Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
File: BjfRzl3D-oAOHR3PvaqEH93UOQU.mft (raw, json)
Hash identifier: lis0cpy3FH3nguKAgSjHNIJ4BU4GTI9zozMdNdfrWqk=
Subject key identifier: 48:04:2D:A8:24:10:D8:80:08:03:03:46:86:2E:8C:14:BE:41:8C:EC
Authority key identifier: 06:37:D1:CE:5D:C3:FA:80:0E:1D:1D:CF:BD:AA:84:1F:DD:D4:39:05
Certificate issuer: /CN=0637d1ce5dc3fa800e1d1dcfbdaa841fddd43905
Certificate serial: 019E3073289039EFD21ED2DA09ACFB322253
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BjfRzl3D-oAOHR3PvaqEH93UOQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
Manifest number: 1759
Signing time: Sat 16 May 2026 11:01:53 +0000
Manifest this update: Sat 16 May 2026 11:01:53 +0000
Manifest next update: Sun 17 May 2026 11:01:53 +0000
Files and hashes: 1: BjfRzl3D-oAOHR3PvaqEH93UOQU.crl (hash: H6nw6RX1tv8tFeVHeKroWAO9aXy8Ba+gF5IP/0D7AsE=)
2: G-BgSgA1DvY02PMsHCU-rGoXRQo.roa (hash: PS8e/lwF9c6L43N47uqYtfOx0c2N/MEHbFT+QBvkfks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/BjfRzl3D-oAOHR3PvaqEH93UOQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:73:28:90:39:ef:d2:1e:d2:da:09:ac:fb:32:22:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0637d1ce5dc3fa800e1d1dcfbdaa841fddd43905
Validity
Not Before: May 16 11:01:53 2026 GMT
Not After : May 17 11:01:53 2026 GMT
Subject: CN=48042da82410d88008030346862e8c14be418cec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2b:dd:a4:90:0e:be:b2:d3:6b:55:c7:bc:9e:
3c:9c:d0:ec:b3:c9:e4:31:06:1e:5e:00:54:7f:88:
ea:e2:0b:b5:e9:26:6b:75:a1:e1:c9:c2:8d:fd:f3:
64:56:7d:d6:8b:fd:37:e7:65:5c:8a:eb:89:4a:a4:
c4:48:0b:78:fc:c0:0e:7c:b8:5a:29:25:70:a6:11:
bd:67:15:be:2a:e8:23:92:16:bb:99:f9:96:70:3b:
cf:33:d0:38:93:24:80:7c:8b:2d:bb:dc:ef:a6:bc:
83:4a:66:d0:65:50:ce:dd:4d:1f:e6:e7:7f:75:b1:
4a:6c:45:0e:fe:5c:8e:23:eb:c4:1a:70:69:1c:a7:
35:43:0a:62:f3:75:38:40:6b:94:6c:70:5f:7c:1e:
a7:71:69:1e:e9:37:fd:72:4f:71:a1:e4:3d:75:21:
2b:9b:29:39:83:2e:b5:6d:88:62:73:b6:2c:e9:d4:
f9:ef:c9:41:88:58:4e:25:83:cb:d9:2b:9d:fd:a5:
b8:6b:8d:36:9b:91:0b:45:0a:fe:f3:3d:aa:01:3f:
0f:cc:f8:61:ba:91:a5:e0:34:8d:e4:61:52:80:90:
53:cd:e5:80:3b:99:e9:47:88:4b:13:df:1a:86:8e:
46:96:80:12:ef:42:fe:71:01:5c:6e:98:e0:0b:18:
e2:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:04:2D:A8:24:10:D8:80:08:03:03:46:86:2E:8C:14:BE:41:8C:EC
X509v3 Authority Key Identifier:
keyid:06:37:D1:CE:5D:C3:FA:80:0E:1D:1D:CF:BD:AA:84:1F:DD:D4:39:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BjfRzl3D-oAOHR3PvaqEH93UOQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:6e:dd:2e:1f:c0:6b:e1:c4:0b:20:bd:52:2e:59:29:e1:5d:
87:ae:e1:a4:5c:7f:b6:7c:4e:fd:73:2e:d8:95:c7:10:02:e1:
47:5b:5e:0f:7b:87:22:6e:8d:e6:34:b7:41:1f:3b:43:3f:90:
5a:68:88:69:64:f9:dd:3b:39:e3:6e:90:e0:11:8f:03:1b:f7:
e0:2b:8b:d3:e6:ba:09:e9:99:ba:ec:91:d7:9d:69:2e:8d:ab:
5a:35:df:6f:ea:6c:62:79:22:cd:75:3a:dd:8c:13:7b:73:18:
07:ba:69:dd:c7:ee:e1:27:42:69:9e:42:27:1e:2f:c6:73:0b:
90:ff:50:74:de:be:4a:c2:48:3e:b7:ad:b2:de:19:30:7a:7d:
45:ff:b4:73:6b:51:8e:21:f9:49:c3:94:f2:ed:c2:0f:71:cd:
5e:70:1b:27:99:87:d5:ce:fe:73:06:eb:53:4e:14:27:ea:10:
31:27:b7:2e:78:fb:93:9c:10:56:56:54:22:68:49:f7:60:da:
d2:16:37:bb:92:e9:72:3a:9a:d8:0f:bf:8f:21:8c:91:e0:89:
2e:b4:95:41:18:88:ce:02:1f:e1:98:13:f7:3f:14:18:e8:b0:
f5:fd:3e:6b:f0:ff:24:27:e6:58:10:c1:e8:bc:b5:f1:ef:a3:
ff:61:79:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:26:19 2026 by rpki-client