Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/9157d6-1f05-4510-8037-78c0c02f78a2/1/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.mft
File: BnIOtAfVsbmyRFO4Jsqm8HTn0S0.mft (raw, json)
Hash identifier: zF0DjxiKRDAAauLjJNK84a/yE65Oeoy1du5EtYxG2Cc=
Subject key identifier: F8:31:AF:E7:78:75:DA:83:B9:60:0A:C1:D7:83:5F:E7:8C:8B:4B:96
Authority key identifier: 06:72:0E:B4:07:D5:B1:B9:B2:44:53:B8:26:CA:A6:F0:74:E7:D1:2D
Certificate issuer: /CN=06720eb407d5b1b9b24453b826caa6f074e7d12d
Certificate serial: 019E1EDA3DE187742A0C51A05F8872757EA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/9157d6-1f05-4510-8037-78c0c02f78a2/1/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.mft
Manifest number: 01C1
Signing time: Wed 13 May 2026 01:01:19 +0000
Manifest this update: Wed 13 May 2026 01:01:19 +0000
Manifest next update: Thu 14 May 2026 01:01:19 +0000
Files and hashes: 1: 7lQobzQt-5q29EiSIIISjIEGm7I.roa (hash: KDl0HvpgkkQD8R6H4Y75QdJhIr3+SLg/51QYF1pKsL8=)
2: BnIOtAfVsbmyRFO4Jsqm8HTn0S0.crl (hash: NMPKubcTIjhFMf/qrxT/XnObd/HcX+w50a+v/t7aoFo=)
3: joLWUuWtNpnkb1ExukMjJe0diao.asa (hash: 1ErfkIq/8qmG1QuEQD1Vjmn8g7p8pDBX+uSLXcofoPQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/9157d6-1f05-4510-8037-78c0c02f78a2/1/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/9157d6-1f05-4510-8037-78c0c02f78a2/1/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:3d:e1:87:74:2a:0c:51:a0:5f:88:72:75:7e:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06720eb407d5b1b9b24453b826caa6f074e7d12d
Validity
Not Before: May 13 01:01:19 2026 GMT
Not After : May 14 01:01:19 2026 GMT
Subject: CN=f831afe77875da83b9600ac1d7835fe78c8b4b96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:e9:39:65:c6:6b:6d:07:67:c3:92:9d:de:39:
27:07:24:eb:4a:86:73:b4:80:5c:8f:49:7c:c7:aa:
77:19:e3:78:51:16:03:3a:c1:63:8f:96:4d:44:a2:
71:ee:a8:ae:dd:a7:86:d6:30:a2:c4:90:0b:a4:46:
b5:fd:12:38:6a:34:c8:53:ab:62:e5:ab:42:d4:3c:
76:fc:eb:b7:db:f9:ee:f1:44:fe:7a:7e:70:79:d6:
be:f8:3e:6d:10:90:49:53:05:c7:a8:3e:03:8c:22:
df:6c:55:17:66:ee:41:25:2e:2f:a4:64:ed:c9:5b:
fd:a6:4e:b0:0d:0a:05:a0:8b:92:bd:63:96:96:c6:
42:25:cf:f9:4e:f5:f6:ca:58:65:f8:cb:56:77:55:
cf:9c:27:2e:13:6f:9a:4b:1d:81:92:bb:23:07:3b:
5e:b3:8e:c4:8c:46:29:56:98:3c:b6:52:e4:83:5f:
de:23:d7:8e:86:82:ca:b8:ec:ce:22:01:eb:99:79:
d1:a4:a0:bc:04:df:cd:92:96:85:15:1f:c6:3a:2e:
1a:c2:06:d5:b3:41:2f:48:1d:cd:f4:59:f1:b4:c0:
0f:7e:a6:14:1f:5d:76:c1:e7:18:7a:94:a1:40:d7:
a8:ba:11:81:73:30:82:bb:1f:fa:c1:5f:db:a2:3b:
34:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:31:AF:E7:78:75:DA:83:B9:60:0A:C1:D7:83:5F:E7:8C:8B:4B:96
X509v3 Authority Key Identifier:
keyid:06:72:0E:B4:07:D5:B1:B9:B2:44:53:B8:26:CA:A6:F0:74:E7:D1:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/9157d6-1f05-4510-8037-78c0c02f78a2/1/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/9157d6-1f05-4510-8037-78c0c02f78a2/1/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:2f:75:7c:c5:49:54:b8:cb:f2:ab:8f:f2:45:8a:65:b4:b6:
7f:86:68:9b:52:26:65:8a:6c:c9:9a:b7:2e:0e:c3:9a:88:f1:
92:e5:42:f3:3e:08:c4:ea:e5:a9:5f:3c:ce:36:6b:6b:a3:99:
9f:10:40:0a:9d:1e:14:6c:41:a8:0e:1d:f8:76:cf:ea:b5:fb:
f2:2e:a4:5c:4d:a0:38:34:df:36:72:ae:64:05:d8:5d:59:59:
51:89:d6:22:94:1d:1a:c8:3d:61:92:ea:f4:c5:fc:65:38:ab:
2f:f6:9e:30:dc:d2:d4:71:5d:e4:1f:c5:ee:04:44:7f:ee:c8:
1d:1a:57:05:32:4d:db:8c:cf:db:68:dd:18:b7:43:e9:d6:94:
d4:0f:1f:d9:31:57:37:13:c8:f9:dc:5e:e3:c0:66:0f:f1:4b:
a3:da:22:00:b6:d2:b6:23:fa:a5:8f:19:9f:30:24:e9:62:7a:
de:e6:98:17:c8:e4:c0:bd:16:45:a3:1c:d3:db:d8:99:18:27:
87:4f:ba:24:da:c5:45:0b:9b:c6:5e:79:f2:24:c3:5e:d2:03:
37:9c:f9:16:3c:9e:f1:88:d9:f6:ca:34:ef:6c:3e:9a:2c:e5:
c0:a1:36:08:c1:5c:4a:32:3c:b7:cd:f5:af:ef:ac:f5:36:ed:
66:ee:80:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:54:57 2026 by rpki-client