Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.mft
File: BDR_pREJ3ezWzVlMZ7sCstXnIQ4.mft (raw, json)
Hash identifier: zIL4YlnPHhmEnS1oi5YnN1ORoc8MzMuFdJpmeL86Ack=
Subject key identifier: 3C:D1:97:44:B2:7E:84:D9:36:A8:CB:DE:0B:2D:4D:E0:22:67:5B:A0
Authority key identifier: 04:34:7F:A5:11:09:DD:EC:D6:CD:59:4C:67:BB:02:B2:D5:E7:21:0E
Certificate issuer: /CN=04347fa51109ddecd6cd594c67bb02b2d5e7210e
Certificate serial: 019E1E357F8B6811B91A14FC8E8D1F92C95D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.mft
Manifest number: 0DF7
Signing time: Tue 12 May 2026 22:01:22 +0000
Manifest this update: Tue 12 May 2026 22:01:22 +0000
Manifest next update: Wed 13 May 2026 22:01:22 +0000
Files and hashes: 1: BDR_pREJ3ezWzVlMZ7sCstXnIQ4.crl (hash: y1hYP+1tCY9fmxdBmM85S6qa3FcQbA6/8WEY9h39xso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:7f:8b:68:11:b9:1a:14:fc:8e:8d:1f:92:c9:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04347fa51109ddecd6cd594c67bb02b2d5e7210e
Validity
Not Before: May 12 22:01:22 2026 GMT
Not After : May 13 22:01:22 2026 GMT
Subject: CN=3cd19744b27e84d936a8cbde0b2d4de022675ba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a6:58:13:8e:3e:4f:5a:87:cc:76:33:fe:44:
e7:a9:31:83:55:97:3c:18:ed:6f:01:b2:77:f9:45:
95:11:b1:9a:e9:25:2a:5d:80:37:95:f1:7b:3d:ba:
d0:fa:c5:0f:9a:e3:cf:32:b0:53:e7:95:06:cd:88:
2e:49:d5:b6:1d:ae:2d:10:17:e0:1a:a1:2f:4a:b3:
0c:64:78:2e:5e:7a:2d:b2:9b:33:5a:bd:9b:cd:cd:
c0:51:04:6f:71:aa:df:4c:ef:2a:6c:1c:52:81:6a:
b8:3e:38:50:25:b9:a6:ec:41:da:5e:1e:69:db:73:
e5:72:d5:2a:05:71:18:5d:4a:76:63:5b:c5:62:ac:
01:a8:6b:e9:c0:d7:7b:9d:cb:75:0f:d7:d9:bb:22:
3d:c6:9f:45:83:2c:e9:ee:27:53:ad:9a:20:25:44:
b0:72:ba:88:95:5d:b8:49:9a:11:cc:c7:24:31:13:
c4:e4:34:c2:e5:d1:6b:18:c7:33:46:69:4c:41:b7:
bd:31:ac:17:1b:95:81:8c:64:b0:0d:ad:c6:41:4d:
51:a6:9a:f6:c6:54:bd:16:48:3c:5c:29:2a:6a:f5:
01:86:b0:5d:ac:d4:1b:3c:4d:b6:4e:5d:0d:64:d5:
8b:df:0c:0b:32:cb:aa:ce:87:f0:78:54:9d:06:88:
ed:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:D1:97:44:B2:7E:84:D9:36:A8:CB:DE:0B:2D:4D:E0:22:67:5B:A0
X509v3 Authority Key Identifier:
keyid:04:34:7F:A5:11:09:DD:EC:D6:CD:59:4C:67:BB:02:B2:D5:E7:21:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:bb:b5:7c:c8:ad:a6:c9:4c:4a:ea:69:0a:dc:a4:3e:99:b9:
d8:75:5b:14:a1:0b:3d:6c:ad:09:f8:15:33:d2:b5:71:e5:4c:
ee:a8:ca:91:b5:e9:69:ba:ef:08:eb:e2:70:0b:bd:e7:46:98:
d6:d5:fa:35:51:d5:4d:44:c9:a5:02:e9:e2:56:03:cd:a5:6d:
8f:d7:9d:89:03:a1:e1:32:5e:d4:e1:10:46:7f:17:23:c3:10:
c8:c3:b8:da:0b:eb:20:db:0a:46:83:4a:7c:0f:9f:c7:3a:e7:
76:67:5e:ec:79:cd:42:61:22:f3:1b:1d:6a:d1:ee:a1:eb:5c:
9f:b8:79:4e:7a:b5:ef:92:a9:46:b1:67:b2:b7:4a:4d:8b:bf:
19:af:69:98:ec:32:75:28:87:5f:f5:ea:be:42:4a:8e:90:70:
dd:57:8f:55:46:87:f0:49:ce:77:0f:29:4b:cf:2d:4b:64:fe:
c3:6f:86:d7:f9:c5:eb:d6:0f:bc:88:31:b0:60:d7:f4:29:14:
0b:15:7d:0b:a4:ba:72:af:b1:1a:4e:16:31:9b:ea:f6:2a:3a:
8d:02:d9:e7:64:7b:22:f5:cd:1c:98:db:5a:0f:e8:fe:8a:3b:
e2:19:60:8a:67:f8:53:c3:05:2c:5e:a7:43:d3:0a:37:bd:9f:
7d:be:14:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:34:23 2026 by rpki-client