Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft
File: BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft (raw, json)
Hash identifier: xy1tsIDyR0MM9BqCVeiE3pnYKg1ToHunYHEqr9IZYU0=
Subject key identifier: 64:94:89:41:AE:40:06:BB:F8:E0:89:41:ED:F3:34:56:AC:72:F6:BB
Authority key identifier: 05:2B:10:E5:47:E8:9F:F6:C7:B3:9B:6C:A9:7F:B1:6B:3F:DF:BE:4F
Certificate issuer: /CN=052b10e547e89ff6c7b39b6ca97fb16b3fdfbe4f
Certificate serial: 019DDCC2EAAC5C6DAE66FFF85CCBBE813494
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft
Manifest number: 0B5E
Signing time: Thu 30 Apr 2026 05:00:54 +0000
Manifest this update: Thu 30 Apr 2026 05:00:54 +0000
Manifest next update: Fri 01 May 2026 05:00:54 +0000
Files and hashes: 1: BSsQ5Ufon_bHs5tsqX-xaz_fvk8.crl (hash: 9aJBt4cTg3Q16gNkvE8TVhCcwxmhiRKe0cZJCSTJ3N4=)
2: wPZBSgFASeM9SaWJvAkRGk-7twQ.roa (hash: R3wosEg+LuaaoBj4e/mPNIMyKN6NLJP5v9wAW4ICOrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 May 2026 05:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:dc:c2:ea:ac:5c:6d:ae:66:ff:f8:5c:cb:be:81:34:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052b10e547e89ff6c7b39b6ca97fb16b3fdfbe4f
Validity
Not Before: Apr 30 05:00:54 2026 GMT
Not After : May 1 05:00:54 2026 GMT
Subject: CN=64948941ae4006bbf8e08941edf33456ac72f6bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8e:e2:53:74:a7:5f:ec:b6:c0:4a:ff:2a:cf:
35:b5:a7:77:5d:fd:f5:e6:80:0a:af:b4:e9:c6:0e:
e8:2e:71:e4:54:6d:42:e5:2e:05:88:c5:17:dc:79:
c6:13:59:25:c2:17:20:24:18:eb:b6:76:3f:35:f9:
bc:4e:77:de:d3:80:48:0e:45:81:ec:7b:1b:6b:04:
c2:8d:6f:24:91:5b:85:ed:05:bb:41:72:cc:e0:e9:
8a:48:3e:6e:79:15:9a:e8:49:78:53:f9:bf:34:14:
2d:14:f6:4e:4e:49:8f:ac:67:02:29:cb:96:97:f8:
79:d3:1a:28:5e:b0:f5:56:a4:a0:89:80:65:04:97:
89:cd:60:7f:77:70:ec:6e:16:ed:97:e5:99:e7:0c:
97:cd:01:5e:89:e0:42:e5:7e:eb:7a:3e:bf:1e:92:
2c:0b:0b:dd:2d:09:0d:23:ff:c1:a4:19:56:0a:67:
dc:2b:80:d5:df:a4:16:2b:44:73:0d:3d:75:a3:15:
a4:e4:9c:37:c1:df:0d:19:8c:80:e6:56:9a:09:78:
05:d1:28:bf:fa:4c:e8:cf:ef:3f:30:76:8f:89:b2:
d5:8e:9a:74:62:6c:a0:03:c7:f9:6c:ac:3a:c1:78:
e9:88:0b:f9:bd:f8:44:a2:d2:54:ad:5b:4c:74:2f:
e7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:94:89:41:AE:40:06:BB:F8:E0:89:41:ED:F3:34:56:AC:72:F6:BB
X509v3 Authority Key Identifier:
keyid:05:2B:10:E5:47:E8:9F:F6:C7:B3:9B:6C:A9:7F:B1:6B:3F:DF:BE:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:cf:0e:a5:14:62:10:9f:04:d3:8a:16:00:e6:a9:0c:11:fb:
c7:51:89:1a:91:1e:e9:72:e1:b8:ab:88:38:53:4c:81:8d:fb:
68:1e:0f:5b:d6:36:43:47:7f:01:fc:d2:c1:38:ae:94:c7:33:
61:78:a3:56:73:e3:0d:89:2d:4f:8e:cc:c1:ff:dd:3f:45:6c:
6b:b5:ef:f3:aa:82:33:77:32:5d:87:4d:00:fe:e9:04:8b:50:
0a:0a:c3:06:30:18:00:76:90:69:fb:25:d0:d2:a5:6e:84:61:
71:87:84:db:e7:27:cd:20:76:51:8a:12:49:ea:fa:3f:f9:e0:
09:c7:58:92:ec:73:c4:84:7e:d8:9f:65:be:7e:3a:f0:41:f6:
25:02:75:d7:1a:42:b1:0c:8d:b5:2f:06:25:45:63:19:ff:86:
27:95:d1:50:f2:10:d6:98:ac:86:6b:45:c2:37:61:fd:11:e2:
38:48:91:8a:98:b4:a5:d0:12:5b:7c:e7:12:e9:8c:23:db:79:
93:58:9f:74:45:4e:0e:b4:d4:1e:f3:87:ca:e4:76:a0:8d:ea:
11:98:50:13:98:a9:40:55:86:d9:b2:75:5d:9f:d8:4c:44:97:
0f:13:9b:ad:dd:f4:9b:f3:2b:e6:7d:7b:bf:25:69:3f:ee:73:
f1:63:0d:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 30 13:46:32 2026 by rpki-client