Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.mft
File: Bn3PV3ZU3KF6YQua9PLKdCHcu4E.mft (raw, json)
Hash identifier: D+S8ng/VAGk63hG1/mBMXcWib/D0YxhsofSfe6FKt8s=
Subject key identifier: F2:F0:25:C1:74:9A:6F:4A:E3:A3:CC:0A:2C:70:CD:35:FE:38:8D:D5
Authority key identifier: 06:7D:CF:57:76:54:DC:A1:7A:61:0B:9A:F4:F2:CA:74:21:DC:BB:81
Certificate issuer: /CN=067dcf577654dca17a610b9af4f2ca7421dcbb81
Certificate serial: 019D37C06478B8F4A11A13757440EF1757B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.mft
Manifest number: 141D
Signing time: Sun 29 Mar 2026 04:00:48 +0000
Manifest this update: Sun 29 Mar 2026 04:00:48 +0000
Manifest next update: Mon 30 Mar 2026 04:00:48 +0000
Files and hashes: 1: Bn3PV3ZU3KF6YQua9PLKdCHcu4E.crl (hash: fUGUO0xNGCilYvastNTCvk3960l/HGaps9ql3q9pbx8=)
2: gVF7AxuIzKTCjMsBQD_13bKv0vk.roa (hash: Xq/PLLG8F1v6vaXhJgc29NbSM77ha3BnJMruHRHuujU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:64:78:b8:f4:a1:1a:13:75:74:40:ef:17:57:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=067dcf577654dca17a610b9af4f2ca7421dcbb81
Validity
Not Before: Mar 29 04:00:48 2026 GMT
Not After : Mar 30 04:00:48 2026 GMT
Subject: CN=f2f025c1749a6f4ae3a3cc0a2c70cd35fe388dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:90:9d:f2:e3:03:fe:f5:c9:45:13:1d:69:17:
cc:4f:31:3c:b2:6e:e0:6d:a4:07:fb:8f:53:13:ad:
ef:25:66:34:9a:73:23:f9:f7:c9:89:69:d3:fc:ec:
b3:13:9e:e1:de:4d:07:b5:1d:28:f6:52:96:ea:a3:
20:d1:47:68:22:15:45:0c:9c:24:62:f2:75:05:28:
f0:d8:d1:26:c3:5a:0d:6d:09:71:eb:b6:34:f5:b4:
db:ad:fa:fa:60:d0:c0:25:f0:31:1a:33:32:1e:df:
45:3a:4e:32:d8:08:af:8c:84:da:de:f1:67:93:96:
a4:de:ee:fc:3b:d8:df:ba:07:b0:d3:6a:a6:45:41:
2d:a7:53:47:31:a2:f0:85:2e:ea:52:0d:7f:34:49:
a5:35:60:2b:29:b3:28:0d:14:00:9b:46:0c:1e:9c:
00:6c:71:f9:06:9b:fb:81:46:48:54:53:d4:27:5a:
ae:d5:64:3d:6a:4c:6a:14:d9:70:7a:94:6c:60:bf:
fc:e2:d3:35:ec:86:80:b0:e2:b6:5e:bd:ba:e4:b4:
c5:5d:0a:57:7a:dd:6b:c1:6c:b9:4a:38:e7:3c:8c:
41:fe:95:3f:a9:01:1f:cf:fa:46:93:a5:c4:80:6f:
43:9d:52:e6:e0:d3:d4:e7:73:79:af:19:27:24:f4:
86:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:F0:25:C1:74:9A:6F:4A:E3:A3:CC:0A:2C:70:CD:35:FE:38:8D:D5
X509v3 Authority Key Identifier:
keyid:06:7D:CF:57:76:54:DC:A1:7A:61:0B:9A:F4:F2:CA:74:21:DC:BB:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/29cb2e-4680-4a36-b0a5-985182001e92/1/Bn3PV3ZU3KF6YQua9PLKdCHcu4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:9f:fc:76:20:c9:88:f7:00:dc:f4:d5:23:23:be:99:c1:f6:
71:dd:de:fe:1a:d7:89:47:ae:f3:24:6c:38:b0:15:76:23:7b:
fb:96:fd:6b:ad:00:77:ed:d3:8c:38:92:a7:bc:84:20:73:ab:
7b:73:fd:fe:ea:cf:76:b5:95:de:16:29:29:45:31:f3:a9:ee:
99:1f:7b:e1:48:ee:f3:28:cb:fd:e7:7d:69:4f:2d:ab:1e:97:
c1:eb:14:a8:27:c2:c9:79:be:98:dd:41:40:74:64:8f:30:a2:
b6:d8:84:b2:d9:df:95:5a:6a:c5:cc:8f:6d:d5:9a:b7:15:91:
ea:1e:e6:48:b2:dd:80:09:b8:96:f2:0b:65:83:d3:4f:11:f4:
93:30:41:45:69:2b:07:49:f2:8e:7a:52:8f:09:47:11:0e:c8:
c3:88:aa:d0:5d:05:4b:35:6c:79:ab:f9:d7:66:57:62:a7:04:
7f:ea:e9:7f:af:3f:ce:9c:7a:53:12:f1:ca:1a:90:11:88:f0:
44:8a:be:36:ad:27:f4:36:f5:45:c0:66:7a:7d:cf:a9:5b:5a:
55:71:74:80:97:0b:f5:6b:e0:bc:1d:a1:b7:fb:09:86:d1:18:
59:6f:b2:86:00:54:67:63:43:1b:4d:84:ac:c9:fd:9c:c7:68:
3b:e3:90:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:06 2026 by rpki-client