Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
File: BpLF8WMTZTQlvEZxBYdeOil8_5s.mft (raw, json)
Hash identifier: UGznT1U8yT6dtmSHyuVaALSKmyRMUcquDsVfl6R87zo=
Subject key identifier: B2:63:28:2E:D9:E4:34:B0:B1:DC:04:4E:FC:31:87:B5:3B:59:4F:0C
Authority key identifier: 06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
Certificate issuer: /CN=0692c5f16313653425bc467105875e3a297cff9b
Certificate serial: 019CF9189C90D0C661D1C42CE0225315FE99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
Manifest number: 0B45
Signing time: Tue 17 Mar 2026 00:01:05 +0000
Manifest this update: Tue 17 Mar 2026 00:01:05 +0000
Manifest next update: Wed 18 Mar 2026 00:01:05 +0000
Files and hashes: 1: BpLF8WMTZTQlvEZxBYdeOil8_5s.crl (hash: ZrQmu5cipBAakGXlJgtHgHl2MHu40dncrKnBy+uZqOs=)
2: E4C4dYvzCYVEMlAq5xcXmk6xtDA.roa (hash: EWnlZAeMYxnLcHv2llGSw3rkGlFbzENleIyYQktLoeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Mar 2026 00:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f9:18:9c:90:d0:c6:61:d1:c4:2c:e0:22:53:15:fe:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0692c5f16313653425bc467105875e3a297cff9b
Validity
Not Before: Mar 17 00:01:05 2026 GMT
Not After : Mar 18 00:01:05 2026 GMT
Subject: CN=b263282ed9e434b0b1dc044efc3187b53b594f0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d8:45:7c:bb:e6:35:9d:de:df:f6:65:71:b5:
19:be:58:70:01:da:2f:1f:82:d1:e7:40:77:ec:c9:
b7:35:b4:44:45:ac:4e:08:60:02:29:36:e9:19:7d:
f6:75:85:a7:4c:12:7d:e2:e5:8a:6c:bc:6f:62:dd:
3e:a0:5b:d4:d3:72:c1:b0:f4:86:1d:78:9a:c8:96:
a0:c3:38:d5:ad:b3:c0:83:ce:e9:49:d1:e5:d9:da:
64:b5:9a:64:c3:82:f6:2e:6c:b6:f1:97:bb:d2:85:
98:b7:2f:02:44:11:3e:ce:ae:c9:6a:61:d6:ab:14:
fc:22:4c:fc:e2:e8:c8:ef:80:ed:9d:5c:98:7c:10:
8f:15:d4:3d:0d:cc:71:c8:e0:a1:2e:63:2a:21:04:
d7:ed:6e:71:e1:15:4a:c3:27:0a:a6:87:c5:9e:bd:
67:dc:bd:6e:5f:2c:5b:83:9d:ef:18:76:42:8b:4a:
69:2a:94:df:7e:d3:4a:1f:26:81:5d:6d:8c:32:3e:
44:e6:1c:79:73:a0:61:40:d2:d8:b3:50:13:1d:05:
df:9d:d7:c0:96:0b:70:66:54:75:71:16:ea:04:77:
58:d0:0a:70:83:1c:5e:aa:05:61:4f:39:1a:b4:11:
89:13:58:86:37:e5:23:63:a3:bb:b4:89:dc:80:69:
ee:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:63:28:2E:D9:E4:34:B0:B1:DC:04:4E:FC:31:87:B5:3B:59:4F:0C
X509v3 Authority Key Identifier:
keyid:06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:68:61:ee:16:9f:33:60:1d:7f:77:d3:ac:9c:20:67:79:64:
62:9f:a2:65:f9:50:42:c0:d3:f5:cb:2f:c3:b3:6f:38:f7:74:
1a:a3:56:c4:b8:c8:3f:8c:02:ee:b2:20:c2:bd:dd:10:19:20:
66:86:50:04:f0:81:77:ae:1c:2a:f0:09:9c:44:84:ac:05:bd:
ab:58:ba:f1:80:10:85:b8:03:dc:b3:ca:82:a2:a0:cc:a4:92:
14:42:7f:1d:ac:bb:4d:59:b7:65:02:b2:d8:dd:8c:9e:e7:e2:
50:03:c7:36:4e:af:d6:47:8f:f7:88:ec:b8:14:22:7c:33:d3:
34:7a:0c:0f:be:af:cc:02:50:84:07:f4:a4:5f:9b:72:45:3f:
35:b0:6e:b8:dc:59:b2:9c:ad:14:25:40:19:08:e5:3e:a3:f2:
33:54:af:c9:3e:2a:06:e0:45:be:60:89:9e:8a:fe:c6:78:f5:
35:90:5d:0e:1d:48:69:40:5c:65:b5:be:71:fa:b2:49:ec:77:
7f:65:3a:6e:f6:be:12:f3:4d:fb:a1:12:86:df:ad:14:9c:e9:
ae:38:f0:a4:39:1b:1d:ec:55:53:18:3a:a3:6c:04:0f:cf:49:
5a:2d:5c:70:b2:83:ba:80:e6:a1:31:66:49:b7:80:79:eb:f0:
2c:f6:26:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 17 05:59:39 2026 by rpki-client