Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.mft
File: BD0sjag_XDyUrpQKDv0qdxT_kOI.mft (raw, json)
Hash identifier: jZrpygGm6Oef1CrDlxEqhN3ByyIYOWAuar6y6zqF91k=
Subject key identifier: 19:AF:E2:70:F4:E5:6D:2E:B0:55:C5:FF:8C:5B:24:9B:1E:63:BC:B4
Authority key identifier: 04:3D:2C:8D:A8:3F:5C:3C:94:AE:94:0A:0E:FD:2A:77:14:FF:90:E2
Certificate issuer: /CN=043d2c8da83f5c3c94ae940a0efd2a7714ff90e2
Certificate serial: 019E1F47A8244FBFB9B440CD9BED88047A50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BD0sjag_XDyUrpQKDv0qdxT_kOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.mft
Manifest number: 02C7
Signing time: Wed 13 May 2026 03:00:50 +0000
Manifest this update: Wed 13 May 2026 03:00:50 +0000
Manifest next update: Thu 14 May 2026 03:00:50 +0000
Files and hashes: 1: BD0sjag_XDyUrpQKDv0qdxT_kOI.crl (hash: ywwuBPv1tmozJeI9abj592b7WLbk9MihGkHNqGkylL4=)
2: Q_Zn7NI6lsZly6zYVx5ISjrPChQ.roa (hash: gWG2uNDqwP4RF3btrRpyjXejBso2oQJiOb7vaAvc7tA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BD0sjag_XDyUrpQKDv0qdxT_kOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 03:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:a8:24:4f:bf:b9:b4:40:cd:9b:ed:88:04:7a:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=043d2c8da83f5c3c94ae940a0efd2a7714ff90e2
Validity
Not Before: May 13 03:00:50 2026 GMT
Not After : May 14 03:00:50 2026 GMT
Subject: CN=19afe270f4e56d2eb055c5ff8c5b249b1e63bcb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:66:2e:95:f1:1a:3d:6c:0e:8f:be:f3:7e:fe:
f2:c1:08:03:83:c1:65:6b:58:d7:00:bb:56:0e:0d:
4f:df:1f:85:fc:7a:a9:03:61:a7:5a:0b:53:91:55:
bc:68:38:7d:4c:f3:13:42:4e:ea:10:76:68:07:92:
f1:4b:56:57:8e:ad:99:3e:09:94:b8:35:23:5d:04:
fe:5e:ab:b8:9f:b4:9e:7c:4d:98:b6:16:24:09:3d:
f6:d3:89:4a:52:b0:e1:22:de:62:9d:a6:d4:89:24:
d1:7f:16:06:74:98:02:f4:9e:1c:5e:5f:87:66:aa:
20:0b:4a:c3:0b:59:f9:22:2e:00:23:90:db:7b:2d:
8d:0e:f8:04:fd:b5:19:d5:a4:f3:c9:8c:d7:fe:0b:
82:6d:83:ab:12:fa:05:23:8b:33:65:82:e6:cb:0e:
44:f0:25:3d:dc:5e:f3:35:09:e6:b0:11:48:eb:03:
2c:c6:91:34:3b:f7:b6:9d:0e:c5:39:ca:91:1f:64:
da:36:12:de:d8:04:57:98:8f:9b:14:90:24:74:ee:
95:8b:da:05:36:dd:41:77:c0:3d:f3:c6:6d:0b:08:
4b:aa:aa:ae:55:00:cf:c2:63:20:ae:4c:0b:30:5f:
91:b7:ed:91:d4:d5:d8:41:5b:64:ec:a1:00:18:4e:
30:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:AF:E2:70:F4:E5:6D:2E:B0:55:C5:FF:8C:5B:24:9B:1E:63:BC:B4
X509v3 Authority Key Identifier:
keyid:04:3D:2C:8D:A8:3F:5C:3C:94:AE:94:0A:0E:FD:2A:77:14:FF:90:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BD0sjag_XDyUrpQKDv0qdxT_kOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:33:2e:0d:1c:3a:dd:d7:a6:b3:dc:24:53:3c:53:bf:a4:75:
51:c7:6e:5f:aa:c6:57:68:db:e6:0a:64:57:77:28:76:6a:ea:
e2:8e:46:64:19:d2:ee:ba:00:be:67:93:93:66:76:c8:10:93:
ea:58:c2:ab:bb:de:83:15:d7:aa:63:4a:1f:9c:4d:e1:0f:33:
d9:a1:16:d6:bd:0d:17:5b:71:d1:aa:dd:42:e6:a3:d8:b9:14:
56:d1:1c:b1:5f:7f:67:2a:9f:57:61:5d:b7:18:8f:2c:14:14:
63:3d:b0:91:fb:68:27:f2:20:21:25:1c:b8:13:0d:65:3d:7c:
12:f4:59:4b:03:38:9c:dd:81:b4:f2:5d:3d:96:6b:42:5b:2d:
8b:44:c3:3b:16:9d:5a:1a:dc:f8:7d:bc:86:b3:b2:be:ad:2d:
6e:82:e6:92:c1:05:dd:0a:21:82:48:12:78:44:5d:f7:86:ff:
51:1f:00:8c:8f:fc:74:be:9d:c4:58:ee:a0:c7:fe:22:24:05:
21:bb:5e:30:de:3d:c9:c1:25:c3:53:1b:18:b8:af:42:93:48:
ac:3d:35:29:e0:70:f4:6b:51:0a:84:7a:99:41:61:7c:46:d4:
68:d2:d2:6d:3c:d1:4b:eb:17:5f:b9:bb:d4:6c:6a:18:91:85:
e7:fe:35:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:50:56 2026 by rpki-client