Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.mft
File: BDR_pREJ3ezWzVlMZ7sCstXnIQ4.mft (raw, json)
Hash identifier: 1z/DNJ6OxW2LE0bAKwQRYMmuSu4oNRX18BJY4z+e/XE=
Subject key identifier: 70:52:CC:35:50:73:5E:3B:5E:97:15:05:AD:4C:38:EE:5E:38:B8:7F
Authority key identifier: 04:34:7F:A5:11:09:DD:EC:D6:CD:59:4C:67:BB:02:B2:D5:E7:21:0E
Certificate issuer: /CN=04347fa51109ddecd6cd594c67bb02b2d5e7210e
Certificate serial: 019D2703A17EE3CC4ACD5F29266E912762DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.mft
Manifest number: 0D77
Signing time: Wed 25 Mar 2026 22:00:42 +0000
Manifest this update: Wed 25 Mar 2026 22:00:42 +0000
Manifest next update: Thu 26 Mar 2026 22:00:42 +0000
Files and hashes: 1: BDR_pREJ3ezWzVlMZ7sCstXnIQ4.crl (hash: ryi1/KFcpKNnaQwKCT1rCF5CW/sQB+HLDpwHUNc/sUc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:a1:7e:e3:cc:4a:cd:5f:29:26:6e:91:27:62:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04347fa51109ddecd6cd594c67bb02b2d5e7210e
Validity
Not Before: Mar 25 22:00:42 2026 GMT
Not After : Mar 26 22:00:42 2026 GMT
Subject: CN=7052cc3550735e3b5e971505ad4c38ee5e38b87f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:de:21:f3:6b:48:9b:0d:fa:7c:0b:b5:9f:e9:
e8:a9:d9:c7:26:12:ed:79:a1:b0:e0:76:a8:01:c6:
20:cc:d1:b7:2a:e8:dd:79:c7:0b:77:b0:54:95:a8:
eb:e6:4d:00:6b:b6:bd:89:96:82:1d:40:72:9d:ca:
ce:39:03:97:84:db:41:f3:59:51:80:8d:55:d4:ed:
5e:cc:c7:9e:b4:cd:3a:db:d0:db:6b:08:34:f5:2d:
bc:21:4c:72:3b:06:c8:7c:7d:ab:47:e2:c2:dc:39:
03:2a:12:54:5d:c2:b5:55:8b:a4:ab:63:1d:87:35:
1e:4f:11:de:63:9e:5c:a2:dc:67:c7:3c:4c:22:14:
d6:95:84:15:8f:3c:06:07:b3:36:ec:be:da:22:5b:
68:b0:86:2b:6c:fe:c8:5c:d5:10:73:20:80:ea:7d:
59:6c:bd:6f:8f:58:82:2f:f4:29:20:cd:44:81:68:
34:67:ff:4b:1b:76:57:64:4c:5a:73:41:5c:f9:6a:
48:a5:48:6a:9f:54:56:9b:9f:6a:71:c3:b2:24:4e:
40:a0:f8:d6:2f:c7:f3:ee:c6:98:1f:1d:d4:c4:98:
74:a0:b7:2d:c4:30:0b:dc:e9:19:1f:e4:d2:5f:10:
9e:43:62:f3:dc:72:15:c8:c5:df:cf:e3:98:c1:db:
3a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:52:CC:35:50:73:5E:3B:5E:97:15:05:AD:4C:38:EE:5E:38:B8:7F
X509v3 Authority Key Identifier:
keyid:04:34:7F:A5:11:09:DD:EC:D6:CD:59:4C:67:BB:02:B2:D5:E7:21:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:a8:38:39:a9:e1:f3:dd:a3:02:ed:c1:3a:c1:b4:1b:32:64:
e1:77:96:1a:fd:3c:22:a8:d5:a8:f9:7f:e9:ad:2c:97:2e:a0:
3d:cc:1f:13:ce:89:a3:a7:c4:e9:c6:01:50:dd:78:45:89:f2:
3f:8d:2c:d2:05:88:2f:6f:1f:8f:94:61:af:ee:e4:f0:a1:d7:
d8:5e:41:af:7d:2a:db:89:b3:2c:75:12:40:a0:67:b8:45:08:
a5:0a:1d:8a:22:e8:4b:64:6b:2d:e8:0d:bc:c4:f3:e8:84:e3:
e3:0a:7d:5f:83:23:d5:e9:2d:cb:10:26:f7:dd:d9:35:dc:a9:
73:e9:ca:84:ae:c0:c6:fc:f1:27:39:2d:62:f2:74:e3:ae:13:
4d:cd:48:0c:ae:14:84:77:ae:e1:bd:3d:fa:e7:17:12:7e:f3:
36:8d:87:61:05:43:6a:4f:51:52:ae:a1:35:8c:0b:f7:57:5a:
8a:df:a3:d3:ac:f8:52:e7:51:10:26:1f:6c:2b:c3:d0:f8:6a:
b3:7f:21:df:d0:6f:4e:f5:7c:5f:ec:00:06:57:45:86:90:d6:
0d:2f:55:58:a8:64:ca:a4:b6:60:59:6c:d0:0a:da:0d:35:3e:
cd:5e:90:24:29:57:25:65:63:1a:c9:d9:13:3f:74:55:74:c4:
6c:19:0d:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:35:56 2026 by rpki-client