Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
File: BSAFu2w9aGW4nBDzOwuZS3Svljs.mft (raw, json)
Hash identifier: pRHrulF3BU5M7tvl86dfK+E//4wHmBgk33HTLAMVaqs=
Subject key identifier: 47:1E:D5:0E:1F:B1:09:10:B6:50:C2:E2:8E:FE:6C:3A:D8:82:2D:B4
Authority key identifier: 05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
Certificate issuer: /CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Certificate serial: 019D27A8D54C32B4C25308B6799D54FAA6E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 01:01:09 +0000
Manifest this update: Thu 26 Mar 2026 01:01:09 +0000
Manifest next update: Fri 27 Mar 2026 01:01:09 +0000
Files and hashes: 1: BSAFu2w9aGW4nBDzOwuZS3Svljs.crl (hash: 3yD4Jl2sguhOHi+BAgquNNq83gSudLlHxk++OJfLghE=)
2: TkHWb7A0dCU6pE1AWMAvWtYjFGQ.roa (hash: SNUkFMiS55HofBAwrMgQasrnX+p3nqcULIOMMHj9Bv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:d5:4c:32:b4:c2:53:08:b6:79:9d:54:fa:a6:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Validity
Not Before: Mar 26 01:01:09 2026 GMT
Not After : Mar 27 01:01:09 2026 GMT
Subject: CN=471ed50e1fb10910b650c2e28efe6c3ad8822db4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4a:31:20:be:0c:48:0c:3a:ba:d9:ed:37:ea:
5c:c1:0f:55:78:c1:b4:94:54:bd:11:10:6d:42:c0:
1c:06:99:7b:5d:e6:b5:c5:7a:8a:7d:f0:1d:6a:0b:
28:a1:fa:83:f1:b8:3b:b7:1e:67:98:b0:d5:bb:7b:
6b:79:33:61:ff:9e:85:b4:4d:b9:66:79:23:96:80:
db:47:80:35:f4:24:da:8d:85:fd:3a:d9:aa:a1:9a:
ff:2c:a6:da:cd:19:86:81:7c:d2:d0:d2:51:bd:80:
ca:d3:75:c1:36:63:ab:94:63:7d:bb:76:aa:ef:f1:
cc:c5:39:39:92:02:c5:03:06:1c:be:f6:d5:65:9a:
eb:9c:1a:8f:48:50:56:17:85:43:5d:a4:de:77:cd:
9e:ee:bd:9e:c4:ae:a6:37:6f:6d:43:76:38:4d:50:
4c:05:5e:bc:d8:24:9c:01:03:08:1d:68:4b:bb:74:
b2:63:da:bf:d3:70:22:86:1c:29:9f:68:27:01:df:
f7:49:4a:10:e4:70:55:9d:77:71:14:61:8a:39:77:
da:50:92:02:f5:77:42:26:44:e6:94:52:3d:f1:39:
36:4b:74:23:b8:54:75:c2:2e:ef:8d:28:d6:39:1b:
2a:34:b7:11:f6:a1:82:52:8a:96:45:ec:7a:e2:e2:
a2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:1E:D5:0E:1F:B1:09:10:B6:50:C2:E2:8E:FE:6C:3A:D8:82:2D:B4
X509v3 Authority Key Identifier:
keyid:05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:c2:e8:2c:8d:06:a2:2f:ff:47:5b:81:33:c0:65:e3:9b:1d:
13:fd:5a:07:da:5b:26:4f:42:1c:75:40:42:b9:a9:6e:d0:03:
05:30:a5:b8:be:94:81:9c:92:33:ef:83:ed:37:0c:63:19:c4:
0c:35:fe:98:4c:ed:23:e7:dc:f0:97:f8:94:0f:7c:ae:ae:b5:
33:ea:37:5f:8e:38:0b:50:71:2c:9d:36:78:f5:63:42:e5:5b:
bf:d5:dc:50:d5:06:a0:ab:7f:06:52:cf:b2:89:53:59:65:8c:
73:57:91:13:5a:e9:03:ab:3b:5d:a6:de:dd:ce:de:09:47:e8:
d9:6b:a7:40:c3:fa:de:f3:f3:ab:b0:cc:e6:fc:ef:b8:ee:93:
6e:0d:5d:01:79:f1:8b:44:cd:06:97:7d:77:99:da:b5:25:29:
10:67:00:fb:cf:de:87:ce:69:a1:3e:45:2f:62:b1:d0:47:f7:
73:29:85:69:ca:cd:8b:16:22:82:02:47:4d:af:2b:40:e7:17:
ef:fa:b9:a7:ef:24:b9:e2:f9:b0:1b:9a:3f:7c:39:51:9d:11:
4d:8b:31:c9:2a:2b:dd:ec:71:22:d9:05:dc:3b:f7:7b:7f:4e:
e2:e0:4d:93:0a:1c:02:a0:cb:25:06:73:00:5c:b1:65:e0:0a:
9d:91:03:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nqNVMMrTCUwi2eZ1U+qbjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MjAwNWJiNmMzZDY4NjViODljMTBmMzNiMGI5OTRiNzRh
Zjk2M2IwHhcNMjYwMzI2MDEwMTA5WhcNMjYwMzI3MDEwMTA5WjAzMTEwLwYDVQQD
Eyg0NzFlZDUwZTFmYjEwOTEwYjY1MGMyZTI4ZWZlNmMzYWQ4ODIyZGI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0oxIL4MSAw6utntN+pcwQ9VeMG0
lFS9ERBtQsAcBpl7Xea1xXqKffAdagsoofqD8bg7tx5nmLDVu3treTNh/56FtE25
ZnkjloDbR4A19CTajYX9OtmqoZr/LKbazRmGgXzS0NJRvYDK03XBNmOrlGN9u3aq
7/HMxTk5kgLFAwYcvvbVZZrrnBqPSFBWF4VDXaTed82e7r2exK6mN29tQ3Y4TVBM
BV682CScAQMIHWhLu3SyY9q/03Aihhwpn2gnAd/3SUoQ5HBVnXdxFGGKOXfaUJIC
9XdCJkTmlFI98Tk2S3QjuFR1wi7vjSjWORsqNLcR9qGCUoqWRex64uKi1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEce1Q4fsQkQtlDC4o7+bDrYgi20MB8GA1UdIwQY
MBaAFAUgBbtsPWhluJwQ8zsLmUt0r5Y7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlNBRnUydzlhR1c0bkJEek93dVpTM1N2bGpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi84M2ViMDktM2ExNC00NTViLTg4OTUt
YmEwYTc2ZjQzNzA0LzEvQlNBRnUydzlhR1c0bkJEek93dVpTM1N2bGpzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi84M2ViMDktM2ExNC00NTViLTg4OTUtYmEwYTc2ZjQzNzA0
LzEvQlNBRnUydzlhR1c0bkJEek93dVpTM1N2bGpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApsLoLI0G
oi//R1uBM8Bl45sdE/1aB9pbJk9CHHVAQrmpbtADBTCluL6UgZySM++D7TcMYxnE
DDX+mEztI+fc8Jf4lA98rq61M+o3X444C1BxLJ02ePVjQuVbv9XcUNUGoKt/BlLP
solTWWWMc1eRE1rpA6s7Xabe3c7eCUfo2WunQMP63vPzq7DM5vzvuO6Tbg1dAXnx
i0TNBpd9d5natSUpEGcA+8/eh85poT5FL2Kx0Ef3cymFacrNixYiggJHTa8rQOcX
7/q5p+8kueL5sBuaP3w5UZ0RTYsxySor3exxItkF3Dv3e39O4uBNkwocAqDLJQZz
AFyxZeAKnZED/A==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:29:33 2026 by rpki-client