Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
File: BCSFBLVFValEOwKjPTUakChju5k.mft (raw, json)
Hash identifier: cBR2sSTtwYuT/2wfsptzATU85yYjMa/Vuv0JuFUcqkI=
Subject key identifier: 88:F9:31:89:14:E8:2D:42:F7:39:16:A6:FC:32:67:53:F0:2F:EB:A0
Authority key identifier: 04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
Certificate issuer: /CN=04248504b54555a9443b02a33d351a902863bb99
Certificate serial: 019E303B7ADDDFE57A4671BEB4F3528099DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
Manifest number: 1912
Signing time: Sat 16 May 2026 10:01:04 +0000
Manifest this update: Sat 16 May 2026 10:01:04 +0000
Manifest next update: Sun 17 May 2026 10:01:04 +0000
Files and hashes: 1: BCSFBLVFValEOwKjPTUakChju5k.crl (hash: DOmtrmxg2zcRYhRlh9QJPxLr3HbAhFiXK/HJl71+9aQ=)
2: dfr7uobX_w4lQ4i9yNjUHYWp4ow.roa (hash: M74uU1K2KPG63rDAm5lv4SwVTXIBc7q05CCX0TzlAgw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:7a:dd:df:e5:7a:46:71:be:b4:f3:52:80:99:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04248504b54555a9443b02a33d351a902863bb99
Validity
Not Before: May 16 10:01:04 2026 GMT
Not After : May 17 10:01:04 2026 GMT
Subject: CN=88f9318914e82d42f73916a6fc326753f02feba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:72:c8:ff:1b:51:77:1d:ce:10:38:6f:55:cb:
aa:28:db:47:fe:25:f1:ed:8c:45:f8:62:b1:f5:f5:
53:89:b4:ac:20:ed:d9:b4:7d:a3:60:8b:7d:f6:11:
f1:e2:c5:46:4e:52:54:e5:d7:32:77:fb:07:32:05:
ae:bd:d9:3e:a2:da:d7:51:17:0b:d5:87:ac:fa:57:
87:f7:71:3f:09:40:d4:66:49:db:7b:61:bb:0b:2b:
ed:67:85:8c:3e:26:c4:b4:6f:ad:d1:24:7c:ce:1b:
16:ee:88:0f:5f:a4:eb:b9:79:05:14:25:8e:3a:f6:
bc:d8:cc:26:b3:1c:ce:19:2b:c4:1b:15:d7:97:a1:
4f:20:8e:8d:d6:15:46:82:b7:16:e6:8e:39:04:95:
66:96:17:58:05:74:f0:7d:05:27:c2:73:41:03:a5:
16:eb:2f:ca:63:fc:b4:99:fe:07:c0:c6:98:f3:4c:
3a:97:77:3e:f1:b2:83:ff:4b:97:e9:6d:27:b8:c3:
31:db:4b:72:17:64:30:17:6c:d6:40:bc:a1:b8:f8:
6e:83:2b:dc:9f:c6:63:b1:22:ec:4e:58:89:39:17:
e3:ed:29:7a:f6:b8:2d:3c:48:8f:71:e5:59:1b:66:
a5:e4:b8:8e:7b:1b:e0:b5:5a:6b:e1:d7:c7:ce:87:
b4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F9:31:89:14:E8:2D:42:F7:39:16:A6:FC:32:67:53:F0:2F:EB:A0
X509v3 Authority Key Identifier:
keyid:04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:2a:3f:f3:a2:8b:c4:68:31:95:ef:d0:52:57:84:be:4f:4b:
c1:33:5b:ff:e7:73:3a:a3:89:24:fe:9b:e5:65:d1:bc:55:40:
42:c3:04:9e:dd:a8:78:2c:49:47:de:28:4d:09:c3:b7:f1:7c:
61:0c:5e:6b:28:b4:6c:e5:eb:e9:12:14:83:78:cb:bc:a8:26:
b1:07:35:a2:d2:f9:7f:50:90:76:c0:50:58:4a:16:18:ac:8c:
5f:18:a5:f4:6f:73:db:40:4e:d3:1e:d3:80:2c:e5:85:9f:66:
ed:62:8f:eb:37:a4:48:07:43:70:cc:a3:34:24:e5:b4:dd:be:
03:5a:c0:87:bd:ef:01:78:28:c4:16:fa:c8:7b:55:14:56:04:
2e:08:a4:3a:b5:4c:fb:03:42:e6:af:46:84:e2:7e:fc:e3:6a:
55:0f:60:3f:27:10:d3:70:c3:eb:f0:4c:8d:c0:70:7d:b0:e6:
a0:93:f9:f3:d5:6a:83:58:7a:9e:64:d2:99:f3:a9:9e:8b:a4:
a7:70:3c:f8:b7:b7:15:29:dc:c0:37:fb:f6:20:3f:b6:52:e8:
0d:eb:c1:8a:70:2d:35:a6:f0:96:87:86:67:78:cf:f5:7c:90:
30:82:80:7d:31:4a:ec:dc:77:48:f7:5b:c4:29:c3:f8:d4:de:
93:be:59:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:12:25 2026 by rpki-client