Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
File: BCSFBLVFValEOwKjPTUakChju5k.mft (raw, json)
Hash identifier: SHRvzoC5UjHLYYyawgPcPVmmJYeNHzZbFppuyoJgCS0=
Subject key identifier: 8C:D9:92:36:00:2C:3D:F4:77:DB:28:43:67:81:3E:E3:2F:54:F6:8D
Authority key identifier: 04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
Certificate issuer: /CN=04248504b54555a9443b02a33d351a902863bb99
Certificate serial: 019D371BF40FEA81629EFBA38F7BE1875057
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 01:01:11 +0000
Manifest this update: Sun 29 Mar 2026 01:01:11 +0000
Manifest next update: Mon 30 Mar 2026 01:01:11 +0000
Files and hashes: 1: BCSFBLVFValEOwKjPTUakChju5k.crl (hash: VWPq1R/qdblShYDWHV00S4sywJzeqmzhfqdWr9SO6fs=)
2: dfr7uobX_w4lQ4i9yNjUHYWp4ow.roa (hash: M74uU1K2KPG63rDAm5lv4SwVTXIBc7q05CCX0TzlAgw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:f4:0f:ea:81:62:9e:fb:a3:8f:7b:e1:87:50:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04248504b54555a9443b02a33d351a902863bb99
Validity
Not Before: Mar 29 01:01:11 2026 GMT
Not After : Mar 30 01:01:11 2026 GMT
Subject: CN=8cd99236002c3df477db284367813ee32f54f68d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:88:0b:5a:c4:86:ac:f9:fc:e8:db:28:ff:85:
22:04:b5:b2:a5:98:fe:09:5f:b1:cb:c8:e7:37:22:
29:69:50:85:4f:a5:a1:54:70:0a:6d:ba:db:d3:d3:
22:c6:d8:1a:a7:97:9f:71:19:c1:b1:ef:71:82:e7:
78:09:7a:45:00:d3:21:df:17:55:b6:0d:e7:f9:f1:
ce:3e:2e:dd:be:f7:98:47:f0:59:6a:1a:ff:32:d7:
02:9f:44:e0:e7:51:39:9e:39:29:79:31:53:b7:10:
15:4b:98:b4:7f:a1:a9:61:1a:e7:e3:7d:cb:26:77:
cb:6c:17:2e:b7:85:f8:15:39:ea:86:62:2d:c4:74:
ae:59:f4:4b:19:d1:d9:8d:1a:ea:09:ed:26:41:e3:
58:fd:44:ef:cc:05:67:35:8a:91:6a:f9:16:6f:b0:
79:e8:92:53:32:91:e6:34:17:55:da:b0:a3:f8:84:
0d:00:2d:76:72:f0:7a:39:1d:d7:fb:6b:2b:9f:22:
71:e9:ee:93:01:62:53:e8:84:95:96:b3:6f:01:da:
04:df:d8:06:a5:fe:d0:9f:24:65:4b:7a:92:c8:6e:
b1:95:b2:d0:69:19:2c:c6:72:2b:85:28:6e:7f:6e:
58:d5:16:a1:b5:87:8e:5e:72:3b:26:db:78:b0:dd:
3d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:D9:92:36:00:2C:3D:F4:77:DB:28:43:67:81:3E:E3:2F:54:F6:8D
X509v3 Authority Key Identifier:
keyid:04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:a9:d9:d5:c8:0c:ec:a0:6e:c7:30:c7:5d:2b:1a:0b:ec:b4:
4c:b1:a8:89:5f:9b:cc:e3:d1:04:3a:de:03:03:0c:99:46:09:
27:92:e6:59:69:af:62:94:bd:69:38:d3:14:95:8d:ef:7f:f3:
b5:d3:3f:04:e7:1d:26:4a:02:cf:11:b0:e3:1c:eb:cc:b7:e6:
88:4f:ef:4a:d3:73:1f:d1:c6:da:2e:98:48:cd:21:96:cf:77:
d6:81:02:88:41:b0:29:eb:1a:38:bc:65:44:86:bf:c4:29:96:
38:4d:b2:0d:cc:f0:41:40:0c:56:ee:69:59:5a:9c:79:2b:70:
aa:b9:a7:02:b0:2e:3c:42:89:fc:fa:51:de:00:35:be:3e:71:
15:86:7a:c8:94:ef:ee:44:5c:f2:84:69:04:00:82:76:57:90:
c5:7d:50:d4:79:a5:3f:6d:12:54:a1:51:6c:0d:0f:b6:0d:b6:
0c:3b:e9:4d:7e:44:33:15:fa:64:de:22:86:4e:52:69:03:a4:
b2:a4:fb:2e:a8:2e:3e:f2:6f:6a:b1:e6:a2:b6:96:91:0d:06:
98:71:67:ab:f5:d8:2d:73:f4:fd:8f:49:5b:39:e9:70:32:b9:
80:44:f2:76:67:5d:76:96:82:80:fb:b5:e8:7f:ee:b9:cd:4d:
06:60:46:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03G/QP6oFinvujj3vhh1BXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0MjQ4NTA0YjU0NTU1YTk0NDNiMDJhMzNkMzUxYTkwMjg2
M2JiOTkwHhcNMjYwMzI5MDEwMTExWhcNMjYwMzMwMDEwMTExWjAzMTEwLwYDVQQD
Eyg4Y2Q5OTIzNjAwMmMzZGY0NzdkYjI4NDM2NzgxM2VlMzJmNTRmNjhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYgLWsSGrPn86Nso/4UiBLWypZj+
CV+xy8jnNyIpaVCFT6WhVHAKbbrb09Mixtgap5efcRnBse9xgud4CXpFANMh3xdV
tg3n+fHOPi7dvveYR/BZahr/MtcCn0Tg51E5njkpeTFTtxAVS5i0f6GpYRrn433L
JnfLbBcut4X4FTnqhmItxHSuWfRLGdHZjRrqCe0mQeNY/UTvzAVnNYqRavkWb7B5
6JJTMpHmNBdV2rCj+IQNAC12cvB6OR3X+2srnyJx6e6TAWJT6ISVlrNvAdoE39gG
pf7QnyRlS3qSyG6xlbLQaRksxnIrhShuf25Y1RahtYeOXnI7Jtt4sN098wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIzZkjYALD30d9soQ2eBPuMvVPaNMB8GA1UdIwQY
MBaAFAQkhQS1RVWpRDsCoz01GpAoY7uZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQkNTRkJMVkZWYWxFT3dLalBUVWFrQ2hqdTVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9iOGJiMWEtYTg4ZS00YjJmLTk4N2Yt
NDcwMTVhNjA3N2IyLzEvQkNTRkJMVkZWYWxFT3dLalBUVWFrQ2hqdTVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9iOGJiMWEtYTg4ZS00YjJmLTk4N2YtNDcwMTVhNjA3N2Iy
LzEvQkNTRkJMVkZWYWxFT3dLalBUVWFrQ2hqdTVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI6nZ1cgM
7KBuxzDHXSsaC+y0TLGoiV+bzOPRBDreAwMMmUYJJ5LmWWmvYpS9aTjTFJWN73/z
tdM/BOcdJkoCzxGw4xzrzLfmiE/vStNzH9HG2i6YSM0hls931oECiEGwKesaOLxl
RIa/xCmWOE2yDczwQUAMVu5pWVqceStwqrmnArAuPEKJ/PpR3gA1vj5xFYZ6yJTv
7kRc8oRpBACCdleQxX1Q1HmlP20SVKFRbA0Ptg22DDvpTX5EMxX6ZN4ihk5SaQOk
sqT7LqguPvJvarHmoraWkQ0GmHFnq/XYLXP0/Y9JWznpcDK5gETydmdddpaCgPu1
6H/uuc1NBmBGDg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:48 2026 by rpki-client