C:56:2A:5E:DD:58:16:3F
Authority key identifier: 04:B6:1E:51:40:CD:89:84:F7:FE:20:10:DB:59:EB:DB:2F:3E:D4:E6
Certificate issuer: /CN=04b61e5140cd8984f7fe2010db59ebdb2f3ed4e6
Certificate serial: 019E1C468AAAEBE6A62EDF8C08C25F1A98D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
Manifest number: 0F5D
Signing time: Tue 12 May 2026 13:00:45 +0000
Manifest this update: Tue 12 May 2026 13:00:45 +0000
Manifest next update: Wed 13 May 2026 13:00:45 +0000
Files and hashes: 1: BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl (hash: NdAtWbGCxd0X0wgE6bW9MU5Y48yNNkxzLD+acGqbmOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:46:8a:aa:eb:e6:a6:2e:df:8c:08:c2:5f:1a:98:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04b61e5140cd8984f7fe2010db59ebdb2f3ed4e6
Validity
Not Before: May 12 13:00:45 2026 GMT
Not After : May 13 13:00:45 2026 GMT
Subject: CN=3be501b00230c0bed7986fce4c562a5edd58163f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d4:ea:aa:71:48:61:a0:49:a7:c1:59:70:29:
42:b9:c8:be:7b:90:2e:f0:65:66:77:29:3e:2c:b4:
0a:e5:79:7c:dd:2a:a4:41:5c:8c:ec:90:6f:97:9a:
3f:ea:47:dc:75:4d:fa:a9:d6:2b:55:37:9f:4d:8a:
03:9b:5f:fb:cc:84:72:57:d2:01:8b:eb:5c:f5:88:
6a:63:04:e7:21:3c:98:97:1a:a3:42:37:1c:cc:0a:
0d:bc:e8:f8:3e:83:63:a7:c7:71:c6:2c:94:0a:27:
2d:87:c9:ac:d7:6d:df:7a:b4:a3:3e:1d:02:97:86:
0a:35:3c:57:c6:a5:20:5c:b0:24:a8:d5:67:7b:70:
24:37:26:35:b8:16:01:90:e1:b4:84:13:23:a3:1b:
0e:a7:af:d2:b5:fd:b5:30:cb:c0:39:a5:f8:8e:8d:
6f:e6:04:84:ed:0f:3b:41:60:95:a2:55:9c:3c:67:
26:ab:97:88:c0:ae:cf:cb:13:95:67:eb:99:54:12:
13:4c:19:16:04:e4:58:df:d8:ae:c9:18:4f:25:48:
aa:86:b5:e4:ba:65:e7:88:b8:96:dd:bb:e7:1f:66:
34:a5:90:bb:0f:2c:d7:e3:90:69:81:ac:b7:b9:e5:
e2:30:c9:ca:98:f8:8e:50:77:ef:a3:a2:af:80:05:
8a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:E5:01:B0:02:30:C0:BE:D7:98:6F:CE:4C:56:2A:5E:DD:58:16:3F
X509v3 Authority Key Identifier:
keyid:04:B6:1E:51:40:CD:89:84:F7:FE:20:10:DB:59:EB:DB:2F:3E:D4:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:a0:06:5a:c5:57:a1:fd:b4:98:d0:26:d0:02:c4:4d:21:cd:
c3:f2:11:86:c4:61:da:12:74:74:1b:44:6c:9a:d1:69:44:5f:
cf:64:e2:c1:cf:14:99:66:95:f6:97:d4:f4:90:44:55:1c:0e:
30:8c:51:08:78:b4:b8:94:0d:ca:79:de:25:dd:21:12:15:a6:
7e:b4:5d:4a:53:bc:b7:38:db:46:80:d1:11:61:c4:54:dc:ea:
ba:14:ed:46:e9:07:d2:0d:76:08:2a:17:91:e7:4b:32:4e:1b:
65:83:b9:a6:2d:90:7d:09:2b:8d:8e:ca:f6:8f:d8:52:81:30:
91:14:5c:68:6b:e7:2c:62:52:c6:a1:58:f8:c2:26:87:cc:d5:
8b:af:2f:d3:43:81:f0:99:8b:59:78:9f:30:3c:07:e3:45:09:
e1:20:e9:1d:bd:c0:20:42:90:55:97:85:fb:b4:76:ad:ab:f6:
64:c4:81:ba:97:d1:4b:78:83:5e:f9:39:f7:76:4a:83:39:8a:
fc:93:a1:0c:1e:69:f2:ba:d1:fb:90:aa:6d:43:49:a8:f9:b1:
77:a2:eb:1f:d6:eb:be:20:3c:d6:58:2f:3a:25:ff:fe:4d:8c:
30:ac:9a:5d:7e:3f:c9:3f:16:1a:25:4e:d9:a6:c4:ac:e2:0d:
82:ed:12:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:12:44 2026 by rpki-client