Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
File: BFYL6jkur2kgircF70Bc94aEF2s.mft (raw, json)
Hash identifier: a3g2baKLFh6GCo7QvEJ4q8+J5J/x1gBinVPBHyjnuMM=
Subject key identifier: 9F:44:03:53:81:B3:26:1B:30:83:1D:F1:CF:64:2B:7A:B8:9D:3E:A7
Authority key identifier: 04:56:0B:EA:39:2E:AF:69:20:8A:B7:05:EF:40:5C:F7:86:84:17:6B
Certificate issuer: /CN=04560bea392eaf69208ab705ef405cf78684176b
Certificate serial: 019E1D234EA3CF42C177060CE0AE1184CC8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
Manifest number: 190B
Signing time: Tue 12 May 2026 17:01:53 +0000
Manifest this update: Tue 12 May 2026 17:01:53 +0000
Manifest next update: Wed 13 May 2026 17:01:53 +0000
Files and hashes: 1: BFYL6jkur2kgircF70Bc94aEF2s.crl (hash: Vw5s/h0esKD/X3QFsgfP3OVPFzfVZz10g5mXopaiBdg=)
2: PYDaQdvsTgkqrbuj3tZOVTtUmUA.roa (hash: H/8+GgNdJOZH+P5jx7Yl7IzwfogX3Vj/jZBL/Jyz7y8=)
3: fFg7BMRzleH625x9WdiXPcleSgg.roa (hash: VJ0RLkXcuNA4Y8CWLeS6/R5pD7ua0+mj6mlNZsFqI9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:23:4e:a3:cf:42:c1:77:06:0c:e0:ae:11:84:cc:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04560bea392eaf69208ab705ef405cf78684176b
Validity
Not Before: May 12 17:01:53 2026 GMT
Not After : May 13 17:01:53 2026 GMT
Subject: CN=9f44035381b3261b30831df1cf642b7ab89d3ea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:51:bc:ae:5f:47:ad:c1:4c:f5:4f:ca:d2:30:
33:96:27:5d:81:d0:29:9f:95:19:a3:93:f0:d5:a2:
3f:10:73:54:13:9c:ba:ef:3b:67:08:9d:4c:9c:85:
92:69:6f:46:ea:5c:2d:6a:9a:51:96:02:c5:7a:0f:
a2:9a:8e:1f:c2:e7:75:60:03:a1:9a:ca:18:28:5f:
40:a3:f9:48:6e:7c:c1:e6:25:71:b2:2a:22:a2:87:
00:1d:32:e2:9f:5c:86:53:aa:d4:a0:c1:59:5c:63:
90:0e:33:f4:77:4b:55:b8:8e:1e:49:dc:ad:5b:fb:
5a:11:57:72:34:37:83:4b:e1:20:51:2b:62:dc:b3:
14:b3:5d:f3:b5:e4:92:eb:9c:5e:b6:04:39:ee:0f:
b9:2a:95:e1:ee:47:84:6b:1d:de:01:d0:32:7f:94:
35:d2:ad:95:cb:0c:31:55:d4:de:e2:c5:d1:47:39:
dc:a9:2c:73:b6:2b:91:9e:28:bb:8f:09:5b:66:91:
be:73:40:b5:e4:02:73:b1:cd:d0:64:75:50:85:0a:
b6:ea:a9:5a:d8:13:6b:b6:c1:29:9d:da:06:3c:50:
1e:c3:c6:1d:ac:f3:b9:0d:bb:b9:98:8c:9b:5b:83:
b8:e6:19:06:21:72:35:95:97:a1:da:13:7d:21:4a:
80:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:44:03:53:81:B3:26:1B:30:83:1D:F1:CF:64:2B:7A:B8:9D:3E:A7
X509v3 Authority Key Identifier:
keyid:04:56:0B:EA:39:2E:AF:69:20:8A:B7:05:EF:40:5C:F7:86:84:17:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:37:f6:ac:ba:d4:13:40:ea:c4:7f:81:50:42:7c:75:e1:f7:
d3:d9:a6:a0:18:3e:50:3c:5a:0b:ad:8c:66:a5:90:2d:75:b7:
f1:b7:27:97:df:e8:5f:fc:98:4b:69:ef:55:92:67:71:78:cf:
1f:2b:21:d8:c1:41:28:8f:d8:9e:a4:71:26:71:20:18:89:5d:
b2:71:d8:41:2d:70:31:b9:6f:1b:55:76:35:42:17:58:63:98:
62:fd:89:20:95:f6:bd:80:ce:e7:05:b5:0b:bc:68:c9:b5:01:
2d:94:e8:75:7e:61:e3:f7:78:77:b5:8a:6e:96:56:52:de:84:
63:ce:e5:71:f0:56:0e:3e:59:7f:03:27:27:7e:1c:bb:64:8e:
eb:63:ef:70:bb:64:40:43:52:e9:4e:43:0c:d2:a5:eb:25:4b:
20:83:4d:88:22:3f:39:8f:53:ad:73:ab:7a:25:ae:b7:a2:19:
dd:57:8f:ff:fc:6a:e5:55:70:ed:ac:90:29:4e:4f:ce:d1:b3:
92:e4:e5:7e:af:41:90:1c:0c:2d:79:71:74:c2:06:5c:1c:c0:
f0:2f:4c:d0:5f:ad:4f:1d:ee:c5:18:8a:e7:1d:3b:30:b8:69:
07:9a:54:9b:bb:be:9e:7b:2c:9f:ce:10:93:c1:80:58:0b:e8:
1d:19:cf:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:16:23 2026 by rpki-client