Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
File: BYmfOXZIcDij-mNDlSsUtNBysz0.mft (raw, json)
Hash identifier: LLydgBvTXM/nXylQXsXzwK48PWowjOlPtX7U2IwiCss=
Subject key identifier: 9B:C6:D4:EC:46:ED:35:D5:A4:E0:76:94:87:97:2C:EC:E4:09:BF:F4
Authority key identifier: 05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D
Certificate issuer: /CN=05899f3976487038a3fa6343952b14b4d072b33d
Certificate serial: 019D25F1D4D6BDE32AFE1ADD4A21CDA9A852
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
Manifest number: 15BA
Signing time: Wed 25 Mar 2026 17:01:38 +0000
Manifest this update: Wed 25 Mar 2026 17:01:38 +0000
Manifest next update: Thu 26 Mar 2026 17:01:38 +0000
Files and hashes: 1: 0JPqCz5cVo8rTb1eJx0gidaWu88.roa (hash: SDGEZvOiOT/nixCGJaFSNPktvCrQB07+Pf6zV5KlOY4=)
2: BYmfOXZIcDij-mNDlSsUtNBysz0.crl (hash: jBV31ndUWuo1eVlOtaFVknTGo+6dbXx25jGGkuJWsX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:d4:d6:bd:e3:2a:fe:1a:dd:4a:21:cd:a9:a8:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05899f3976487038a3fa6343952b14b4d072b33d
Validity
Not Before: Mar 25 17:01:38 2026 GMT
Not After : Mar 26 17:01:38 2026 GMT
Subject: CN=9bc6d4ec46ed35d5a4e0769487972cece409bff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0c:d5:d4:5d:0c:ec:e3:59:3d:b1:b0:46:03:
a5:86:1c:6e:b7:3a:47:99:1d:5e:e0:b2:aa:8c:63:
94:7e:88:b2:c3:3b:f2:d5:ca:be:ba:b0:a0:bb:f7:
48:ff:33:c7:f7:ab:f5:61:70:36:a6:33:38:82:05:
b6:cb:e5:e9:ef:88:d6:13:e4:d5:cb:a9:88:86:ed:
b9:45:a8:bb:a5:e4:72:ff:13:b3:04:b2:bb:e7:2d:
78:fa:a0:92:67:a1:01:b2:c5:17:3b:88:ae:67:06:
5a:d3:9a:60:13:13:73:9d:44:47:74:68:7a:b8:55:
07:75:f1:06:3e:35:9b:49:3d:f7:82:ed:15:6e:49:
b4:91:d0:87:77:7e:62:f3:b5:84:96:fa:61:18:75:
b8:5b:8d:ce:e8:74:e7:f6:bf:3a:aa:88:a9:29:cb:
22:3d:51:fc:e4:8d:f0:4e:1c:4b:2f:93:e6:07:c3:
1e:b3:12:64:c7:58:27:5e:5e:4a:b6:25:ee:3a:f2:
c8:ec:f0:8b:25:69:42:81:da:50:4d:96:2e:ef:71:
e4:8b:01:7d:c3:2c:67:f8:69:47:f2:30:76:72:b6:
c3:5d:67:f0:b8:99:d3:92:a2:a8:e3:88:be:d5:a9:
69:b3:52:9d:57:31:4b:b0:d1:27:a4:9b:0a:2c:c2:
8b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:C6:D4:EC:46:ED:35:D5:A4:E0:76:94:87:97:2C:EC:E4:09:BF:F4
X509v3 Authority Key Identifier:
keyid:05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:e0:df:73:8c:10:eb:84:06:16:e9:a0:95:bf:01:65:7d:9a:
e7:2f:45:32:b5:a4:59:45:35:d2:aa:97:cd:93:68:86:1a:46:
85:6c:4c:82:ac:8a:dd:24:4b:5c:ac:3a:9b:d4:20:06:c3:d8:
f4:21:54:8a:40:69:5e:23:ca:1e:73:de:7e:08:9a:28:c3:f0:
96:a1:df:89:fa:52:dc:72:fd:d8:17:07:06:be:c9:75:5c:34:
4a:a0:c5:8d:35:ae:13:74:d6:07:48:0a:24:8c:49:66:be:2b:
45:71:0e:f0:b2:3f:59:55:da:2f:63:e5:7e:56:cb:8c:04:f3:
7d:2a:5f:01:d6:ff:e7:19:8c:fa:94:16:ea:53:c3:78:fa:31:
20:63:9f:cc:aa:9a:57:55:95:f7:f5:b4:fb:6c:9e:d1:bb:4c:
89:92:4c:c3:2f:65:a0:d8:0a:b9:f1:13:84:97:d0:5d:4d:07:
37:5d:ef:08:99:06:70:1a:09:5a:c3:30:a5:54:31:46:53:70:
a4:25:36:72:a8:8f:cf:2b:ca:f8:ec:cf:d7:e2:2e:c6:5a:44:
a6:b0:67:e1:da:45:c2:df:36:3c:96:24:cb:60:6b:d6:a5:f4:
81:54:f8:fe:a8:64:d0:b0:4b:42:16:44:ed:29:55:50:a2:30:
96:f5:e3:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:35 2026 by rpki-client