Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
File: BfCLdPURftOAcj2eQp7LSqU4Ulo.mft (raw, json)
Hash identifier: TQOvUylOYDFmCjHbIF8F/cPtTvRX4pqOvNosj1VaU0o=
Subject key identifier: ED:9B:3E:DF:6B:4D:50:52:27:DD:0A:A4:63:9C:C8:31:4B:2F:25:A6
Authority key identifier: 05:F0:8B:74:F5:11:7E:D3:80:72:3D:9E:42:9E:CB:4A:A5:38:52:5A
Certificate issuer: /CN=05f08b74f5117ed380723d9e429ecb4aa538525a
Certificate serial: 019CE85C286FA5EB41170029C2E9362E9A1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
Manifest number: 186A
Signing time: Fri 13 Mar 2026 18:01:19 +0000
Manifest this update: Fri 13 Mar 2026 18:01:19 +0000
Manifest next update: Sat 14 Mar 2026 18:01:19 +0000
Files and hashes: 1: BfCLdPURftOAcj2eQp7LSqU4Ulo.crl (hash: 7DgtfV4P79r5o+BjUcp8ka5Nc2QYlcsmiDuMUeBxU5M=)
2: oq7B2jOnBFc5xmS1hAmRi3Iizs8.roa (hash: cJWrmd7TH+I8F5geYRcuRFFIpG0qtCHY7V96oxqqLg4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 18:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e8:5c:28:6f:a5:eb:41:17:00:29:c2:e9:36:2e:9a:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f08b74f5117ed380723d9e429ecb4aa538525a
Validity
Not Before: Mar 13 18:01:19 2026 GMT
Not After : Mar 14 18:01:19 2026 GMT
Subject: CN=ed9b3edf6b4d505227dd0aa4639cc8314b2f25a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:8a:ec:30:27:73:47:a6:1b:96:e0:b3:eb:c2:
ad:e8:db:fc:05:36:cd:0e:2f:ca:81:fb:12:81:cc:
6b:be:06:6d:3f:60:54:8f:d4:52:f2:8b:aa:2b:a1:
66:69:94:40:52:33:ed:53:5b:81:93:8f:2a:89:ff:
c7:40:25:82:44:37:b6:c2:be:2b:e7:81:3b:68:ef:
4d:ac:d1:49:b2:e8:e2:cd:b2:54:02:6c:e5:8a:08:
ba:8a:0a:fc:3c:2d:f2:e6:5e:5d:19:50:10:47:10:
74:b2:b9:8f:52:30:51:9a:19:4f:0d:3c:3b:15:ec:
40:01:a1:78:82:82:88:42:1c:88:d1:d0:86:74:c0:
3e:19:de:6e:78:89:29:f8:c5:b2:a4:04:55:fb:52:
18:3b:21:5a:04:5d:e6:07:c0:ee:d8:8f:41:64:46:
eb:dd:e6:dd:69:35:28:69:1f:f2:89:8e:08:1f:c6:
1d:62:d9:70:e7:5d:93:06:24:e1:fd:1b:32:f8:67:
d5:74:38:4b:06:53:59:9c:30:b2:58:94:bd:4e:e9:
be:d6:f0:bf:5e:3b:43:3c:51:e9:0d:df:84:de:ca:
e9:1f:e0:78:fe:44:99:18:ec:69:af:b8:55:f8:2c:
4a:cd:af:19:66:ce:49:05:31:8e:96:8d:c3:33:dd:
6f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:9B:3E:DF:6B:4D:50:52:27:DD:0A:A4:63:9C:C8:31:4B:2F:25:A6
X509v3 Authority Key Identifier:
keyid:05:F0:8B:74:F5:11:7E:D3:80:72:3D:9E:42:9E:CB:4A:A5:38:52:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:75:cb:0d:0f:c5:28:af:60:c4:39:4a:4c:af:0e:35:9c:83:
32:4c:70:a7:c1:f6:6e:1f:af:5a:a6:7d:98:b0:43:ac:0a:0d:
1d:d7:87:2b:3b:9b:be:af:8e:8c:e0:65:1d:e9:d0:f7:10:8d:
a1:f6:bc:9e:8a:85:cb:21:40:40:25:dc:2d:7a:5b:6d:c8:58:
65:db:30:3e:a9:72:67:1c:c5:9b:75:6b:f6:6d:67:8f:4d:2b:
39:53:a7:7f:09:d0:77:49:b2:a2:cd:0e:74:46:ae:da:6c:26:
4e:f4:a2:e8:ba:0a:94:3f:ab:58:40:6c:1d:9f:cd:92:27:d9:
34:99:7d:5d:79:84:06:bd:59:d4:0f:7d:cb:16:5d:90:1b:59:
f8:50:52:8d:0f:ee:63:78:4b:38:e7:c6:de:15:64:61:e3:20:
9f:a0:bb:fa:6e:b6:56:cf:0b:d6:85:95:f1:69:c2:91:10:d5:
60:23:3a:07:0a:1b:80:2f:cf:85:3d:a6:b8:01:1c:14:57:ed:
54:90:0e:fb:bc:2d:e4:5d:de:c5:4a:21:b0:ae:75:2d:5d:c5:
d7:20:fe:6d:67:5b:85:9c:e6:cc:1a:c5:d4:37:a9:28:a4:e8:
92:90:fd:07:e8:cb:f1:e3:48:39:74:9d:bd:76:64:fe:b1:d2:
a6:3b:f2:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 21:33:30 2026 by rpki-client