Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
File: p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft (raw, json)
Hash identifier: LLJ/GAyRBd+eib4jFc5INxej+S7959cwhiSmVP1JavE=
Subject key identifier: BE:C6:15:C8:15:B6:0C:D3:13:33:FE:F1:08:BF:E8:34:28:31:34:C2
Authority key identifier: A7:73:25:E4:95:CB:01:50:20:3B:79:F2:46:F4:CD:4C:0F:EC:24:FF
Certificate issuer: /CN=a77325e495cb0150203b79f246f4cd4c0fec24ff
Certificate serial: 019D37F6DE6BE76920009411A6C04C603022
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
Manifest number: 0F47
Signing time: Sun 29 Mar 2026 05:00:18 +0000
Manifest this update: Sun 29 Mar 2026 05:00:18 +0000
Manifest next update: Mon 30 Mar 2026 05:00:18 +0000
Files and hashes: 1: p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl (hash: CpjQl0X5APIGuQKI8S0Y4p2sOdcSJY5TSVhlH3qXS+w=)
2: vFPz2EZZAEU2N3SgGFxaDNU5jHs.roa (hash: EuLVLB/JUDTlNe7Sgb1DpN69/WpO8B+6KWA2ZGoI7bg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f6:de:6b:e7:69:20:00:94:11:a6:c0:4c:60:30:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a77325e495cb0150203b79f246f4cd4c0fec24ff
Validity
Not Before: Mar 29 05:00:18 2026 GMT
Not After : Mar 30 05:00:18 2026 GMT
Subject: CN=bec615c815b60cd31333fef108bfe834283134c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5e:3c:a7:06:42:eb:01:f1:4d:bf:e3:03:f8:
0f:47:a4:68:10:fc:6a:1b:db:85:58:cb:0b:66:ef:
52:81:2d:79:7a:10:ed:6c:cc:4c:61:72:a5:10:cc:
65:61:54:be:1c:3e:4b:00:67:e6:e7:a9:5f:59:c3:
d8:4f:47:2a:37:a2:42:50:31:a2:2f:91:5d:ab:78:
e8:8f:3c:69:c1:15:78:6c:b9:87:fb:a0:a4:c6:34:
29:93:03:2b:df:b5:8b:11:7a:a2:b3:20:14:30:bd:
30:69:16:db:81:13:42:77:e1:c0:4a:af:6a:b4:a5:
61:ca:1d:71:41:7b:ef:a5:31:c1:dd:81:bd:d7:9f:
a5:2e:ad:fb:23:5f:21:e7:33:22:d7:a7:dd:90:50:
64:04:79:47:d3:fd:45:07:bd:a3:1a:d9:38:2a:b1:
a3:f6:9b:96:ec:35:79:14:5b:70:6b:3b:12:59:3b:
79:3d:6b:f2:65:8d:5c:a1:53:fd:19:15:23:b3:c7:
1e:d7:ea:68:ed:12:26:1c:c9:38:26:dc:c2:4b:d6:
69:a4:4e:9c:6f:62:05:85:37:8c:6e:02:91:57:d5:
65:81:a2:5d:e5:1e:95:76:cc:58:f4:59:a2:54:e0:
e2:ea:26:e2:56:b9:54:e0:db:d9:0f:39:d6:5c:0c:
a8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C6:15:C8:15:B6:0C:D3:13:33:FE:F1:08:BF:E8:34:28:31:34:C2
X509v3 Authority Key Identifier:
keyid:A7:73:25:E4:95:CB:01:50:20:3B:79:F2:46:F4:CD:4C:0F:EC:24:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:dc:e9:d4:8e:d4:8d:7b:77:5e:eb:d2:5c:4e:9e:fe:b6:3d:
46:a5:b3:33:86:02:e7:94:50:60:68:49:11:bb:98:26:b8:44:
f9:3f:b4:24:cc:24:0c:20:9e:d4:1d:ba:66:13:08:28:6e:60:
ab:ef:f8:0f:38:c0:2b:a6:8f:f3:fa:a9:72:35:41:03:e7:c1:
f4:5c:0a:e0:a6:98:2e:e4:19:56:c3:a6:0e:a6:9e:a5:51:47:
07:2c:3f:5f:03:24:21:b5:4f:c9:1d:5d:88:aa:22:01:87:26:
82:c8:dd:59:95:9d:81:a0:c2:7e:c0:fb:c2:49:8e:08:3d:8f:
58:50:38:08:ea:88:32:12:f7:bf:b1:d2:a8:be:21:5a:8f:af:
2e:d3:e0:01:32:c5:29:5d:f1:fb:c8:11:9d:80:7d:5f:ff:6b:
58:92:48:6d:84:32:6a:b0:70:07:9e:3a:95:f6:72:cf:47:f0:
7e:b8:4b:80:fb:cc:ec:d5:98:7f:36:0f:c2:56:8e:5a:49:43:
cb:5d:5a:d0:2b:55:c4:4d:b1:ca:9b:3a:59:a7:07:a1:68:57:
03:4d:5e:a2:0f:b7:94:dc:64:6d:0b:cb:ea:bd:89:f2:78:f2:
05:39:be:da:0d:a1:f2:62:c7:7a:c2:49:ee:ee:14:57:61:ac:
73:ef:8d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:05:58 2026 by rpki-client