Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
File: BfWa7cKCluKRck95N954jichZAg.mft (raw, json)
Hash identifier: fyM0FUFVuS2eCZqMCQ0/Xf+xEMg5YKkB81jHBn4NJA0=
Subject key identifier: 1E:3E:D0:A5:4D:55:4F:2D:3B:48:00:8B:62:C1:F3:5B:C2:48:E3:34
Authority key identifier: 05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
Certificate issuer: /CN=05f59aedc28296e291724f7937de788e27216408
Certificate serial: 019F1830C3479BF9E460A4EB1E2508FF22BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
Manifest number: 18A5
Signing time: Tue 30 Jun 2026 11:01:16 +0000
Manifest this update: Tue 30 Jun 2026 11:01:16 +0000
Manifest next update: Wed 01 Jul 2026 11:01:16 +0000
Files and hashes: 1: 6NLwB5WjlcBTVRx7lvLg-PZn5HQ.roa (hash: dWeJDKFFNOPJVpAu+kJb2B3xAofZRJV/6yg2uCUW2mY=)
2: BfWa7cKCluKRck95N954jichZAg.crl (hash: MEiMCp20orh1081P/L915hmmPXlv4PtbgnWkyJp0Y48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:30:c3:47:9b:f9:e4:60:a4:eb:1e:25:08:ff:22:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f59aedc28296e291724f7937de788e27216408
Validity
Not Before: Jun 30 11:01:16 2026 GMT
Not After : Jul 1 11:01:16 2026 GMT
Subject: CN=1e3ed0a54d554f2d3b48008b62c1f35bc248e334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e8:1b:66:6a:98:66:67:5a:53:ff:0e:9b:6b:
a2:f5:f7:e9:b0:c9:49:74:95:f5:b2:a1:40:ae:31:
96:33:46:ec:72:15:4e:86:49:08:d2:16:d5:a5:d6:
f5:d7:a0:33:c6:0f:46:45:a3:0e:ee:13:eb:40:b5:
bf:e9:13:86:87:c6:b5:4e:cc:4d:4b:6e:2f:db:54:
46:dc:be:e0:e6:97:7f:48:d5:48:f3:17:4e:32:fc:
8e:bd:1a:8d:ba:95:24:89:30:b1:d4:58:4f:53:d8:
b8:8c:1c:3b:cc:2e:63:71:96:04:28:fe:8e:e3:bd:
e2:e4:0a:46:25:2c:0d:d7:62:20:09:ba:77:eb:29:
b5:4b:b5:3c:ae:bc:ad:2c:8b:fb:d9:f8:88:9d:d4:
c9:6b:37:e9:03:32:8b:13:06:ac:00:e3:b5:63:e8:
5e:4e:c4:66:2c:c3:d1:b6:ed:8d:71:03:f3:9c:37:
92:8d:84:5a:6a:77:d5:33:21:51:58:ae:ee:79:1d:
e1:fa:bf:17:85:b7:c2:11:e9:f2:b5:cc:22:f8:1b:
f3:7e:67:2a:4f:e1:76:77:3a:df:41:89:18:6f:28:
7a:0c:a8:d1:12:3e:8d:37:b1:25:07:f5:db:5b:9e:
fd:aa:ac:5c:d3:9c:eb:e9:9b:b4:5e:e6:bc:9c:32:
96:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:3E:D0:A5:4D:55:4F:2D:3B:48:00:8B:62:C1:F3:5B:C2:48:E3:34
X509v3 Authority Key Identifier:
keyid:05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:a6:0a:e7:58:47:62:ba:ee:2f:40:ff:6b:ec:3c:cf:70:d5:
cb:d9:76:a2:12:11:07:05:2a:4c:bf:2c:3f:35:2c:17:b2:5f:
11:9b:a2:75:09:27:30:60:f3:bb:66:44:f6:1c:12:a9:c1:42:
64:00:8e:40:76:b6:e2:e3:e8:b6:47:8f:ca:84:3b:d3:b1:9a:
b4:f4:0a:0a:80:69:f1:4d:09:bd:73:66:ad:bc:76:12:c0:85:
56:6d:26:a3:bc:c5:53:00:9d:94:06:7e:c8:70:17:2f:28:e8:
8a:43:14:45:46:e8:c8:c9:b4:96:23:38:13:62:f1:16:56:95:
ba:06:93:2a:6a:1a:0a:a7:4a:5d:0f:da:e9:1e:6f:7e:aa:6c:
29:bd:4b:c6:2b:e4:bd:9a:c7:20:76:88:10:51:8b:0b:cd:7a:
87:3c:e6:62:5c:85:40:ea:f5:6b:12:0f:d9:ca:e7:e9:ea:91:
10:c6:d3:e2:35:6d:b6:cc:7f:1c:45:54:b0:84:84:87:28:b0:
24:9b:ca:9d:cd:2f:77:8b:b1:bc:b3:58:15:ff:e7:0f:19:d0:
42:9d:41:79:bc:56:cc:76:28:4a:43:47:b5:fb:21:91:4c:a4:
06:d6:c1:3b:29:f7:57:a6:11:11:3a:6c:bd:85:33:de:e6:b1:
65:d3:be:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:36 2026 by rpki-client