Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
File: BpLF8WMTZTQlvEZxBYdeOil8_5s.mft (raw, json)
Hash identifier: bXyR3ZFGr07Z71B23C/bHQ19XTKZMZMGZ/PD3ajqviU=
Subject key identifier: A1:79:17:7F:C1:56:20:08:5D:DE:26:2A:41:23:CC:F4:EA:25:A0:E9
Authority key identifier: 06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
Certificate issuer: /CN=0692c5f16313653425bc467105875e3a297cff9b
Certificate serial: 019D3AC228C9BE7BE228FEA4CD47106007FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
Manifest number: 0B67
Signing time: Sun 29 Mar 2026 18:01:36 +0000
Manifest this update: Sun 29 Mar 2026 18:01:36 +0000
Manifest next update: Mon 30 Mar 2026 18:01:36 +0000
Files and hashes: 1: BpLF8WMTZTQlvEZxBYdeOil8_5s.crl (hash: 9IdZimKWTDayJjNGAtDQfSMdh0kzPZjqmaHL325laL0=)
2: E4C4dYvzCYVEMlAq5xcXmk6xtDA.roa (hash: EWnlZAeMYxnLcHv2llGSw3rkGlFbzENleIyYQktLoeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:c2:28:c9:be:7b:e2:28:fe:a4:cd:47:10:60:07:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0692c5f16313653425bc467105875e3a297cff9b
Validity
Not Before: Mar 29 18:01:36 2026 GMT
Not After : Mar 30 18:01:36 2026 GMT
Subject: CN=a179177fc15620085dde262a4123ccf4ea25a0e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c6:c7:6b:8f:f1:f9:4b:30:f8:a9:48:76:51:
55:9e:d3:00:f6:d2:cd:74:1c:c2:b2:37:92:50:8d:
97:6a:99:a9:7c:0c:33:a6:b3:f5:23:4f:54:92:32:
4c:cb:9c:67:d7:fe:73:18:1d:f3:50:e6:3e:dc:0a:
8f:c1:b4:32:c9:08:0b:06:b3:a6:9f:a0:54:03:0d:
df:c2:f0:7c:07:0d:ac:28:ea:1e:a8:19:02:a8:45:
95:5d:cd:6c:cd:dd:5b:3d:c6:c0:0f:ff:14:91:07:
d1:c9:53:cf:c4:5f:05:80:22:71:0a:cb:d4:36:d8:
6c:b7:92:7f:4b:d5:f9:18:1a:ac:57:35:bf:40:71:
0b:89:0c:ed:7c:97:6d:37:22:a4:64:d9:ec:cd:31:
e7:f6:ec:53:50:49:09:42:d9:a0:d5:34:f0:20:4d:
06:c3:98:a9:9d:b1:86:ea:5e:73:e5:0c:ac:14:fc:
0f:2a:4a:aa:7b:53:21:ab:ee:4c:c4:51:e4:c1:b4:
38:45:0e:ac:2a:3c:f4:22:48:41:e7:1b:dc:63:b1:
d7:e5:82:48:d2:b7:cc:93:4a:df:33:af:ca:99:a8:
6b:f7:c4:c6:09:c1:a1:09:6e:4f:7b:c1:d1:ac:37:
3d:e9:ab:40:0b:f1:e9:e2:72:d3:3b:8c:92:39:a4:
a6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:79:17:7F:C1:56:20:08:5D:DE:26:2A:41:23:CC:F4:EA:25:A0:E9
X509v3 Authority Key Identifier:
keyid:06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:88:0e:54:bc:c3:40:19:96:bb:68:d5:f0:ef:14:8a:5c:de:
91:a6:b0:7b:ad:8b:84:58:7d:80:0f:bf:76:ff:f6:a0:6a:d0:
00:a0:1e:cf:66:83:2b:1c:4c:de:25:76:a3:98:34:78:05:0f:
49:e9:7b:c0:58:70:cd:c4:7b:03:03:12:6f:45:11:46:74:2d:
37:91:fd:5f:3e:49:74:b3:25:90:93:96:53:e7:9d:91:33:51:
63:2f:a3:36:18:98:73:13:85:6f:99:73:ca:3e:f8:6e:db:f5:
b9:cd:2d:40:33:64:9a:62:12:6e:a9:25:89:f3:53:aa:a5:c3:
4b:ea:85:d2:33:80:6d:bf:80:5c:23:a3:86:12:e4:db:e4:69:
8e:42:41:01:d1:14:0c:46:13:7e:0e:cb:7f:40:7c:9b:a9:4a:
f5:c5:8f:df:7f:ad:84:70:de:6a:cc:c9:1b:24:e6:7e:63:38:
70:6d:a9:63:67:93:56:c6:6a:b3:a4:92:52:c1:9b:d0:14:c5:
52:73:43:5a:9a:d9:e6:3e:a5:f1:3b:62:27:ed:26:2f:6c:21:
d9:c0:23:2d:40:8a:f9:dd:13:72:f0:ca:e2:0b:db:80:f3:93:
a7:c9:a4:dc:b8:2d:78:c2:50:80:b9:a7:79:8f:74:ac:14:0d:
e7:83:a1:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:00:24 2026 by rpki-client