Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
File: BjfRzl3D-oAOHR3PvaqEH93UOQU.mft (raw, json)
Hash identifier: LHxOnoTb9CU9uaZct9tJ4gFnlv0ae3YBGPaLwWk/Fws=
Subject key identifier: EF:B3:BA:CF:D2:D8:6F:ED:B1:44:64:10:0C:6A:FA:F5:33:2F:01:68
Authority key identifier: 06:37:D1:CE:5D:C3:FA:80:0E:1D:1D:CF:BD:AA:84:1F:DD:D4:39:05
Certificate issuer: /CN=0637d1ce5dc3fa800e1d1dcfbdaa841fddd43905
Certificate serial: 019CE82534307B0AB6059698EA18D94C503C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BjfRzl3D-oAOHR3PvaqEH93UOQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
Manifest number: 16AF
Signing time: Fri 13 Mar 2026 17:01:18 +0000
Manifest this update: Fri 13 Mar 2026 17:01:18 +0000
Manifest next update: Sat 14 Mar 2026 17:01:18 +0000
Files and hashes: 1: BjfRzl3D-oAOHR3PvaqEH93UOQU.crl (hash: H+ayLLZB0O/5q8qeHSynciJ92BOdaGPKtNN25UnbuR8=)
2: G-BgSgA1DvY02PMsHCU-rGoXRQo.roa (hash: PS8e/lwF9c6L43N47uqYtfOx0c2N/MEHbFT+QBvkfks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/BjfRzl3D-oAOHR3PvaqEH93UOQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e8:25:34:30:7b:0a:b6:05:96:98:ea:18:d9:4c:50:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0637d1ce5dc3fa800e1d1dcfbdaa841fddd43905
Validity
Not Before: Mar 13 17:01:18 2026 GMT
Not After : Mar 14 17:01:18 2026 GMT
Subject: CN=efb3bacfd2d86fedb14464100c6afaf5332f0168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e5:54:c7:77:4d:69:de:14:62:9d:28:3b:db:
80:e8:a6:f5:39:dc:9a:69:16:78:28:3e:25:ad:8b:
ed:b3:11:db:e3:0a:a7:c5:5a:fa:01:eb:ad:28:03:
4f:30:17:40:44:fd:c8:69:8e:8b:a0:14:ae:52:26:
61:c3:a9:aa:14:f1:4e:e6:af:80:2a:15:c9:96:ac:
0e:9a:1f:55:d9:6c:35:9a:42:4c:7b:39:87:c8:d6:
06:3c:56:5a:6a:18:92:54:37:a3:59:1d:7e:4f:1d:
d4:0b:40:93:85:15:e9:25:c4:3d:49:62:93:c1:51:
81:ac:6d:e3:31:53:3d:44:b8:51:e3:b9:5c:33:a9:
aa:73:13:41:50:af:ed:ad:16:31:cd:83:36:40:0a:
db:94:1c:7d:63:24:0a:f0:44:51:77:51:42:62:05:
ec:1d:58:97:a2:85:19:e5:8c:db:84:17:6b:3c:b0:
1e:1b:53:ed:a9:d8:13:19:fb:fc:fa:28:29:a1:4a:
2f:46:94:06:21:eb:04:0c:46:21:9d:ad:37:ef:86:
3a:89:fb:f9:e2:9c:f1:b1:82:ad:de:6e:8f:a2:ff:
a5:b1:77:42:2b:8c:32:ab:b2:21:a5:fb:20:3c:00:
78:cb:12:ee:e0:b0:04:b4:fa:27:5d:6d:b7:db:4d:
13:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:B3:BA:CF:D2:D8:6F:ED:B1:44:64:10:0C:6A:FA:F5:33:2F:01:68
X509v3 Authority Key Identifier:
keyid:06:37:D1:CE:5D:C3:FA:80:0E:1D:1D:CF:BD:AA:84:1F:DD:D4:39:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BjfRzl3D-oAOHR3PvaqEH93UOQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:22:b7:e4:39:a6:1e:60:69:16:69:21:a2:7a:cd:53:74:ea:
04:a2:ca:b2:c2:db:ee:b1:42:d2:20:87:41:ca:7c:d8:88:72:
90:1d:ac:df:d1:98:c6:97:9d:2c:fc:67:92:bf:18:bf:fb:12:
62:d5:c8:33:f0:b1:c4:8a:f2:71:76:33:44:78:06:c0:68:79:
5c:46:03:51:e6:a2:e0:08:b5:0d:90:b7:34:8a:86:b7:de:05:
5d:c2:70:40:0d:20:5b:14:a1:b6:fe:03:ad:f7:41:2a:d2:7e:
25:b4:c0:5c:52:2d:fd:57:c1:b1:71:67:49:06:f3:a4:ba:1c:
ed:19:c6:78:95:8d:c1:bc:9d:e7:b0:c7:31:2b:ea:58:4f:8f:
02:25:af:f8:d5:af:5a:a6:a7:b1:82:cd:69:31:24:c4:f6:f2:
61:7c:ca:c6:4f:d0:2a:c9:da:28:b2:7d:7d:f6:c3:91:44:bf:
d0:92:c2:fd:47:b9:69:21:fe:13:54:5c:d5:44:29:0d:0a:5c:
a4:54:43:d1:6e:c8:da:10:f1:12:a7:af:d5:4e:b0:a4:d6:62:
c5:a2:44:2a:1e:c8:c5:b7:ea:2f:b8:06:8f:d8:64:e8:4b:76:
6d:5d:5e:e5:78:d4:a4:ae:48:3c:8d:34:93:6c:29:cc:c3:32:
08:2a:0b:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 19:39:46 2026 by rpki-client