Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
File: BjfRzl3D-oAOHR3PvaqEH93UOQU.mft (raw, json)
Hash identifier: ej5inMtDtr4YScb/ovRHslOoc1EI8JGhBIwGUJc7sRg=
Subject key identifier: 85:5E:13:BE:AA:89:46:F0:1F:81:5E:E3:44:36:EF:DD:71:C6:E1:76
Authority key identifier: 06:37:D1:CE:5D:C3:FA:80:0E:1D:1D:CF:BD:AA:84:1F:DD:D4:39:05
Certificate issuer: /CN=0637d1ce5dc3fa800e1d1dcfbdaa841fddd43905
Certificate serial: 019F18311839E124AB053C1BC382450E5C47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BjfRzl3D-oAOHR3PvaqEH93UOQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
Manifest number: 17D1
Signing time: Tue 30 Jun 2026 11:01:38 +0000
Manifest this update: Tue 30 Jun 2026 11:01:38 +0000
Manifest next update: Wed 01 Jul 2026 11:01:38 +0000
Files and hashes: 1: BjfRzl3D-oAOHR3PvaqEH93UOQU.crl (hash: 8WezENYrMVxO4A0v6hzyKaQuHeFqm9p1SjbiK2J+7c8=)
2: G-BgSgA1DvY02PMsHCU-rGoXRQo.roa (hash: PS8e/lwF9c6L43N47uqYtfOx0c2N/MEHbFT+QBvkfks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/BjfRzl3D-oAOHR3PvaqEH93UOQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:31:18:39:e1:24:ab:05:3c:1b:c3:82:45:0e:5c:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0637d1ce5dc3fa800e1d1dcfbdaa841fddd43905
Validity
Not Before: Jun 30 11:01:38 2026 GMT
Not After : Jul 1 11:01:38 2026 GMT
Subject: CN=855e13beaa8946f01f815ee34436efdd71c6e176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:38:06:82:33:54:5b:44:d7:db:dd:92:b1:37:
76:f7:a2:73:63:f6:5c:69:84:bf:15:4e:5d:a3:1a:
ef:ff:0c:26:72:a8:a7:6b:fd:58:39:71:58:a9:22:
a0:0c:f3:68:4a:fe:a1:27:9b:fb:31:e9:84:00:75:
50:78:4f:c0:ff:5c:44:79:bf:2d:a4:15:72:17:a5:
74:26:6d:55:e9:61:59:81:e2:83:9b:61:eb:42:07:
f1:f3:06:1b:aa:81:80:07:90:19:11:60:d9:76:92:
3f:9c:ef:b2:0a:a3:11:aa:37:59:76:d3:48:d6:39:
26:d6:b3:a9:60:36:8c:d0:37:aa:49:4b:9e:2a:0a:
c0:c1:10:7b:b0:05:5e:dc:db:25:ee:95:67:d0:ef:
76:ad:43:d6:a3:bc:4f:9c:98:e3:f6:b6:1e:8c:1c:
22:80:06:fd:16:bd:ff:3d:ed:e5:ee:16:d7:da:2b:
1f:12:23:84:34:ae:f1:0b:05:ad:c5:98:22:76:c3:
ad:69:27:43:0c:3a:18:98:bc:50:80:ee:d9:ec:12:
51:04:16:72:ea:2f:28:4a:f2:fc:09:58:08:48:45:
72:e5:14:c9:eb:ce:31:0b:c0:c1:89:26:64:5f:fa:
97:00:f8:ea:0a:07:64:86:a9:3b:af:c3:3b:63:53:
99:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:5E:13:BE:AA:89:46:F0:1F:81:5E:E3:44:36:EF:DD:71:C6:E1:76
X509v3 Authority Key Identifier:
keyid:06:37:D1:CE:5D:C3:FA:80:0E:1D:1D:CF:BD:AA:84:1F:DD:D4:39:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BjfRzl3D-oAOHR3PvaqEH93UOQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/eaa602-2a3f-4f32-abce-3d80d686e747/1/BjfRzl3D-oAOHR3PvaqEH93UOQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:31:7d:ae:1f:12:2f:e0:3f:d4:53:c1:a3:15:5f:fd:48:e5:
7f:c7:bf:f9:29:7b:9d:0f:7a:f0:0c:a5:c1:a7:7b:2a:e6:1d:
bd:2a:3a:36:11:06:95:3e:cb:4a:5b:bf:59:5c:79:3b:c0:87:
f0:9d:d3:c5:27:e6:b7:f1:27:ad:5f:88:0f:8e:d1:56:9e:91:
3a:df:ef:c8:d9:10:8b:c8:07:9d:37:77:00:b7:b9:ef:5e:57:
5e:65:4c:60:8c:d5:91:19:41:a4:38:00:c9:e9:2e:d4:71:c3:
1a:33:7f:1c:14:29:5c:f8:af:5e:ff:dc:4a:15:45:e3:4b:a7:
fd:dc:36:9c:89:c3:cb:06:0c:55:b2:2b:91:8e:af:46:03:f8:
f7:8f:0c:4c:30:aa:35:dc:d1:e0:47:10:3c:cf:9c:a9:6f:9d:
63:fa:0b:5b:dd:e0:84:0e:c9:a5:b2:7e:f9:de:0c:d3:28:85:
cd:26:b4:c8:c5:fe:27:e9:3b:a1:c4:c1:09:df:b7:8a:eb:d8:
e8:3b:06:f4:57:6e:f7:20:a1:5f:bd:46:9c:80:59:aa:59:6e:
8e:2d:23:2a:68:5f:30:19:d6:0c:28:eb:60:1d:57:e0:c4:ba:
90:ef:f7:ce:75:73:e4:33:c1:55:69:e6:b4:70:5a:bf:2f:1e:
41:ff:23:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:38:03 2026 by rpki-client