Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
File: BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft (raw, json)
Hash identifier: tqxo+TFNa9GlprGashbiaismCY/KjpniLOVIzFhknsY=
Subject key identifier: 74:E0:35:F9:D6:96:6F:ED:65:1E:E4:3D:82:3F:2C:93:05:1E:EF:DC
Authority key identifier: 04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
Certificate issuer: /CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Certificate serial: 019E2F975C3504655D8772C5A4A77B9D0B14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
Manifest number: 0DF4
Signing time: Sat 16 May 2026 07:01:49 +0000
Manifest this update: Sat 16 May 2026 07:01:49 +0000
Manifest next update: Sun 17 May 2026 07:01:49 +0000
Files and hashes: 1: BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl (hash: CqFN6SSScxkSZQjbQnWCms+BzwiJrUlX8UsOyfAOLHU=)
2: we5jn01Cx98OQV43_9pqKOC3HXA.roa (hash: s+Xsw2hTwbHWmllV0HmHTjp9ztGy7bm5p6ULJLREmd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 07:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:97:5c:35:04:65:5d:87:72:c5:a4:a7:7b:9d:0b:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Validity
Not Before: May 16 07:01:49 2026 GMT
Not After : May 17 07:01:49 2026 GMT
Subject: CN=74e035f9d6966fed651ee43d823f2c93051eefdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:eb:b2:05:c6:68:b7:2c:fe:f2:59:52:f8:87:
df:31:36:c6:f0:97:1a:5b:21:0c:c4:8c:90:95:a6:
dd:06:d5:a1:7a:d6:36:5f:83:2c:6a:38:e0:9d:cc:
a2:85:c8:b6:22:f6:18:18:f4:ce:fe:43:cd:f9:ac:
9f:f9:be:8d:97:e2:13:af:71:5f:66:11:fc:66:06:
aa:88:c5:73:58:6a:98:e0:04:4b:28:09:bb:30:a0:
5d:c4:b1:6c:1a:df:ec:2b:83:0d:c7:92:aa:2f:28:
c5:d9:16:4c:de:80:6e:13:19:ca:b4:d7:5f:2d:7c:
aa:4c:8d:df:00:5a:e3:4c:90:08:55:11:bc:95:e4:
b4:be:db:50:47:08:46:72:5f:55:cc:de:77:bc:d2:
7c:79:d0:1c:af:04:82:f3:d5:0d:75:12:db:25:81:
9d:35:cc:e7:f3:f2:0c:3b:29:3d:60:0c:3c:88:2e:
4f:31:8c:71:89:66:fe:ee:eb:f6:34:a0:33:0a:0e:
39:8b:1b:82:2e:ef:61:9f:10:47:72:b9:72:55:5a:
1b:ad:be:7c:57:e2:06:7f:88:7b:fe:92:47:43:b9:
59:e6:72:c1:ae:1e:8b:40:35:0b:cf:e7:9d:f1:e4:
e8:57:b1:85:25:3b:32:55:34:2e:09:3b:82:62:7f:
6a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E0:35:F9:D6:96:6F:ED:65:1E:E4:3D:82:3F:2C:93:05:1E:EF:DC
X509v3 Authority Key Identifier:
keyid:04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:99:d9:0a:b0:d7:93:ad:88:c8:3e:12:31:34:d0:ef:bd:db:
bf:01:49:9c:4d:91:2b:c4:87:55:85:39:dc:b9:b2:40:3e:6c:
c8:3e:9a:ca:40:2b:d6:b8:80:0e:62:9d:22:dc:b2:a7:76:30:
9f:79:6b:bd:cb:02:b2:c6:2b:60:14:bc:87:b2:e3:22:f8:bb:
d6:10:80:e5:0a:32:50:93:06:dd:0d:aa:44:0a:b6:7c:37:4d:
13:51:b2:b1:50:23:44:36:96:24:94:79:bb:2d:b0:27:b6:8e:
5f:29:b8:dd:35:74:91:eb:75:ad:8b:fa:b7:07:be:e4:91:4e:
54:41:50:3d:ef:bf:e2:c6:fb:e8:53:f4:42:1a:2c:d1:53:52:
67:38:19:7a:7e:7d:1a:b5:88:b0:38:76:45:b3:5d:05:aa:12:
34:95:8e:37:02:38:e2:b8:85:f4:dd:d2:b5:ae:98:92:07:6f:
84:ac:10:02:69:9b:9e:bf:bd:a4:45:1f:d7:e9:d5:00:1c:45:
3f:95:87:7a:6d:bf:52:c1:5e:a3:ac:62:e5:c7:6d:dc:6b:09:
31:23:d2:a4:b3:6c:65:8b:58:52:b9:83:c3:5f:2e:82:e3:33:
8e:60:85:49:1a:75:d4:61:0f:82:42:e5:9c:83:3c:b4:63:f6:
b2:95:1f:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:39:41 2026 by rpki-client