Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
File: BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft (raw, json)
Hash identifier: gQeI1Sc5jTMGRjNguu6tBu+s6WMsEiuqKx7mkyMdOhg=
Subject key identifier: 8B:87:C0:16:7F:C0:B2:D5:BC:DF:6F:63:42:BF:8D:AB:CF:68:A7:3E
Authority key identifier: 04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
Certificate issuer: /CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Certificate serial: 019D38658ABD9B3E3C1B93C724F028B0523B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
Manifest number: 0D74
Signing time: Sun 29 Mar 2026 07:01:11 +0000
Manifest this update: Sun 29 Mar 2026 07:01:11 +0000
Manifest next update: Mon 30 Mar 2026 07:01:11 +0000
Files and hashes: 1: BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl (hash: uf2+qmB3RA1akhFm2ZYacePJmCP9sOIQJ6nOH77sUK0=)
2: we5jn01Cx98OQV43_9pqKOC3HXA.roa (hash: s+Xsw2hTwbHWmllV0HmHTjp9ztGy7bm5p6ULJLREmd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:8a:bd:9b:3e:3c:1b:93:c7:24:f0:28:b0:52:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Validity
Not Before: Mar 29 07:01:11 2026 GMT
Not After : Mar 30 07:01:11 2026 GMT
Subject: CN=8b87c0167fc0b2d5bcdf6f6342bf8dabcf68a73e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f6:2a:cf:43:d3:52:2e:9b:aa:9e:1d:0a:ac:
b4:d7:d1:5c:53:38:c2:11:5b:3f:9d:81:61:97:de:
22:1a:1f:d0:78:4a:a7:ef:78:b4:7a:2f:e5:ff:97:
73:65:f7:00:51:55:ee:d7:c0:da:2a:f2:47:18:2e:
b5:4d:39:c6:c5:62:ac:bc:f9:fb:6b:ca:71:89:0e:
21:2a:ef:62:89:d4:e9:c2:97:08:06:fd:a5:33:88:
53:d7:e4:6e:a2:d3:5f:1e:e5:63:dc:48:66:38:c6:
8e:db:85:d7:79:13:66:27:bd:4d:10:8f:e9:1b:e5:
b4:59:dc:c2:7f:6a:d9:60:ad:30:5a:89:ab:cd:48:
00:20:46:44:09:c7:60:be:12:86:7a:bc:38:d7:c7:
b6:ec:c6:a0:19:cd:53:d2:cb:a4:e9:05:33:97:c5:
4e:3d:70:32:b4:e9:51:9f:8e:77:98:fd:5e:12:96:
a5:51:43:ee:6a:c8:c3:2b:eb:70:cf:06:23:68:7c:
32:80:c0:11:b4:ab:dd:29:9d:66:41:cd:f2:b2:bb:
3c:0e:b1:ba:45:2f:9e:00:f8:ba:b1:a1:09:cb:cc:
8a:dd:ca:b7:59:c2:36:6d:6b:2a:b6:c4:76:b7:1b:
ee:d7:8d:af:ce:1a:24:52:b3:d0:c7:57:30:a7:25:
91:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:87:C0:16:7F:C0:B2:D5:BC:DF:6F:63:42:BF:8D:AB:CF:68:A7:3E
X509v3 Authority Key Identifier:
keyid:04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:5c:be:b8:25:0a:90:cf:16:70:8e:f6:77:f0:02:97:b5:1c:
e7:aa:81:6d:94:13:f3:20:56:e8:c8:a2:3c:de:34:42:b4:10:
bb:e0:c6:d6:18:2e:3e:0b:cd:96:e1:ae:66:09:60:e7:0a:44:
0d:91:4b:a0:56:e3:3b:b6:51:80:d6:8d:db:d8:54:f4:f1:75:
ac:5d:9c:47:90:e3:9f:ae:2b:d8:87:dc:75:3a:18:5b:27:a8:
4c:8e:18:48:8c:ff:51:14:96:82:9c:de:8e:41:dd:38:cc:0f:
8e:bc:8f:99:3a:c0:b0:ab:97:c2:33:6a:8d:17:75:ae:bf:d3:
31:93:ef:90:58:ea:e1:ff:5d:a7:60:f1:45:b3:43:28:52:a4:
a4:07:5a:6a:27:96:21:b0:54:bb:a6:be:00:31:98:46:9f:c3:
e4:dd:35:ac:bf:dc:1a:a8:fd:1f:bc:25:5e:c2:73:50:06:b7:
92:6a:3c:94:24:9c:57:fc:a1:eb:28:26:59:1c:30:7c:c7:d3:
05:49:6b:05:ec:78:b3:fb:74:32:81:ac:d7:98:d9:43:ce:57:
a1:8f:66:a3:f9:d6:c7:32:72:c0:a6:3e:9f:6d:83:0b:02:73:
f5:8d:58:39:a1:51:73:56:04:68:da:6f:c9:47:87:8f:52:55:
a5:6d:5b:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:05:55 2026 by rpki-client