Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
File: BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft (raw, json)
Hash identifier: rFWcTViMm7rk0se/ZU6NSKkAznyCgBCYppc5Sixz9R4=
Subject key identifier: 50:BA:37:EB:35:C5:26:27:DB:19:3D:9F:5E:6E:64:18:28:04:9A:9F
Authority key identifier: 04:B6:1E:51:40:CD:89:84:F7:FE:20:10:DB:59:EB:DB:2F:3E:D4:E6
Certificate issuer: /CN=04b61e5140cd8984f7fe2010db59ebdb2f3ed4e6
Certificate serial: 019D3A53BDB88AC895AFA9A68B9C975996E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
Manifest number: 0EE8
Signing time: Sun 29 Mar 2026 16:00:59 +0000
Manifest this update: Sun 29 Mar 2026 16:00:59 +0000
Manifest next update: Mon 30 Mar 2026 16:00:59 +0000
Files and hashes: 1: BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl (hash: dkKyu/5dObny9xZlZOibiPjazpb01H9CSXRU02uzHxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:53:bd:b8:8a:c8:95:af:a9:a6:8b:9c:97:59:96:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04b61e5140cd8984f7fe2010db59ebdb2f3ed4e6
Validity
Not Before: Mar 29 16:00:59 2026 GMT
Not After : Mar 30 16:00:59 2026 GMT
Subject: CN=50ba37eb35c52627db193d9f5e6e641828049a9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5f:95:79:a0:98:c1:7b:ca:e0:5d:db:e5:45:
f3:95:44:f7:f6:42:db:46:6a:db:0a:a5:46:76:5d:
6d:ff:2d:5b:79:1d:1e:fd:c6:66:81:fc:a1:ae:3d:
eb:26:52:4b:1a:c7:7a:36:c0:f4:44:39:88:65:77:
2b:2f:8f:5f:62:dc:4d:57:b5:27:f7:29:8a:48:d6:
3a:fc:75:3e:30:0a:ff:47:a0:fb:3b:aa:d5:76:80:
3e:3f:0c:cb:3c:61:e8:1b:a3:60:36:02:0e:73:94:
82:cb:c8:cf:87:15:fb:85:3f:e7:62:75:d8:63:7d:
a2:6d:3b:b5:b7:e1:c9:f0:a6:a8:c5:ab:9e:e0:10:
00:2c:f0:05:e9:24:4a:e5:55:a5:c0:57:3a:47:c7:
96:3e:0a:70:24:75:60:3e:a0:bf:2f:59:70:a8:4c:
2c:71:fd:52:89:8f:4f:74:5b:b5:bf:85:6e:a2:da:
87:1d:84:98:39:59:0f:04:11:9a:4c:c8:6b:79:bd:
8a:65:b1:7a:0b:89:b8:83:fb:59:d5:c3:d1:d9:c2:
4b:7c:05:91:7b:e8:bf:de:64:d3:e7:dc:82:43:e2:
33:d1:34:7c:6b:e2:71:07:af:5d:ad:ab:10:e1:f9:
84:36:e8:d6:d3:e5:d7:38:81:9a:2e:e5:b9:4a:cf:
5c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:BA:37:EB:35:C5:26:27:DB:19:3D:9F:5E:6E:64:18:28:04:9A:9F
X509v3 Authority Key Identifier:
keyid:04:B6:1E:51:40:CD:89:84:F7:FE:20:10:DB:59:EB:DB:2F:3E:D4:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:92:7b:08:17:ea:fb:97:02:0a:a2:03:4b:8c:4a:d3:e0:c2:
d6:46:12:bd:c3:30:e4:9e:eb:12:6c:0a:6b:8b:b1:6e:53:90:
c7:3c:e8:09:b1:3d:72:5c:d4:cb:a7:34:7d:04:3d:f1:e4:75:
d2:6e:2c:c4:a1:9f:d1:b2:0f:22:f6:c7:00:1d:b7:01:23:8a:
19:c5:fa:a6:12:17:93:a6:09:fc:1e:ac:cc:af:e6:e6:52:79:
a9:51:f5:68:94:42:74:02:01:16:82:5f:e9:6b:10:a7:56:cf:
61:cb:81:8b:8b:f3:04:ff:a8:c5:25:3a:c7:87:1b:a1:73:3b:
73:7a:bd:57:e0:be:24:a1:8e:d3:22:5c:44:64:25:c2:3b:9f:
b6:fe:99:b7:ec:2d:26:c1:d4:a7:fa:16:23:fb:a5:d8:48:96:
f8:fe:5e:05:9c:58:52:04:04:ff:e9:2b:a3:50:60:76:84:fc:
8f:46:37:60:eb:f1:e2:76:22:3f:92:c0:93:70:5f:9a:65:56:
ec:be:22:b1:99:e6:2f:c4:97:c0:f9:de:cc:4e:e2:9f:a4:a9:
b6:09:a0:d0:84:8c:e1:d1:e9:2f:0a:36:36:d0:3c:a4:7b:ae:
f4:eb:fa:46:15:f3:80:2c:c2:1a:b8:6b:ab:52:68:8f:97:87:
c8:71:80:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 21:11:16 2026 by rpki-client