Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
File: BAfWwkhET2tcN42w_-wPiZJW66M.mft (raw, json)
Hash identifier: ef/WOS2eMMKoImIAnXJvspefqZmbccCHvph32r5ZW/Q=
Subject key identifier: 72:74:2E:B2:17:B4:47:13:40:77:B2:1D:92:67:DD:A7:75:B0:63:F8
Authority key identifier: 04:07:D6:C2:48:44:4F:6B:5C:37:8D:B0:FF:EC:0F:89:92:56:EB:A3
Certificate issuer: /CN=0407d6c248444f6b5c378db0ffec0f899256eba3
Certificate serial: 019D38D3BBFDE10C56279415B25A07D7A2DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
Manifest number: 0B63
Signing time: Sun 29 Mar 2026 09:01:33 +0000
Manifest this update: Sun 29 Mar 2026 09:01:33 +0000
Manifest next update: Mon 30 Mar 2026 09:01:33 +0000
Files and hashes: 1: BAfWwkhET2tcN42w_-wPiZJW66M.crl (hash: se/bl1SgevkVUNrWF7GSSuH96555lmB1C4NxCfDkZpM=)
2: ty_z9F5F_f3BDR4ug7k-DhLsplA.roa (hash: aOrvfBJ3aIsm9B11VD3D1FcnWhZg8CPxpRJXlr1jiqM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:bb:fd:e1:0c:56:27:94:15:b2:5a:07:d7:a2:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0407d6c248444f6b5c378db0ffec0f899256eba3
Validity
Not Before: Mar 29 09:01:33 2026 GMT
Not After : Mar 30 09:01:33 2026 GMT
Subject: CN=72742eb217b447134077b21d9267dda775b063f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6b:bb:83:be:c7:89:07:12:26:0c:d8:22:9b:
ae:cc:44:80:e3:e7:d8:94:3d:a8:5d:88:b6:86:e6:
35:5d:68:0c:6b:14:4e:7e:49:fb:da:26:c2:4c:f6:
39:fa:44:3b:a3:87:9c:52:95:58:16:f0:b1:80:77:
f1:d2:b5:c2:e0:5a:41:28:40:c9:b5:68:45:f1:e9:
77:a1:f5:a4:04:0e:de:50:9f:44:30:da:07:f7:f2:
87:81:26:e6:b3:77:3e:2f:60:03:05:d4:c7:3d:44:
81:5b:a5:3f:be:e1:09:3d:0d:23:dc:cc:70:b4:f2:
c9:70:39:6e:7b:9a:e1:a5:89:f3:66:26:46:49:98:
08:82:c8:d4:92:2b:b6:7d:d5:d6:ae:d3:c6:01:44:
16:a9:03:d7:32:fb:d2:e3:25:17:1d:ef:aa:f7:8a:
20:96:14:51:1a:2c:5e:cf:1c:41:78:31:92:cb:2d:
89:2b:e4:c7:a5:f6:76:39:78:38:98:cd:8d:c9:9f:
e0:9d:f1:ab:ee:ae:f6:94:c6:6e:68:87:8d:b7:65:
49:75:be:d1:a5:12:19:27:58:f8:35:17:e3:54:a4:
8f:6c:bd:ff:4d:54:ff:ee:1c:bb:b8:9c:58:6b:c5:
a6:a1:f8:50:a7:12:ee:be:05:f7:0b:16:fa:5b:16:
e0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:74:2E:B2:17:B4:47:13:40:77:B2:1D:92:67:DD:A7:75:B0:63:F8
X509v3 Authority Key Identifier:
keyid:04:07:D6:C2:48:44:4F:6B:5C:37:8D:B0:FF:EC:0F:89:92:56:EB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:dd:2a:d3:46:f5:ab:a8:76:53:81:a1:27:24:79:0a:62:25:
48:2a:0f:de:84:07:47:3f:9a:33:10:0a:20:67:b9:93:92:e2:
45:99:d6:12:91:c4:2a:f9:b0:40:0c:9e:74:68:30:37:64:63:
16:0d:59:c1:44:54:3b:ce:f5:a0:ca:63:53:d1:1e:fb:a2:92:
7c:35:eb:8b:5b:85:f5:cf:8d:74:e7:d8:3d:d7:0e:30:3d:da:
88:8d:b6:95:c0:dc:ea:04:5d:29:29:e0:75:7b:89:58:93:19:
fe:02:95:24:4c:9e:c7:6b:28:a9:bd:11:67:a2:cf:cd:59:25:
e2:44:35:6a:b0:a2:75:13:5b:12:bb:82:28:30:80:fc:e6:67:
31:10:a2:7e:d3:b0:00:79:81:17:2f:21:7e:57:4e:1b:c8:fe:
37:fb:d9:8a:25:4a:a3:1f:5a:b6:02:aa:8b:9f:ea:69:8f:b5:
a5:4e:74:30:15:69:4b:1d:79:a0:e9:0c:ab:67:f7:a7:bd:84:
b6:30:ff:e6:b0:09:ba:67:b2:56:f9:6c:53:92:53:19:6c:e8:
0f:19:73:7f:59:e9:16:7d:0d:9e:e2:cb:16:cf:98:75:5e:81:
bf:b1:34:a3:e6:6b:08:14:b1:a4:90:c7:47:d4:6c:f4:fe:6c:
22:70:be:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:11 2026 by rpki-client