Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
File: BfCLdPURftOAcj2eQp7LSqU4Ulo.mft (raw, json)
Hash identifier: mJ7p9TOADmwpk1ijJXbjSa4w5n4VOEgDb0R1xv5KxeQ=
Subject key identifier: A9:E6:06:26:1A:19:13:25:9B:14:BB:59:DB:84:F9:BE:A4:74:8D:07
Authority key identifier: 05:F0:8B:74:F5:11:7E:D3:80:72:3D:9E:42:9E:CB:4A:A5:38:52:5A
Certificate issuer: /CN=05f08b74f5117ed380723d9e429ecb4aa538525a
Certificate serial: 019DD20845AFDC3E2412B5510BB58ACA8376
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
Manifest number: 18E3
Signing time: Tue 28 Apr 2026 03:00:50 +0000
Manifest this update: Tue 28 Apr 2026 03:00:50 +0000
Manifest next update: Wed 29 Apr 2026 03:00:50 +0000
Files and hashes: 1: BfCLdPURftOAcj2eQp7LSqU4Ulo.crl (hash: Od3GbZLDc70Np1Y9QGYprv5TGmXQWbxqBJC7GGPPGdc=)
2: oq7B2jOnBFc5xmS1hAmRi3Iizs8.roa (hash: cJWrmd7TH+I8F5geYRcuRFFIpG0qtCHY7V96oxqqLg4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Apr 2026 02:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d2:08:45:af:dc:3e:24:12:b5:51:0b:b5:8a:ca:83:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f08b74f5117ed380723d9e429ecb4aa538525a
Validity
Not Before: Apr 28 03:00:50 2026 GMT
Not After : Apr 29 03:00:50 2026 GMT
Subject: CN=a9e606261a1913259b14bb59db84f9bea4748d07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a1:dd:f4:2d:20:85:c0:e1:f1:5e:c9:c9:39:
09:c6:06:77:ad:cd:b5:dc:ce:89:da:b5:03:57:6d:
2c:9b:44:ea:d6:31:55:0c:4f:f7:7c:b3:af:16:7a:
5c:20:fc:0f:84:ca:27:d7:94:c0:90:43:f5:2a:1c:
60:f6:1e:c4:cc:14:98:56:9e:46:0a:b4:82:70:5e:
da:e1:17:50:f8:4c:d1:62:62:a0:01:ee:f1:15:7f:
8b:0d:5d:72:02:8a:5b:59:f6:e4:89:45:c2:36:0d:
66:a0:9b:f3:c9:4a:8e:ba:c9:e4:79:49:46:92:2b:
6b:21:33:8a:a2:9a:b1:53:69:81:ec:a4:80:12:24:
16:67:22:05:13:4f:b0:f0:44:a3:e3:32:c2:d5:f0:
30:ae:01:53:d8:a3:b4:14:2b:f8:c9:85:90:29:f9:
e7:cc:85:2e:5a:fc:22:ac:1b:dd:8f:d3:0c:ef:91:
a9:76:e3:b4:ec:41:ba:a0:90:ee:7b:82:f5:3c:b6:
ff:90:ad:aa:01:8a:23:6c:57:85:49:67:80:89:b4:
61:11:f0:cc:1b:d3:3f:b4:3b:c3:33:31:60:95:03:
2f:df:e2:c9:37:1e:2b:27:0e:f7:a2:19:53:bb:a9:
33:6f:b7:5d:1b:8d:8f:56:a5:6f:1a:f8:e7:ba:08:
91:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E6:06:26:1A:19:13:25:9B:14:BB:59:DB:84:F9:BE:A4:74:8D:07
X509v3 Authority Key Identifier:
keyid:05:F0:8B:74:F5:11:7E:D3:80:72:3D:9E:42:9E:CB:4A:A5:38:52:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:bf:45:e9:d0:4b:4f:12:a8:62:de:eb:85:e8:13:3f:b2:4c:
65:60:8a:9c:e7:92:ea:ec:c8:27:2e:d1:e5:3a:c7:7b:d6:48:
3e:57:e0:b9:0e:4b:92:4c:93:9b:fe:5c:dd:e9:f7:1a:98:75:
e0:cc:b0:de:6c:36:d5:35:7a:c4:55:2c:ba:04:37:04:b9:07:
dd:9f:2b:d3:6f:87:e8:3d:ed:9e:f3:47:52:f1:33:59:15:2e:
25:e5:bc:77:50:97:59:2d:08:2a:a6:55:9b:9b:dd:60:4c:e1:
2c:5f:41:47:1f:f6:78:21:f3:0d:12:1a:dd:94:0a:47:17:2e:
36:22:c3:c3:67:ef:95:cc:64:7a:c2:5f:bd:c0:0a:c4:94:27:
db:a1:7b:70:8b:24:db:50:18:9e:2b:6b:71:4c:9b:5e:33:c3:
35:3b:5c:51:00:d1:f7:01:eb:2a:ce:47:ea:34:d7:26:35:5d:
94:43:91:7b:ba:f3:88:8e:ce:a3:8b:89:bf:9a:3c:fc:6e:91:
36:5e:23:c7:4f:b7:43:6b:65:4a:99:e3:17:f7:f7:d5:7c:37:
8f:0a:ab:e7:6f:6a:1c:fb:99:d7:25:05:c8:18:9d:d2:3e:82:
8f:5f:4d:03:c5:20:af:02:44:1c:db:01:3a:ba:d4:05:ae:8f:
7f:55:5c:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 05:46:25 2026 by rpki-client