Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
File: BZ9RaALCYTCaYQSHcubq_VhnqZA.mft (raw, json)
Hash identifier: 8kqKGY3QnhqSQQ9kHWNnuB0AmZzs2R6Uwc6XjZE05Vo=
Subject key identifier: E9:0A:7E:C7:36:B1:22:64:C8:BB:72:B0:5D:70:1A:1F:81:81:09:59
Authority key identifier: 05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
Certificate issuer: /CN=059f516802c261309a61048772e6eafd5867a990
Certificate serial: 019E1FB56BEA109DD211E5F5DD52024F3DA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
Manifest number: 17C4
Signing time: Wed 13 May 2026 05:00:43 +0000
Manifest this update: Wed 13 May 2026 05:00:43 +0000
Manifest next update: Thu 14 May 2026 05:00:43 +0000
Files and hashes: 1: 46krBMuMgQRTOnYjjiwz0jZnP9g.roa (hash: i+WuevI3Tnw5jBTEqmKxgeqDkLLDwvFZgvTXSU8JdlE=)
2: BZ9RaALCYTCaYQSHcubq_VhnqZA.crl (hash: ttRAY89s4h4wDdhXCMSYx4pIFrR9CMR5aqbupNli04w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:b5:6b:ea:10:9d:d2:11:e5:f5:dd:52:02:4f:3d:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=059f516802c261309a61048772e6eafd5867a990
Validity
Not Before: May 13 05:00:43 2026 GMT
Not After : May 14 05:00:43 2026 GMT
Subject: CN=e90a7ec736b12264c8bb72b05d701a1f81810959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c9:c2:e2:d8:b3:3b:05:66:bb:ca:61:ea:46:
7a:70:77:b4:70:34:eb:30:9e:bf:db:7e:1e:5f:03:
a0:74:7d:7b:32:60:de:66:f7:d5:cd:7a:a2:6f:91:
51:10:ff:fe:1b:9f:c5:8f:15:61:64:bb:cd:bb:cc:
a2:5b:22:82:d1:48:1b:7b:0f:6e:41:5c:68:ee:6d:
36:8e:47:2d:b5:8d:d4:4c:c3:f8:e0:93:f7:fe:f4:
a0:63:cc:25:10:f2:43:a9:5e:fc:ad:82:1c:9e:ba:
9b:01:d3:41:23:58:79:c4:75:2b:ec:fe:24:0b:81:
71:99:32:27:99:c9:56:70:ad:64:07:c9:4e:70:d5:
29:b1:a4:80:c7:e8:93:2b:72:62:1a:d6:a4:3b:b5:
a0:fb:13:be:c9:b4:03:f6:50:2e:bd:51:84:d2:15:
bc:a3:a4:6c:e7:3a:07:18:04:71:cc:4d:59:07:1e:
66:c0:a9:53:b3:50:a7:e6:8f:b9:b3:be:61:11:ed:
a7:2b:1f:29:65:da:df:28:12:a3:94:26:a4:74:c8:
4a:f6:7a:00:ac:7f:51:3f:fd:a1:86:9f:31:44:56:
36:fe:66:d6:a2:95:e4:c1:d6:61:18:fd:c5:ab:28:
32:78:d6:30:ea:cd:e7:23:00:13:c0:f2:09:20:d9:
f3:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:0A:7E:C7:36:B1:22:64:C8:BB:72:B0:5D:70:1A:1F:81:81:09:59
X509v3 Authority Key Identifier:
keyid:05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:e5:e1:21:20:40:d8:d7:47:25:95:63:b7:e9:29:a8:7f:3e:
58:33:d4:6b:e4:b8:f6:ff:54:c8:dc:ce:cb:7b:be:7c:fa:1d:
78:e4:1b:5e:19:f9:f2:90:1b:78:71:9f:b1:ea:0f:89:59:3d:
ef:ec:bc:87:ed:f6:58:29:e7:3e:f6:6a:cb:24:26:53:c2:be:
7f:90:03:f2:04:74:e6:9b:1b:ef:cf:0e:12:e6:8e:77:c9:a4:
75:6f:8f:51:20:a1:33:38:78:5a:35:d2:40:19:f3:6b:58:67:
44:48:41:6b:57:a4:1c:99:8d:85:2d:60:65:de:93:45:93:1d:
3b:f6:98:9e:f5:ad:6d:98:d3:27:33:28:52:4d:bc:57:b1:69:
6a:5b:a5:8c:a0:6b:49:9d:2a:aa:a1:0f:75:f9:2f:1c:40:1f:
30:bd:63:b9:97:9f:14:8b:1f:e4:12:24:24:23:d0:b1:d2:87:
16:47:e0:e0:ff:7f:6e:27:0a:24:7c:56:8c:24:63:17:cd:69:
ee:22:c4:9c:7b:1e:45:73:d2:19:2f:0e:01:b6:91:6a:94:22:
a4:70:af:2d:64:83:5f:ff:b5:b3:0e:35:59:b1:64:42:ef:70:
af:78:36:77:a5:60:bf:a0:7e:cc:59:90:4a:d0:d4:5f:28:e5:
0f:90:2f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:13:33 2026 by rpki-client