Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
File: BfWa7cKCluKRck95N954jichZAg.mft (raw, json)
Hash identifier: 5Ynl6KJeXidgv9b/VJdOwSS2AcKcT9XPsRRyLSzVz40=
Subject key identifier: F7:ED:F4:8D:98:82:2C:83:8F:31:67:B6:BF:EC:A3:94:31:A9:71:51
Authority key identifier: 05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
Certificate issuer: /CN=05f59aedc28296e291724f7937de788e27216408
Certificate serial: 019E1D2292034736CA9ED4DBB20E9A46DB72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
Manifest number: 1823
Signing time: Tue 12 May 2026 17:01:05 +0000
Manifest this update: Tue 12 May 2026 17:01:05 +0000
Manifest next update: Wed 13 May 2026 17:01:05 +0000
Files and hashes: 1: 6NLwB5WjlcBTVRx7lvLg-PZn5HQ.roa (hash: dWeJDKFFNOPJVpAu+kJb2B3xAofZRJV/6yg2uCUW2mY=)
2: BfWa7cKCluKRck95N954jichZAg.crl (hash: NpmYP87ClKFDTb5+Oe3GzQplp+rjcjxS768NgNnecqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 17:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:92:03:47:36:ca:9e:d4:db:b2:0e:9a:46:db:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f59aedc28296e291724f7937de788e27216408
Validity
Not Before: May 12 17:01:05 2026 GMT
Not After : May 13 17:01:05 2026 GMT
Subject: CN=f7edf48d98822c838f3167b6bfeca39431a97151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:72:c1:6b:cd:f2:ce:4c:0d:14:31:46:54:50:
aa:60:47:9b:bb:73:fc:a0:ae:c6:9a:55:6f:2b:f4:
59:45:ed:54:4c:79:01:33:3d:29:24:46:b0:47:26:
a8:28:0b:bd:81:3c:21:4d:6f:9a:ef:0c:a1:cd:14:
e9:f5:ff:6f:bd:a1:c5:32:49:85:25:86:85:63:27:
c4:3a:57:4a:0a:eb:ce:b7:02:2b:e2:7c:75:7f:53:
50:e2:fc:50:c9:13:70:88:e0:6b:40:55:ab:dd:76:
df:9c:39:c0:d4:4a:c8:38:9f:85:d9:b4:d9:f0:2f:
68:b9:c8:3b:3e:ce:5d:cc:66:76:3d:35:9f:b0:f4:
de:05:70:cb:71:3c:40:d8:3c:c9:c4:9a:3c:59:56:
82:44:df:91:86:b4:8f:37:d7:77:21:b6:ac:39:4b:
52:0d:a0:3d:0e:c7:20:4f:62:9b:d0:42:ac:65:01:
3c:ba:58:76:a9:6e:4a:9e:c6:89:12:b4:de:e1:92:
d2:63:b1:d1:4d:ed:db:ba:73:be:36:e4:e3:04:81:
a6:bf:9c:32:da:18:22:3e:9c:66:b8:82:d1:e6:a1:
d3:f2:a6:54:19:bf:54:28:74:76:63:e5:a0:5a:06:
3b:64:33:64:0e:30:37:de:d4:af:69:f8:0f:54:ee:
be:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:ED:F4:8D:98:82:2C:83:8F:31:67:B6:BF:EC:A3:94:31:A9:71:51
X509v3 Authority Key Identifier:
keyid:05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:77:28:69:e4:a9:e0:e2:53:77:31:15:a1:08:0f:48:93:0d:
d0:88:4f:90:4b:d4:da:b9:a2:6a:5b:22:89:ca:39:d9:c7:94:
af:da:44:65:a6:90:43:04:77:14:6a:48:dc:f3:56:ca:c0:2d:
50:5a:c2:1c:bc:27:a4:8b:26:f5:39:1d:e0:e8:0a:25:30:ca:
01:b7:94:54:17:e9:3e:70:78:78:08:a8:03:69:5d:6d:8f:3e:
8a:7f:3f:c3:2f:b2:4c:0b:3c:ab:3c:31:44:ad:e0:61:91:ad:
97:6b:83:00:89:fa:bc:e9:d2:8a:56:29:cf:32:3c:06:db:c9:
f6:df:5e:87:22:5f:b3:08:3e:c3:e3:61:40:24:62:1d:08:38:
1d:b9:e7:a7:cc:84:38:d2:4d:c5:b7:fd:1a:fe:ed:2e:b3:98:
ca:44:2c:8b:a3:0c:af:8a:90:82:07:9e:82:b1:4b:84:86:d8:
39:cd:85:ea:bd:76:6f:c6:34:88:ea:fc:e1:db:63:23:98:01:
7a:55:0d:83:de:c4:8f:c0:3a:22:cc:2d:5f:13:f5:95:17:bc:
ff:76:35:68:6e:41:1d:04:2f:fb:e4:a9:d0:c9:cd:4f:5a:2f:
05:c7:6e:41:cf:11:64:44:dc:cc:d0:81:5d:ca:3d:1c:1b:4f:
96:f7:de:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:06:11 2026 by rpki-client