Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
File: BpLF8WMTZTQlvEZxBYdeOil8_5s.mft (raw, json)
Hash identifier: +J+sbaIinK+5noUsrPsERGKgoEg/iLUOL1c5XiNVyEc=
Subject key identifier: 0C:0E:E3:7D:06:E3:DE:D2:DC:F8:81:3A:61:35:31:6B:25:21:F8:1E
Authority key identifier: 06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
Certificate issuer: /CN=0692c5f16313653425bc467105875e3a297cff9b
Certificate serial: 019F17F92A1700DB791FD069C8902185BD82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
Manifest number: 0C5F
Signing time: Tue 30 Jun 2026 10:00:32 +0000
Manifest this update: Tue 30 Jun 2026 10:00:32 +0000
Manifest next update: Wed 01 Jul 2026 10:00:32 +0000
Files and hashes: 1: BpLF8WMTZTQlvEZxBYdeOil8_5s.crl (hash: xwMPutVshNnRkg29TIDvw3BhboDlXDbDWCgmf7l9sAM=)
2: E4C4dYvzCYVEMlAq5xcXmk6xtDA.roa (hash: EWnlZAeMYxnLcHv2llGSw3rkGlFbzENleIyYQktLoeo=)
3: nOa638g_V2wtGEyTH1US4Mko4Q8.roa (hash: hjAi2zRBuemAe5qpNuCZhFQgwOmDpoyFiA63zs6Mg7I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 10:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:f9:2a:17:00:db:79:1f:d0:69:c8:90:21:85:bd:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0692c5f16313653425bc467105875e3a297cff9b
Validity
Not Before: Jun 30 10:00:32 2026 GMT
Not After : Jul 1 10:00:32 2026 GMT
Subject: CN=0c0ee37d06e3ded2dcf8813a6135316b2521f81e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:fc:20:45:3b:36:a2:91:e8:51:67:05:64:b4:
ce:47:2b:2b:72:cf:e3:bb:a7:88:ac:84:40:10:77:
6d:ba:98:ab:e5:a2:e4:35:2f:33:52:19:08:fa:32:
0f:7e:61:e3:e0:78:02:6f:53:a4:5b:6c:b3:ba:85:
42:1e:32:50:a1:e3:6f:d9:7d:da:5b:78:22:97:a3:
46:6e:0a:65:fd:87:17:af:96:fc:a2:63:8a:ab:2f:
39:20:26:8d:e3:3d:74:11:af:0e:2e:08:a8:32:f5:
1d:6c:f7:52:6f:32:06:98:04:4b:91:ea:7a:30:3a:
6c:cc:22:e9:09:8e:2f:68:75:e7:f0:eb:98:28:b8:
46:2c:ee:73:0a:61:e4:ab:25:db:82:43:50:17:1b:
d9:b0:cf:ba:b6:98:15:73:88:09:db:4f:4a:89:43:
39:6f:5b:0e:9f:9b:b2:87:6b:e1:ba:01:21:29:ad:
52:4d:37:5d:11:35:9e:18:18:d2:56:2f:40:2d:62:
94:2c:29:b0:b6:70:d5:eb:f8:28:d8:92:61:56:fd:
50:3d:b4:d3:ad:d0:39:e4:ef:e6:8d:fe:6e:bc:c5:
e8:a9:27:8f:52:eb:cb:c7:f8:73:81:c9:d6:22:db:
7d:d8:6d:66:ce:10:16:10:fd:b0:67:4f:79:58:c0:
69:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:0E:E3:7D:06:E3:DE:D2:DC:F8:81:3A:61:35:31:6B:25:21:F8:1E
X509v3 Authority Key Identifier:
keyid:06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:f4:41:bd:f1:c0:16:db:8e:89:dd:33:fd:0d:c2:9b:8d:59:
3d:42:7f:24:d4:1f:76:85:14:e2:1b:8e:eb:86:69:35:cd:89:
09:81:6e:06:2c:1c:f8:ee:69:14:8b:ab:2c:b4:e2:9a:7d:9c:
25:85:ea:2a:d7:95:30:a8:3d:59:25:c4:a4:57:b4:79:5b:6a:
0a:99:b2:dd:56:74:96:49:27:22:0b:b9:ab:df:64:07:cd:3c:
bc:76:85:d0:c7:e9:58:d2:c3:fb:8f:2b:58:f3:4c:97:12:02:
a9:10:2d:09:e0:b9:28:02:a5:31:24:a8:46:a2:5d:6a:0a:c4:
53:b6:29:9d:a2:0f:ac:80:56:af:6e:3a:6f:45:b5:ae:f4:e0:
5a:29:ac:eb:c7:de:f9:b6:99:62:f1:c3:8f:79:30:6c:ae:f8:
f8:01:68:eb:aa:1c:71:a2:85:b1:ca:f6:2b:b5:47:a7:25:55:
21:18:c2:06:b1:c4:8e:4b:ab:54:64:cc:1e:fa:48:d0:ef:17:
1e:1a:7d:75:4c:60:c9:cd:34:cb:0b:b9:55:5f:e6:42:aa:a4:
3d:05:00:a8:5c:a1:5f:dc:57:83:f0:62:ac:ba:f0:d9:e6:93:
9e:3b:a8:3c:1b:aa:96:a2:a9:c8:66:5e:d3:e4:2b:c8:10:66:
7e:6c:8b:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:15 2026 by rpki-client