Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.mft
File: BpilU2SQ1wyON7dvMtpoTxIp2bo.mft (raw, json)
Hash identifier: oKRmeRU8yoUbicF7JniMv89JDmWriVIT/PLQPzAEED4=
Subject key identifier: ED:33:26:39:05:EC:16:F7:71:0C:B2:58:DF:7D:8F:28:AC:E9:E6:DE
Authority key identifier: 06:98:A5:53:64:90:D7:0C:8E:37:B7:6F:32:DA:68:4F:12:29:D9:BA
Certificate issuer: /CN=0698a5536490d70c8e37b76f32da684f1229d9ba
Certificate serial: 019D390A63CA05A5CBFE882CEB52BB7C0EB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpilU2SQ1wyON7dvMtpoTxIp2bo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.mft
Manifest number: 0345
Signing time: Sun 29 Mar 2026 10:01:15 +0000
Manifest this update: Sun 29 Mar 2026 10:01:15 +0000
Manifest next update: Mon 30 Mar 2026 10:01:15 +0000
Files and hashes: 1: BpilU2SQ1wyON7dvMtpoTxIp2bo.crl (hash: XUtc9M0rvy9YVigDoQS4ATLNawoN9hU/o/ltoYnOiFk=)
2: L8utE5ZsoaEfVCAqlDJmPEjxUzc.roa (hash: CUEIlVOGs6w2qHtqNYoZZsm4LrWBVQZLAj9RVsaO+ww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BpilU2SQ1wyON7dvMtpoTxIp2bo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:63:ca:05:a5:cb:fe:88:2c:eb:52:bb:7c:0e:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0698a5536490d70c8e37b76f32da684f1229d9ba
Validity
Not Before: Mar 29 10:01:15 2026 GMT
Not After : Mar 30 10:01:15 2026 GMT
Subject: CN=ed33263905ec16f7710cb258df7d8f28ace9e6de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3d:ef:f9:cd:24:b9:b3:83:c0:0b:47:55:23:
f9:9c:6a:13:a1:2d:c5:93:b3:78:05:4c:bd:2d:8c:
41:39:fb:c0:0f:e8:df:00:34:0c:8d:07:2a:8a:b4:
97:5f:38:d5:de:1a:04:9f:6d:94:23:80:ad:5e:81:
e3:f0:e6:84:d9:a1:d3:22:91:57:f9:8f:c0:72:3a:
98:75:68:36:35:08:a0:3c:e2:4b:f6:3c:18:17:9d:
2a:32:2e:4d:72:b8:9b:8d:f1:d9:41:6f:df:92:f3:
29:93:9e:cb:b3:9c:ae:c8:bd:8c:dc:0f:55:4a:75:
47:fe:1d:0c:38:dc:88:37:85:3c:c4:67:eb:09:03:
93:c0:a4:24:dd:97:15:71:dc:2b:e1:dc:a1:d4:f1:
c0:e7:86:2e:ce:8b:f0:ab:af:d2:eb:37:f2:49:6c:
fb:ed:5a:23:6d:b8:52:0c:d4:d5:30:54:da:34:38:
78:4b:76:f0:a2:20:ab:a2:20:31:5f:96:9a:fa:8a:
0a:ac:f8:d5:2f:87:42:82:85:cb:fe:67:94:1a:92:
e6:49:43:e4:b9:7a:6e:cc:0b:98:66:2c:c3:33:56:
a8:2f:46:41:9b:4c:fd:c3:55:be:a4:71:0b:73:f0:
39:d6:96:6e:a1:23:8a:09:f6:84:67:05:a5:bf:02:
cd:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:33:26:39:05:EC:16:F7:71:0C:B2:58:DF:7D:8F:28:AC:E9:E6:DE
X509v3 Authority Key Identifier:
keyid:06:98:A5:53:64:90:D7:0C:8E:37:B7:6F:32:DA:68:4F:12:29:D9:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpilU2SQ1wyON7dvMtpoTxIp2bo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d31361-096d-4a8d-ab4f-c3dc739425a1/1/BpilU2SQ1wyON7dvMtpoTxIp2bo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:e9:e2:7d:95:46:d2:39:f4:5b:c0:0b:ca:a7:ad:e3:63:f2:
ee:13:10:ec:d9:5b:5a:73:db:09:ac:e0:f0:c5:55:1b:2e:da:
e9:e7:ae:37:cb:bb:b7:46:40:fa:37:24:d2:70:99:14:78:d2:
06:9a:98:2d:24:d3:2a:0c:19:ac:07:6c:65:24:d9:39:b9:cf:
1d:14:97:c6:31:b6:22:01:db:c4:2f:e6:e6:ed:06:d2:52:ec:
fd:13:58:7a:a5:fb:a3:95:83:5b:04:e8:1b:b4:06:6c:fd:12:
6e:dc:69:c0:52:d5:b3:fb:86:97:2e:66:8b:11:d4:0e:10:2d:
22:ba:32:9d:ab:ef:b7:9d:43:8a:76:26:a2:7f:77:03:f4:5f:
f5:43:b3:62:00:10:aa:53:27:90:ff:c8:d4:ec:70:09:86:ab:
34:ea:61:83:0a:f7:01:f3:6f:2f:51:82:da:67:ea:e5:bc:b0:
e1:73:27:7a:a3:a7:1b:e7:13:d7:ab:4b:05:7a:41:c6:12:21:
34:f5:e7:c0:92:7d:20:8c:47:28:e9:35:62:66:4f:aa:ef:c7:
cb:38:bb:39:02:da:ba:e6:d0:01:d0:1b:2f:52:1e:10:4b:59:
67:45:9f:bc:3a:60:25:74:e5:55:6a:eb:bc:19:c7:c2:ed:fc:
68:31:93:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:59:16 2026 by rpki-client