Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.mft
File: BeHQfebxKPRpxMOzAorfjU034tk.mft (raw, json)
Hash identifier: Fn+hmnAqtnUR5tAHk9RvoeBR054tL1pktoeoqOPWJhA=
Subject key identifier: 19:37:B1:BC:D6:18:37:58:9F:1E:F7:EC:7C:2D:C3:76:F5:43:57:0A
Authority key identifier: 05:E1:D0:7D:E6:F1:28:F4:69:C4:C3:B3:02:8A:DF:8D:4D:37:E2:D9
Certificate issuer: /CN=05e1d07de6f128f469c4c3b3028adf8d4d37e2d9
Certificate serial: 019D37896E6925779ED1DCDED39331427153
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BeHQfebxKPRpxMOzAorfjU034tk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 03:00:46 +0000
Manifest this update: Sun 29 Mar 2026 03:00:46 +0000
Manifest next update: Mon 30 Mar 2026 03:00:46 +0000
Files and hashes: 1: BeHQfebxKPRpxMOzAorfjU034tk.crl (hash: 4QfoGhqoFjif1WlzoIcdEH5/Uo1npiK70bV4ZX546uw=)
2: VWPkAIzUwfjvAD2bE5V3R53e5mc.roa (hash: NXtM995z5bDkL83i01SCwz8vmeFlZ9WpRyVZ5adDGJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.mft
rsync://rpki.ripe.net/repository/DEFAULT/BeHQfebxKPRpxMOzAorfjU034tk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:6e:69:25:77:9e:d1:dc:de:d3:93:31:42:71:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05e1d07de6f128f469c4c3b3028adf8d4d37e2d9
Validity
Not Before: Mar 29 03:00:46 2026 GMT
Not After : Mar 30 03:00:46 2026 GMT
Subject: CN=1937b1bcd61837589f1ef7ec7c2dc376f543570a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:08:be:9a:64:33:9a:94:e1:f4:0c:9c:f2:92:
e2:e4:30:75:17:60:58:a8:06:a7:0d:cd:7b:45:ec:
f0:51:cf:3b:c4:78:56:c5:4f:8b:3d:fc:fe:04:55:
f0:9d:50:a3:97:d0:d6:f3:5d:9a:ff:6e:f1:45:18:
1f:d2:2c:b9:9b:c6:a8:3f:dd:ae:85:1f:48:05:70:
24:00:13:a6:95:1b:4a:a2:b9:26:50:68:db:41:e1:
da:ac:0f:0a:f4:c5:ff:4a:45:2e:f6:24:30:e3:26:
de:6c:a9:a3:7a:33:cc:0e:fd:c4:3d:7a:63:93:b0:
53:de:dd:5b:cb:51:2e:72:b5:5e:42:92:e5:1d:0d:
a9:fa:66:b7:b1:27:85:5d:ca:f9:8c:04:89:8d:4e:
af:a0:fb:79:d1:fd:de:7b:8d:ce:b4:c5:4d:f0:9a:
cd:f9:19:2c:4b:5c:18:17:0c:02:36:8a:8e:06:2b:
79:7c:82:36:50:60:62:0c:6b:0d:f6:05:1e:fc:25:
bc:48:7c:f8:7f:2b:68:e4:0c:ae:f8:08:6f:81:b2:
ce:97:06:f8:b0:41:c3:c2:0a:94:ea:54:b3:67:43:
82:c9:29:0d:ee:21:cf:1e:16:b2:30:62:80:83:3c:
f9:53:53:ff:96:7c:53:15:10:d7:85:1e:b4:e0:f5:
1d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:37:B1:BC:D6:18:37:58:9F:1E:F7:EC:7C:2D:C3:76:F5:43:57:0A
X509v3 Authority Key Identifier:
keyid:05:E1:D0:7D:E6:F1:28:F4:69:C4:C3:B3:02:8A:DF:8D:4D:37:E2:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BeHQfebxKPRpxMOzAorfjU034tk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:f9:9f:97:d8:4a:c2:1b:73:bc:c1:c0:c8:e5:f8:72:89:60:
60:5c:70:fe:87:93:aa:7a:84:e1:84:6a:b0:6b:50:39:a3:7d:
f9:04:7d:6c:8c:d1:78:3d:7d:d2:c0:9e:6a:85:65:ce:e8:a8:
4f:47:8d:51:17:17:5d:fb:78:a4:80:9a:36:f9:77:d7:ef:ff:
9d:ee:d0:3a:e3:f0:ee:80:b6:61:97:06:20:5a:2c:e0:06:50:
fc:ec:dd:ba:e8:33:23:59:6d:95:f9:e0:ea:ae:48:81:f5:e4:
a7:6d:24:1b:ee:a9:b0:32:b7:93:0e:99:c1:9e:c6:e8:c8:34:
f7:f0:a7:aa:61:52:59:77:7e:80:e0:19:d6:73:49:39:a8:5f:
9e:40:27:7a:86:3a:6e:da:32:03:67:01:5b:1f:05:08:d5:62:
7e:79:3f:e9:ea:67:5b:a6:79:13:ae:37:de:a8:c3:3d:62:00:
99:c5:64:07:69:6a:74:12:ca:15:3d:f6:9e:5c:37:7f:50:cd:
04:6a:8c:88:28:30:69:3a:45:20:be:77:5b:e3:b6:f0:5d:a5:
6c:79:d6:72:45:0d:92:40:03:48:fc:42:0e:9f:0c:a5:4f:08:
33:a2:25:e2:8e:fd:ca:89:f8:ca:18:87:4b:c9:86:f6:44:4a:
ae:78:40:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:52 2026 by rpki-client