Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/535a67-f540-4f14-ad11-7f699a83bb0c/1/BbzEhnSas6uATPEZjL9XWoQFqNQ.mft
File: BbzEhnSas6uATPEZjL9XWoQFqNQ.mft (raw, json)
Hash identifier: mHpMurcuoxVbqpJAQ7dfT2WVRSgrN6N5BBcmjSHrnSE=
Subject key identifier: C0:37:C9:3E:A1:C2:D5:69:B7:09:EF:E4:B6:46:C0:01:27:15:A8:69
Authority key identifier: 05:BC:C4:86:74:9A:B3:AB:80:4C:F1:19:8C:BF:57:5A:84:05:A8:D4
Certificate issuer: /CN=05bcc486749ab3ab804cf1198cbf575a8405a8d4
Certificate serial: 019D2C29BBB8232BA5BC217E8B7A82AFE8C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbzEhnSas6uATPEZjL9XWoQFqNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/535a67-f540-4f14-ad11-7f699a83bb0c/1/BbzEhnSas6uATPEZjL9XWoQFqNQ.mft
Manifest number: 0CED
Signing time: Thu 26 Mar 2026 22:00:25 +0000
Manifest this update: Thu 26 Mar 2026 22:00:25 +0000
Manifest next update: Fri 27 Mar 2026 22:00:25 +0000
Files and hashes: 1: BbzEhnSas6uATPEZjL9XWoQFqNQ.crl (hash: tNUr+bbhBE7Ky4j6o7DZo2WnJh8UxmcxAFh7Yif6be0=)
2: g9ARekBVcGhcdV1yDxzPFfg3FSA.roa (hash: CrdyMkeoZOTfj+RdiOHlPBQWgx83YTO1C282t0kyBq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/535a67-f540-4f14-ad11-7f699a83bb0c/1/BbzEhnSas6uATPEZjL9XWoQFqNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/535a67-f540-4f14-ad11-7f699a83bb0c/1/BbzEhnSas6uATPEZjL9XWoQFqNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/BbzEhnSas6uATPEZjL9XWoQFqNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2c:29:bb:b8:23:2b:a5:bc:21:7e:8b:7a:82:af:e8:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05bcc486749ab3ab804cf1198cbf575a8405a8d4
Validity
Not Before: Mar 26 22:00:25 2026 GMT
Not After : Mar 27 22:00:25 2026 GMT
Subject: CN=c037c93ea1c2d569b709efe4b646c0012715a869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:31:ff:7b:b6:0e:1f:31:b5:c6:11:ad:09:34:
38:99:31:b8:29:4b:a5:7b:31:49:48:fa:2c:3e:22:
18:57:87:83:ff:94:01:b1:af:68:80:25:cb:d9:f9:
fe:dd:8e:8d:38:16:11:92:c8:0b:23:fb:77:fe:08:
07:9d:0b:18:26:b9:74:52:9d:e1:86:61:17:c4:bc:
24:40:a2:e8:f8:14:3a:d5:0a:8e:8d:a3:da:80:67:
8c:d9:5f:89:d6:01:bf:e4:72:15:06:50:fe:8f:90:
12:c9:51:ed:e8:46:02:94:ac:1d:09:40:b0:19:c7:
6d:04:82:0f:2c:10:7e:05:b0:75:2a:b0:f3:ad:97:
00:a1:c1:c2:78:68:13:9e:a0:3a:4e:7d:38:ee:60:
85:b7:a1:a1:d9:7a:fa:9d:16:56:ba:37:6d:12:38:
b4:6c:a0:bd:3a:2d:f5:74:03:b1:35:8a:27:a8:e0:
30:6c:49:3f:44:13:26:f1:52:7e:f3:b6:6f:b0:89:
fa:3a:fe:f8:ec:8b:9a:d3:46:fb:d0:09:62:f8:2d:
13:a6:de:d8:c2:7f:4e:3a:e6:63:d0:52:5e:15:95:
a6:c3:df:cd:1a:e3:af:96:88:01:c6:9f:f3:26:60:
ca:ef:48:f7:8b:39:7c:b9:81:be:6a:fe:cf:a9:c8:
82:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:37:C9:3E:A1:C2:D5:69:B7:09:EF:E4:B6:46:C0:01:27:15:A8:69
X509v3 Authority Key Identifier:
keyid:05:BC:C4:86:74:9A:B3:AB:80:4C:F1:19:8C:BF:57:5A:84:05:A8:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbzEhnSas6uATPEZjL9XWoQFqNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/535a67-f540-4f14-ad11-7f699a83bb0c/1/BbzEhnSas6uATPEZjL9XWoQFqNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/535a67-f540-4f14-ad11-7f699a83bb0c/1/BbzEhnSas6uATPEZjL9XWoQFqNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:51:e6:94:c5:86:91:c5:db:1b:ae:6d:33:b7:15:20:86:00:
ec:be:d2:06:9f:49:26:b5:db:80:04:fa:9b:1e:d1:10:58:88:
5c:ef:85:e8:d2:97:c7:89:0b:a6:11:63:7c:d3:0f:80:6b:7b:
fa:41:85:9d:8b:b6:f0:12:5d:99:2d:69:c8:30:98:16:0c:02:
6c:f0:89:97:eb:4e:06:60:07:67:fc:f9:be:ae:46:ca:c0:8d:
92:06:f8:cd:d1:28:05:56:bd:f8:66:f8:97:d4:41:2c:6f:83:
b3:02:16:2c:43:69:3a:86:30:a9:8e:af:d6:6d:2a:69:63:70:
09:13:a8:53:ba:04:33:4f:7d:01:28:8d:cb:c0:c9:92:3a:5d:
db:99:ba:73:dc:46:89:7b:01:2f:32:13:2b:fc:c7:4d:77:2a:
bf:36:aa:95:6f:52:6d:fa:9a:de:aa:e9:79:ac:04:43:aa:7c:
30:89:6f:7d:89:30:04:ac:bb:c1:28:1c:2c:e6:89:09:dd:c4:
3b:33:7c:71:50:56:1a:35:45:7f:f3:22:82:c8:38:8a:95:bd:
f1:77:34:a6:89:a7:b1:ae:4e:5f:94:24:92:9f:57:15:09:de:
a1:0a:b4:07:8d:ea:40:aa:b6:6f:3b:d4:8a:a2:91:95:42:f7:
93:0c:11:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 02:14:11 2026 by rpki-client