Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
File: BAfWwkhET2tcN42w_-wPiZJW66M.mft (raw, json)
Hash identifier: oXyfCrJS+v8fSF2ZQyMT68/BBvpZsRDLw8tEZCk97wo=
Subject key identifier: 45:0F:A2:A6:20:C6:33:3F:AF:AE:E3:58:5C:DD:22:F4:4A:37:39:D0
Authority key identifier: 04:07:D6:C2:48:44:4F:6B:5C:37:8D:B0:FF:EC:0F:89:92:56:EB:A3
Certificate issuer: /CN=0407d6c248444f6b5c378db0ffec0f899256eba3
Certificate serial: 019E300574BB5389E2E41F23A15602686D66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
Manifest number: 0BE3
Signing time: Sat 16 May 2026 09:02:04 +0000
Manifest this update: Sat 16 May 2026 09:02:04 +0000
Manifest next update: Sun 17 May 2026 09:02:04 +0000
Files and hashes: 1: BAfWwkhET2tcN42w_-wPiZJW66M.crl (hash: YlxuMziW4DpeDR93ApTPzfjUYavofJHw6UpxubUUFZM=)
2: ty_z9F5F_f3BDR4ug7k-DhLsplA.roa (hash: aOrvfBJ3aIsm9B11VD3D1FcnWhZg8CPxpRJXlr1jiqM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:05:74:bb:53:89:e2:e4:1f:23:a1:56:02:68:6d:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0407d6c248444f6b5c378db0ffec0f899256eba3
Validity
Not Before: May 16 09:02:04 2026 GMT
Not After : May 17 09:02:04 2026 GMT
Subject: CN=450fa2a620c6333fafaee3585cdd22f44a3739d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:9e:a1:e1:ca:ef:0c:c3:4b:c8:b9:fc:5d:f6:
3d:1a:79:1c:52:8e:42:85:9c:0f:cc:69:3d:c5:2e:
dc:5f:2d:4d:8f:0c:03:bd:73:10:aa:ff:ac:13:41:
5a:72:c0:50:92:07:73:64:09:d3:91:fc:61:c5:3f:
3a:6c:b8:b3:77:23:38:8f:0d:99:43:28:c2:96:78:
7f:b2:d8:5c:91:03:46:3a:53:65:ec:c7:ca:85:32:
bc:15:2d:2a:e3:b9:22:ff:75:30:72:9e:86:4e:c6:
ab:38:13:f9:2c:13:52:5a:98:43:19:cf:88:45:44:
22:ce:a9:d6:04:cc:47:67:39:6a:a1:3c:93:aa:66:
cc:7f:e0:5c:54:99:56:95:03:e9:68:61:8a:68:d3:
f9:50:3e:7e:05:bb:61:9d:b0:dd:af:05:98:32:68:
80:ab:1d:05:97:6b:20:9c:7f:e8:40:9f:dd:28:d6:
6e:ba:65:fd:81:f5:1b:a7:4e:22:84:53:b4:86:b1:
45:60:6c:91:df:66:92:9e:b2:76:fd:01:04:09:81:
91:f9:4a:6a:12:f5:e8:93:8d:ed:8b:4e:d1:dc:db:
5d:2a:3a:3c:7d:f6:83:cc:f0:c8:da:cc:46:d5:1e:
52:81:68:fd:13:a3:f6:99:6c:97:5a:78:6c:7e:c3:
04:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:0F:A2:A6:20:C6:33:3F:AF:AE:E3:58:5C:DD:22:F4:4A:37:39:D0
X509v3 Authority Key Identifier:
keyid:04:07:D6:C2:48:44:4F:6B:5C:37:8D:B0:FF:EC:0F:89:92:56:EB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:d6:0c:a8:17:32:15:96:5f:a0:44:60:66:7f:82:41:b5:e4:
3b:17:3f:b0:aa:29:7b:17:23:53:97:95:86:ba:1e:ac:8c:e4:
6a:81:77:d3:7b:ea:b4:ff:3f:db:35:65:c6:e3:bc:f3:ae:68:
a3:8c:9f:7f:51:8d:3f:06:a8:bd:f0:1b:df:c8:ed:18:a5:08:
61:2c:e0:89:46:e2:37:96:96:d9:54:36:16:21:e8:2c:71:6d:
1c:60:14:40:62:76:d4:bc:f3:61:4a:55:ca:31:b6:eb:9c:aa:
5f:fe:81:c4:24:27:a8:04:61:ed:27:fe:8c:8a:8c:bf:4a:83:
5b:86:24:ce:da:95:93:b6:ba:3c:09:40:e7:d8:2a:f7:8f:c8:
c5:cd:3d:80:43:91:e4:b0:b6:56:c1:57:dd:c1:d2:18:d1:9f:
6d:8d:6b:a6:81:5f:ca:f6:4e:7d:ba:bf:a4:df:5a:af:2b:d7:
4e:f9:a0:a2:54:e8:2d:39:14:9d:73:b9:5f:f4:b8:3f:0d:a4:
f5:7d:33:31:75:9a:c9:83:6b:77:42:25:b9:9b:07:01:44:b8:
49:fe:91:70:76:bb:fd:e7:ef:52:ed:6d:9c:fd:1b:9c:f3:20:
ff:99:e6:06:69:a1:3a:fe:6f:ff:38:36:11:1b:48:10:26:db:
91:83:f7:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:26:06 2026 by rpki-client