Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft
File: BgOecctxUgSoPMJTgi3CmmLHmeY.mft (raw, json)
Hash identifier: 4oGKaH66D2uu9e9jreaAby/dwuo7Lz5ra49HVq4msTM=
Subject key identifier: 73:89:18:9B:B0:7F:11:0D:CE:53:8F:50:42:C6:96:F9:BA:B5:6C:B0
Authority key identifier: 06:03:9E:71:CB:71:52:04:A8:3C:C2:53:82:2D:C2:9A:62:C7:99:E6
Certificate issuer: /CN=06039e71cb715204a83cc253822dc29a62c799e6
Certificate serial: 019D37C0A7B88482F6641BC77C2C670FEECC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft
Manifest number: 09A0
Signing time: Sun 29 Mar 2026 04:01:05 +0000
Manifest this update: Sun 29 Mar 2026 04:01:05 +0000
Manifest next update: Mon 30 Mar 2026 04:01:05 +0000
Files and hashes: 1: BgOecctxUgSoPMJTgi3CmmLHmeY.crl (hash: uv3fuBph/OvhCH24iF/rcJTJ1/HJuc2HThe+nMjGXdY=)
2: WsB2cpz5PeeV12FuRGXIMnfEpDA.roa (hash: RXGdsxXZdhMgqQg6njT8x//0fSXw5JT6Hs6Qaa1Fb6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:a7:b8:84:82:f6:64:1b:c7:7c:2c:67:0f:ee:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06039e71cb715204a83cc253822dc29a62c799e6
Validity
Not Before: Mar 29 04:01:05 2026 GMT
Not After : Mar 30 04:01:05 2026 GMT
Subject: CN=7389189bb07f110dce538f5042c696f9bab56cb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bd:27:c2:a7:6f:65:23:ff:77:85:9e:a5:af:
58:93:a3:b1:1e:e0:95:0b:00:9c:1c:d4:d1:57:44:
cc:ed:5e:88:bd:01:bd:5f:51:d5:d2:96:48:a0:ef:
cb:ed:04:85:0a:10:ed:a6:96:0d:6b:6e:fa:74:4f:
72:05:d8:22:60:be:e6:5d:86:16:3e:98:58:25:23:
45:aa:95:49:3e:f5:45:12:31:af:db:e0:d9:dc:73:
dc:a3:b7:8c:df:3a:56:64:04:92:a9:ee:b9:53:49:
d6:6d:97:f9:65:01:54:e9:65:89:38:c8:bf:df:53:
02:83:21:60:65:ea:21:a1:01:8c:e6:ee:2e:3c:23:
47:bf:5c:57:68:50:3c:58:01:2f:b8:f7:46:a5:7f:
97:e5:10:a6:dc:f1:22:4b:2f:5c:cd:40:4e:9e:a2:
00:27:0f:ff:d4:09:3b:18:2d:4b:d3:b7:15:b3:04:
7a:54:2b:f9:ad:01:d5:d8:44:19:9b:10:8d:57:80:
54:3a:67:30:cf:9b:14:d5:54:c7:f9:6f:05:f8:2a:
c2:85:18:fb:d7:5c:02:c0:2c:9b:49:e8:d7:fa:86:
1f:e3:24:7e:b0:50:73:ac:1a:24:11:a8:e6:9a:ad:
e3:ba:93:66:2f:f5:2d:7f:fb:c3:72:db:da:64:86:
8b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:89:18:9B:B0:7F:11:0D:CE:53:8F:50:42:C6:96:F9:BA:B5:6C:B0
X509v3 Authority Key Identifier:
keyid:06:03:9E:71:CB:71:52:04:A8:3C:C2:53:82:2D:C2:9A:62:C7:99:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:5f:1a:7a:ca:7a:c8:2f:84:e0:f5:04:a0:f5:ff:64:81:ac:
8d:71:a1:30:ee:d9:1c:cc:67:79:f1:dd:8c:a2:52:3c:61:bb:
1f:7f:4d:f1:e3:3e:78:b0:8e:08:56:0e:35:18:2d:e9:59:a7:
cf:b2:b5:30:07:d5:e1:5f:9d:3e:7e:f8:f8:e8:28:da:82:97:
ae:83:91:14:6f:c3:82:34:98:84:26:5e:03:81:93:e6:15:bb:
f9:bf:83:92:be:4d:22:a7:9c:93:94:02:c7:0e:9c:88:9c:96:
14:05:73:71:ae:91:18:05:f3:40:9f:01:5c:83:58:95:c6:ad:
d8:72:b4:f7:d3:04:c0:21:06:63:65:9f:a0:4b:79:d5:4e:d7:
96:ec:cd:ac:6b:63:98:22:2b:79:32:65:19:60:da:91:2b:75:
4b:a6:7b:af:e7:8d:93:8e:7a:92:1c:1e:79:77:6a:b7:15:1d:
8e:48:27:29:61:4a:ec:f5:8c:c5:45:b8:3a:36:10:25:41:0e:
70:74:f4:71:d9:20:bd:70:0f:05:33:af:73:8c:8c:a8:05:2a:
a6:a2:1b:1f:b2:af:65:c5:65:06:c3:5e:63:40:6e:93:f9:db:
38:96:ff:5e:16:66:00:0f:af:bb:ad:9f:d0:4b:2c:9c:99:33:
00:a6:25:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:57:30 2026 by rpki-client