Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
File: BYmfOXZIcDij-mNDlSsUtNBysz0.mft (raw, json)
Hash identifier: ZnSB2XUQrUAY++Q+cEfK93uGNg6dTiMpITtGH+ZtANo=
Subject key identifier: DF:9F:48:27:23:18:53:8E:BB:2E:3E:59:78:21:A6:EF:11:55:F9:5B
Authority key identifier: 05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D
Certificate issuer: /CN=05899f3976487038a3fa6343952b14b4d072b33d
Certificate serial: 019E1D224DFFD144344216A7636DAF413C2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
Manifest number: 163A
Signing time: Tue 12 May 2026 17:00:47 +0000
Manifest this update: Tue 12 May 2026 17:00:47 +0000
Manifest next update: Wed 13 May 2026 17:00:47 +0000
Files and hashes: 1: 0JPqCz5cVo8rTb1eJx0gidaWu88.roa (hash: SDGEZvOiOT/nixCGJaFSNPktvCrQB07+Pf6zV5KlOY4=)
2: BYmfOXZIcDij-mNDlSsUtNBysz0.crl (hash: Udkse4Xo4Dp/YfOy4O+7sL1/ENyRFjLIlqE8IcNup5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:4d:ff:d1:44:34:42:16:a7:63:6d:af:41:3c:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05899f3976487038a3fa6343952b14b4d072b33d
Validity
Not Before: May 12 17:00:47 2026 GMT
Not After : May 13 17:00:47 2026 GMT
Subject: CN=df9f48272318538ebb2e3e597821a6ef1155f95b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:39:92:23:f3:f9:f0:c5:3f:2c:97:0d:b9:b8:
f5:04:2c:9c:55:af:d4:67:59:db:18:a1:44:bf:3f:
4f:46:96:f4:aa:a4:d0:9a:bf:1b:80:3e:31:48:21:
0b:21:a5:02:fd:5e:24:2f:dd:c5:f6:b2:0c:70:61:
9a:c0:9c:0d:cf:f9:e7:ae:68:5a:a1:29:ea:08:88:
ef:00:f3:dd:f4:9a:b6:da:0e:43:97:5b:a4:d6:6f:
bb:ed:87:25:96:89:e6:9b:5e:3d:38:5c:38:05:8a:
f8:2d:92:af:c1:64:ad:58:cd:90:45:0c:7d:65:e3:
e1:59:f9:cc:42:79:a6:ac:8a:77:bf:4f:b5:2c:98:
12:cb:87:a1:ef:70:1e:4b:2d:ab:86:c4:e3:01:8f:
66:c9:5c:5e:b8:ff:33:ab:70:82:b6:4a:11:a3:a7:
42:c1:5c:f8:06:04:d8:92:20:72:4d:d8:94:4a:aa:
a0:1c:5a:25:ae:fe:53:e6:66:70:6c:6e:10:20:16:
7c:74:68:94:f4:05:79:92:ea:f3:7c:bf:4c:9f:cf:
21:09:db:9d:d1:59:31:1c:f6:c6:12:f9:69:3e:da:
24:6e:76:29:e3:e4:05:c3:61:e8:0f:54:b5:1d:e5:
f8:57:17:d8:71:46:5b:53:7e:ee:9d:c7:9d:ea:52:
06:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:9F:48:27:23:18:53:8E:BB:2E:3E:59:78:21:A6:EF:11:55:F9:5B
X509v3 Authority Key Identifier:
keyid:05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:6a:4f:6e:ac:fe:0f:2d:ea:15:4d:23:9d:93:c5:6e:f0:9d:
91:77:c7:63:fd:9f:e3:b4:fb:e5:f7:3e:ea:09:7b:ea:91:b4:
78:1d:2f:a1:bc:57:1f:b9:ca:5f:63:49:5c:a5:7b:e5:82:cd:
fd:4b:2b:d5:f8:0e:7e:60:39:8a:46:ee:c6:d8:06:0c:92:3c:
3b:31:da:c9:a6:e9:09:a0:32:16:e8:04:2d:03:55:49:9c:de:
7a:61:d3:9e:22:54:5e:e0:ac:19:61:e7:88:0f:da:35:e7:b0:
63:87:eb:a7:19:2c:5b:37:37:d7:29:0a:41:e4:d3:37:f4:79:
1d:8e:71:a7:f6:15:b4:51:80:c2:fb:4d:18:2b:f2:59:6a:66:
09:3c:66:17:e8:4a:48:e3:89:fd:97:cb:93:f5:67:f5:ea:d2:
29:95:a7:a5:2c:12:4a:1a:dc:39:9e:0a:4f:51:4c:53:06:70:
86:7e:0d:eb:33:46:60:1e:38:f7:db:4c:67:a5:5d:50:07:69:
38:3e:9d:c1:d0:f5:99:28:d2:82:d0:15:2c:08:98:3b:7c:ad:
30:60:c9:3e:f9:e1:c2:7c:f0:5b:ad:94:66:2b:86:32:bc:be:
56:2f:92:b9:57:e7:ab:73:d0:57:f0:cf:d2:68:b3:98:b0:23:
8e:11:b1:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:53:33 2026 by rpki-client