Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
File: BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft (raw, json)
Hash identifier: Tw+IbA0+GjqtAeoZjimhjxLyKjDRg4VupSYibYSgPtc=
Subject key identifier: 23:08:28:78:9B:C4:49:8A:66:8B:E3:3C:AC:98:BB:8F:47:C7:3C:58
Authority key identifier: 04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
Certificate issuer: /CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Certificate serial: 019F19433D204A28F8AAE57041EB65F073A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
Manifest number: 0E6D
Signing time: Tue 30 Jun 2026 16:01:04 +0000
Manifest this update: Tue 30 Jun 2026 16:01:04 +0000
Manifest next update: Wed 01 Jul 2026 16:01:04 +0000
Files and hashes: 1: BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl (hash: ORkryPYoAmYwoxnxHXLd+tWOfRXg1ro/PWtlmEDD6lQ=)
2: we5jn01Cx98OQV43_9pqKOC3HXA.roa (hash: s+Xsw2hTwbHWmllV0HmHTjp9ztGy7bm5p6ULJLREmd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:43:3d:20:4a:28:f8:aa:e5:70:41:eb:65:f0:73:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Validity
Not Before: Jun 30 16:01:04 2026 GMT
Not After : Jul 1 16:01:04 2026 GMT
Subject: CN=230828789bc4498a668be33cac98bb8f47c73c58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6d:61:bd:0b:20:d2:ee:91:6c:14:9c:a7:71:
e6:b5:97:75:65:b2:be:c7:ba:84:23:3d:9e:96:32:
63:c4:19:b3:da:8c:d2:6e:cf:b0:73:16:08:d1:55:
40:bf:92:2d:4d:26:f8:8c:03:97:16:e8:1e:4b:cd:
13:8c:41:9a:48:5b:c4:f2:44:31:d5:73:29:20:aa:
76:18:e5:ee:b9:5d:cc:d5:db:0f:c8:2c:a9:ef:77:
e7:da:20:cc:8a:27:4f:25:f9:09:1a:09:3e:74:57:
06:29:c9:7f:15:73:0c:66:45:db:74:31:58:42:3a:
9a:67:5b:0c:31:12:54:fb:5b:7b:2a:12:83:2b:d1:
40:46:d1:08:c1:39:b0:bf:a5:68:02:e3:1a:34:9f:
52:c0:b2:5b:57:b1:36:76:20:98:69:9d:58:d4:a0:
00:df:02:51:05:3c:6b:47:5e:62:ab:9f:f8:7c:8c:
bd:53:19:d4:6e:2f:a1:4a:cf:d1:e5:cf:05:c7:c0:
93:85:51:e5:4d:3f:6c:cc:17:2c:23:d9:af:97:d4:
a5:b1:de:27:ae:a7:0d:f0:77:fe:c8:77:fb:5b:26:
d7:8b:5c:74:f4:16:dd:c6:29:32:61:93:eb:ab:4d:
37:14:6d:cd:7a:40:e1:80:86:2c:a8:e4:10:31:8d:
c3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:08:28:78:9B:C4:49:8A:66:8B:E3:3C:AC:98:BB:8F:47:C7:3C:58
X509v3 Authority Key Identifier:
keyid:04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:df:12:5c:13:e1:a6:13:bd:2b:5f:cf:35:76:f9:f1:37:72:
90:4d:30:99:3e:6a:c4:da:dd:4b:b7:05:bc:83:1f:91:37:d9:
45:c0:cf:72:c7:d5:19:47:2e:1f:d4:be:7f:8a:de:8c:47:58:
ca:93:c0:49:81:43:ca:ff:0e:19:6e:f7:08:a0:2a:82:e4:be:
8d:2f:9c:11:a6:70:f4:ac:f5:c0:79:38:4d:66:87:8f:61:3b:
d3:61:60:6d:98:71:d3:dd:07:74:29:c2:0d:e5:3b:3e:9e:bb:
a6:3b:75:a6:7d:6c:f2:58:c1:2c:3a:71:d8:73:25:53:b4:f3:
93:22:8d:8b:3d:f5:58:8f:00:ab:7d:e1:8c:60:d0:e5:23:b4:
ab:2f:e5:65:e9:f3:04:bb:21:db:80:64:bc:00:b2:63:dd:52:
a5:01:95:d2:55:84:46:54:01:69:6f:c1:25:85:b9:10:ac:b8:
bf:52:f4:6a:48:88:01:ad:a8:fb:c6:ff:53:d8:98:b7:05:4a:
7e:2c:07:4e:db:d3:ca:94:51:9f:38:63:53:0a:8f:e4:5e:0e:
91:f8:a4:31:a4:c1:d7:50:11:7e:ee:1e:85:8a:70:60:3d:c6:
ce:37:77:f1:88:2a:f5:aa:35:08:99:0b:d9:51:60:9e:2e:6f:
42:18:41:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:27 2026 by rpki-client