Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
File: BAfWwkhET2tcN42w_-wPiZJW66M.mft (raw, json)
Hash identifier: sy3I8XoSRkgKB3xeA5oE1psZT5KuK0ifZNqAoTSwrV8=
Subject key identifier: 1E:4F:E7:9B:CA:64:3C:8F:BF:C6:DA:65:52:34:69:73:C3:B5:A0:11
Authority key identifier: 04:07:D6:C2:48:44:4F:6B:5C:37:8D:B0:FF:EC:0F:89:92:56:EB:A3
Certificate issuer: /CN=0407d6c248444f6b5c378db0ffec0f899256eba3
Certificate serial: 019F17C355A1F91F6760B169D6804530D290
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
Manifest number: 0C5B
Signing time: Tue 30 Jun 2026 09:01:45 +0000
Manifest this update: Tue 30 Jun 2026 09:01:45 +0000
Manifest next update: Wed 01 Jul 2026 09:01:45 +0000
Files and hashes: 1: BAfWwkhET2tcN42w_-wPiZJW66M.crl (hash: wvg+8dsxIyqJVORK0jHiK/JdimZPrrJR5XzGjvXQDX4=)
2: ty_z9F5F_f3BDR4ug7k-DhLsplA.roa (hash: aOrvfBJ3aIsm9B11VD3D1FcnWhZg8CPxpRJXlr1jiqM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:c3:55:a1:f9:1f:67:60:b1:69:d6:80:45:30:d2:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0407d6c248444f6b5c378db0ffec0f899256eba3
Validity
Not Before: Jun 30 09:01:45 2026 GMT
Not After : Jul 1 09:01:45 2026 GMT
Subject: CN=1e4fe79bca643c8fbfc6da6552346973c3b5a011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:95:3c:38:c8:d4:27:d5:b4:fb:23:37:66:14:
cc:c4:60:96:f9:85:c1:11:07:36:bf:c2:08:7b:8a:
cb:20:b5:ff:aa:28:a6:72:fb:96:10:c9:30:8b:60:
fe:00:58:60:25:18:0b:1f:2a:32:49:5e:63:84:df:
e1:45:a0:15:96:85:2f:5d:77:6c:f0:70:6d:28:7e:
18:4d:20:e8:2f:8c:96:42:1e:94:35:dd:1c:be:a0:
de:03:30:b5:79:62:94:f9:45:4c:d2:a9:8e:58:b4:
1d:6b:02:d1:00:a2:06:fe:d0:31:f8:1c:66:72:0f:
cf:d8:33:f4:9d:c4:fc:aa:6b:08:95:75:26:86:61:
2c:35:88:7e:35:13:e8:e8:25:d5:d0:30:ed:ad:22:
0e:bb:47:8f:0d:28:83:83:9f:5e:8b:9f:3e:8d:0d:
5d:06:26:a3:99:ae:d4:e2:a9:6b:64:ac:9a:97:88:
39:05:09:e6:a8:41:cc:15:18:fb:c8:0a:ce:89:80:
a7:ee:1a:8e:1f:31:3b:3b:b8:88:5e:97:02:20:84:
60:74:6b:5a:e8:90:b1:6e:7b:53:39:01:14:04:95:
ca:54:93:65:b8:02:0b:2d:2f:71:ee:9d:b1:99:93:
de:39:46:b5:e2:63:35:98:70:74:58:7f:39:39:e7:
45:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:4F:E7:9B:CA:64:3C:8F:BF:C6:DA:65:52:34:69:73:C3:B5:A0:11
X509v3 Authority Key Identifier:
keyid:04:07:D6:C2:48:44:4F:6B:5C:37:8D:B0:FF:EC:0F:89:92:56:EB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:cc:6a:4f:32:d9:66:29:d6:75:66:3c:c4:16:41:9a:bd:58:
fc:44:8e:6d:88:37:51:ed:d4:4b:8e:bd:52:fe:bb:a2:d9:b4:
3b:fa:84:ac:1f:da:d6:0e:a7:a6:62:9b:e6:7e:0b:b6:9b:a3:
cc:ae:d3:bb:e6:62:7d:26:16:a3:b3:26:30:ee:1d:f7:48:59:
45:ac:2f:51:7d:64:69:cb:ab:2d:36:29:c4:a8:0f:d5:aa:e2:
2a:d6:9a:34:1a:7a:83:6e:c1:45:a6:69:ad:8d:a9:67:2a:4d:
78:87:2f:c1:fc:97:7a:fd:82:d1:f4:0a:15:47:75:fb:b2:85:
82:9a:6e:d4:dc:44:b9:6f:70:09:0c:75:8b:69:b7:75:65:96:
97:e9:e3:98:f6:b2:3e:d7:f2:98:01:2d:49:82:37:b2:c4:34:
5d:64:69:28:c0:01:ec:60:ba:74:14:9a:46:1b:9c:b0:5f:39:
4c:87:d3:c1:76:90:47:ad:1a:c1:d1:40:ce:48:97:66:d1:38:
46:2f:6e:89:7a:2b:d6:63:e3:08:c6:23:8d:4b:36:42:fa:58:
f1:ef:4b:d3:6e:84:95:80:23:70:ae:97:0c:45:8c:0e:35:22:
fe:7b:5e:84:04:c6:c3:8c:59:1d:34:e3:d6:0b:4c:11:64:cf:
1b:51:10:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:14 2026 by rpki-client