Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
File: BFYL6jkur2kgircF70Bc94aEF2s.mft (raw, json)
Hash identifier: vz3PzNWScfxvNrcqd05aMyszDt9lkDZLFWLf6WDz8vk=
Subject key identifier: 9E:EA:60:76:95:F0:93:25:51:C0:A6:27:43:A1:9C:EE:ED:54:48:51
Authority key identifier: 04:56:0B:EA:39:2E:AF:69:20:8A:B7:05:EF:40:5C:F7:86:84:17:6B
Certificate issuer: /CN=04560bea392eaf69208ab705ef405cf78684176b
Certificate serial: 019D25F204E1488470BD22611024B634AB38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
Manifest number: 188B
Signing time: Wed 25 Mar 2026 17:01:51 +0000
Manifest this update: Wed 25 Mar 2026 17:01:51 +0000
Manifest next update: Thu 26 Mar 2026 17:01:51 +0000
Files and hashes: 1: BFYL6jkur2kgircF70Bc94aEF2s.crl (hash: DNb8STlBrwthgNHfQ0X4dzYHi/ccVNpOc17zsajAyG4=)
2: PYDaQdvsTgkqrbuj3tZOVTtUmUA.roa (hash: H/8+GgNdJOZH+P5jx7Yl7IzwfogX3Vj/jZBL/Jyz7y8=)
3: fFg7BMRzleH625x9WdiXPcleSgg.roa (hash: VJ0RLkXcuNA4Y8CWLeS6/R5pD7ua0+mj6mlNZsFqI9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f2:04:e1:48:84:70:bd:22:61:10:24:b6:34:ab:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04560bea392eaf69208ab705ef405cf78684176b
Validity
Not Before: Mar 25 17:01:51 2026 GMT
Not After : Mar 26 17:01:51 2026 GMT
Subject: CN=9eea607695f0932551c0a62743a19ceeed544851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:29:b1:5a:0e:56:88:24:d7:70:b5:5b:b1:df:
a3:4f:b3:ad:2e:53:fa:4a:86:9b:92:40:cb:83:19:
9a:62:ce:2a:0e:3c:91:44:0f:db:73:18:64:2f:49:
9c:67:82:13:ab:a3:d2:28:44:12:ea:b5:4f:38:df:
bd:79:8a:e1:9b:9c:df:fe:8e:58:db:0f:57:6c:ec:
75:fc:32:ce:c9:d8:a4:cb:f2:b4:61:75:db:8a:e2:
55:74:86:b0:0e:ba:2e:5e:bb:95:49:f4:34:e9:62:
66:15:f0:a9:c6:5b:02:5e:56:1a:c8:44:5f:b4:e1:
3f:17:ca:ac:cd:ca:61:82:74:a8:33:2e:75:cd:c3:
94:df:0e:38:6f:41:ac:c0:d0:b7:c8:84:c2:d1:05:
28:13:5d:ea:96:b0:86:49:c7:31:1d:7b:48:7c:3e:
09:bb:33:9c:b8:bc:6d:43:59:57:5e:70:cb:4b:80:
51:f3:25:3c:44:39:0f:72:60:4d:3b:a4:bb:e7:03:
03:70:31:81:af:ba:54:50:ec:f0:79:ec:30:8e:98:
5a:5e:a2:46:cd:d2:d9:98:a4:9e:cf:eb:8b:59:c2:
ca:0b:1b:c4:ad:bb:d3:d6:83:d3:07:7a:d3:7a:85:
36:1c:5e:48:2f:1a:68:41:e0:40:8e:67:e1:e0:7a:
be:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:EA:60:76:95:F0:93:25:51:C0:A6:27:43:A1:9C:EE:ED:54:48:51
X509v3 Authority Key Identifier:
keyid:04:56:0B:EA:39:2E:AF:69:20:8A:B7:05:EF:40:5C:F7:86:84:17:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:7a:3c:e0:9c:83:e1:94:f6:6b:ea:62:e8:2c:a8:20:d4:5c:
bb:fd:bb:41:4e:9c:98:5d:c4:97:68:0d:b8:ef:b7:85:57:c8:
2f:9c:33:14:eb:58:7c:b2:51:b1:27:42:b1:b5:8d:2f:06:d3:
2d:1d:f2:91:b1:a1:23:6f:9d:a7:51:82:c2:af:90:df:9f:79:
31:80:f7:77:29:24:3f:44:04:b1:74:37:f6:c7:af:b6:d5:e3:
98:98:5d:82:a4:3e:9c:ed:82:89:c3:25:75:d4:52:2a:e9:fa:
1b:30:73:c1:c0:34:90:06:f2:87:6a:ec:1a:39:45:c4:68:43:
73:91:f4:24:24:27:ae:ff:58:fc:4d:d2:9c:00:c4:e8:93:f6:
81:a4:31:2a:70:0c:74:da:93:53:e3:34:7d:e4:d2:75:1c:a0:
c2:bf:c1:bb:19:04:a7:85:32:cb:ce:5d:31:14:3a:c8:35:30:
0d:42:aa:f7:97:d9:85:3c:6e:90:89:16:08:b3:68:43:ff:9b:
52:fd:23:dd:dc:72:e8:f2:33:e4:73:fe:34:f7:8d:f1:1b:ff:
80:fc:94:0d:fe:06:5d:35:24:87:53:d5:42:7f:68:c1:a7:10:
0e:43:03:7a:ef:db:ad:e9:d2:52:e6:3e:9d:69:70:22:0f:01:
b3:89:6b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:52:46 2026 by rpki-client