Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
File: bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft (raw, json)
Hash identifier: s8iQeXuX8ddLq3htcZhF/yA+ps7pbWa7X1kg7v4q2hE=
Subject key identifier: 98:6C:2D:3A:B4:46:5D:31:47:15:7C:47:79:C7:F1:53:F8:A3:09:9C
Authority key identifier: 6D:F2:93:21:2D:25:D4:86:3E:38:6B:9C:48:0D:DC:9B:E7:38:12:4F
Certificate issuer: /CN=6df293212d25d4863e386b9c480ddc9be738124f
Certificate serial: 019E1F7E71796D82DEA7999FCD2E3380B5AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
Manifest number: 189A
Signing time: Wed 13 May 2026 04:00:40 +0000
Manifest this update: Wed 13 May 2026 04:00:40 +0000
Manifest next update: Thu 14 May 2026 04:00:40 +0000
Files and hashes: 1: bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl (hash: 0fvI97Zb8GJp1y6Gsetpdw18C5ujj6sbn+4GIjBK4kY=)
2: q4MMxbvpWnkqIJJ1G1vh9k5IaD0.roa (hash: atJClVpeASPtSX6kEGrHIIjj/e8dWQQKfuBLHQmvtvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 04:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7e:71:79:6d:82:de:a7:99:9f:cd:2e:33:80:b5:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df293212d25d4863e386b9c480ddc9be738124f
Validity
Not Before: May 13 04:00:40 2026 GMT
Not After : May 14 04:00:40 2026 GMT
Subject: CN=986c2d3ab4465d3147157c4779c7f153f8a3099c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7b:2b:be:6f:7d:75:7c:ee:6b:a9:d5:86:47:
67:cc:49:36:7e:b7:08:0f:68:c3:52:f9:e7:26:72:
5f:3a:68:d2:01:ad:d0:29:25:f8:80:d5:6a:31:c1:
43:28:04:7f:e6:91:75:45:87:0e:d8:42:2a:ac:a8:
37:78:46:8d:20:4e:cb:97:d2:60:da:4e:f9:b3:e0:
80:00:39:55:23:ca:5f:9e:40:ac:50:c2:4f:93:ef:
22:e2:5a:2f:e2:2b:55:0a:fc:c1:54:a7:70:4d:d6:
04:c6:4e:0e:d1:6e:01:6b:fe:59:1f:db:45:75:2a:
b0:d5:87:a7:b3:c0:0e:2c:ea:df:83:e2:5f:2e:20:
c1:f7:3d:0d:3f:a1:75:99:f0:2b:fd:bd:7a:69:ce:
47:ab:00:ec:38:29:16:77:a1:fc:83:29:6b:57:b5:
47:2d:28:5b:ec:62:13:51:43:88:8a:df:78:a6:c4:
0b:bd:b8:a9:f2:59:aa:63:89:80:77:d9:62:c3:c4:
0a:d6:c1:48:53:0d:95:45:a5:f1:f1:34:f4:d6:34:
87:8d:58:20:03:33:eb:aa:75:3b:dd:de:b3:71:e6:
df:1c:ad:5e:04:80:a4:63:cc:72:d6:3e:d3:8d:1c:
60:a0:89:32:22:85:6d:b6:d0:4f:5e:9c:ff:a1:c5:
a4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:6C:2D:3A:B4:46:5D:31:47:15:7C:47:79:C7:F1:53:F8:A3:09:9C
X509v3 Authority Key Identifier:
keyid:6D:F2:93:21:2D:25:D4:86:3E:38:6B:9C:48:0D:DC:9B:E7:38:12:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:7a:37:70:45:a5:e9:6b:2c:bf:aa:85:94:41:b5:e1:ba:70:
9a:58:8d:4c:7e:30:4a:0c:52:6c:4e:93:dd:b4:ad:78:2f:7d:
2e:c5:df:a1:c0:76:06:4f:61:60:ed:40:42:3a:d1:dd:22:72:
2b:3e:30:8d:10:05:a9:5b:66:83:1b:d3:2c:27:39:ae:c2:46:
19:9a:27:b6:7e:5a:8c:89:b1:f0:8d:0c:28:97:06:35:a8:1f:
5a:99:a4:ca:cb:ef:96:92:94:49:65:6c:0e:6b:93:30:77:83:
9e:e4:dc:78:f7:18:21:3a:e5:6e:7c:d9:ac:c6:fd:e2:29:22:
02:78:f3:c4:7e:4b:2e:97:24:13:f3:08:85:df:d6:cd:ce:f8:
3c:84:35:13:ee:d3:6a:6b:86:43:4c:a5:b5:63:5f:73:7e:b2:
b4:06:62:78:54:a8:cc:fc:7f:9d:5a:e8:47:7d:0e:d5:fa:f1:
4a:5d:56:be:94:4b:dc:6e:78:0a:00:01:76:ed:25:f4:95:17:
d3:93:e0:89:e7:f0:f5:71:b5:de:b0:57:db:27:49:16:0e:b4:
6a:d9:64:e3:bd:0f:d3:b1:09:58:4b:8f:bd:34:73:a5:86:cd:
5d:8b:8a:e6:c4:3f:0e:4c:f2:e2:37:3e:3c:11:22:b4:11:e1:
82:f1:82:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:52:08 2026 by rpki-client