Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
File: BmVsWtlzg3LVTAN-OX81vpqpJNs.mft (raw, json)
Hash identifier: fjWJWDkyyzy2DzHHl4JtFin4jHpge4APS4l69aCdSeA=
Subject key identifier: 5E:1B:C3:B6:C4:05:59:3E:90:18:81:E0:B7:2C:FA:47:21:A7:A0:71
Authority key identifier: 06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
Certificate issuer: /CN=06656c5ad9738372d54c037e397f35be9aa924db
Certificate serial: 019D390A59C272A2E9A7CC37AC4EC49B59B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
Manifest number: 045E
Signing time: Sun 29 Mar 2026 10:01:12 +0000
Manifest this update: Sun 29 Mar 2026 10:01:12 +0000
Manifest next update: Mon 30 Mar 2026 10:01:12 +0000
Files and hashes: 1: BmVsWtlzg3LVTAN-OX81vpqpJNs.crl (hash: K3tQdOwvuwfGQXAAdr5HkzuICba/LmkDCLORhVka/Yk=)
2: IuMZcspQ8K2Rh1GaYKyW2FT1kL4.roa (hash: 9/0A8YPeaznPXiLNVP4FFOJdTd1wwZVGFqXuoC2dxWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:59:c2:72:a2:e9:a7:cc:37:ac:4e:c4:9b:59:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06656c5ad9738372d54c037e397f35be9aa924db
Validity
Not Before: Mar 29 10:01:12 2026 GMT
Not After : Mar 30 10:01:12 2026 GMT
Subject: CN=5e1bc3b6c405593e901881e0b72cfa4721a7a071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:84:23:34:dc:b9:5b:32:36:f2:13:73:58:6a:
91:f7:bf:0c:6f:79:19:30:54:7f:c9:93:ce:bf:5b:
6f:69:9c:c5:ec:8c:4e:fb:18:cf:8d:d1:69:ba:67:
60:3f:e4:e1:28:53:30:2c:68:5d:eb:d6:33:45:f9:
38:fc:af:dd:68:5a:10:27:62:9a:b1:50:54:f0:32:
72:0c:00:3b:ac:e2:93:f8:b4:4c:1d:fa:77:50:97:
23:8f:ee:2f:f0:51:72:48:80:6f:58:89:b0:07:aa:
c5:79:d2:a5:eb:01:06:e3:db:da:a9:0d:b6:94:cc:
f4:f7:86:ec:ed:ea:2d:6d:17:63:57:39:ae:52:f7:
7a:f3:ad:8d:b4:4a:a6:58:2b:2f:d3:3b:36:b1:60:
1b:7c:ca:ff:93:c1:3d:f6:eb:26:0f:34:b9:35:10:
da:27:b5:0a:5e:87:e8:1e:19:a4:2e:1b:84:da:48:
bf:81:9b:4f:2f:71:2e:82:40:3a:4f:33:a5:4b:b4:
30:0d:65:7e:10:d2:c0:44:3e:97:a5:19:6f:fa:d4:
cf:09:15:60:0e:89:52:03:4f:4d:ed:1b:e3:6c:f9:
34:82:91:87:b1:52:f2:e2:65:9b:15:84:15:5c:cd:
85:2f:1c:73:e0:0b:2b:f7:f9:af:36:6f:45:aa:14:
1a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:1B:C3:B6:C4:05:59:3E:90:18:81:E0:B7:2C:FA:47:21:A7:A0:71
X509v3 Authority Key Identifier:
keyid:06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:dc:35:87:e4:58:e8:c7:23:60:4a:6f:71:a7:13:a5:93:8b:
89:1a:fd:2c:8c:ac:ba:27:8d:de:18:81:58:ec:5b:80:2b:3e:
07:4c:22:c7:89:eb:ec:68:38:f9:50:e6:2c:70:e5:b7:c6:ee:
03:e5:d4:e4:50:06:cf:54:b7:19:02:b6:5b:95:d7:e3:3b:c7:
1e:07:97:66:04:39:cc:90:e3:84:2e:5d:a2:27:57:e8:dd:a3:
88:30:6f:db:6b:ea:60:02:41:2e:ad:0a:55:4f:4a:70:f2:17:
6f:e2:83:40:e7:ca:38:54:2e:7e:bf:2b:1b:65:b0:a1:45:74:
45:38:e4:f6:70:40:ce:37:db:b6:a1:e1:ad:36:d0:9e:56:af:
7d:c4:fb:50:a2:9a:d7:94:43:5d:30:33:3b:5f:e1:f8:25:f8:
8d:10:81:36:3b:19:e6:44:8a:86:a6:1b:90:23:b2:c7:3d:ac:
90:86:c6:eb:df:75:02:9a:4e:6e:de:74:7e:d9:a2:c3:95:7b:
0b:2b:53:50:4f:19:17:80:b9:40:cf:6d:d8:48:2a:3e:a7:01:
fe:eb:b0:ae:3a:02:f6:00:ca:d5:34:12:82:20:98:27:31:96:
3a:8a:75:ce:f4:92:f5:1b:67:00:cb:a4:b8:9f:e4:e8:36:d8:
92:d9:e7:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:12:01 2026 by rpki-client