Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
File: BCSFBLVFValEOwKjPTUakChju5k.mft (raw, json)
Hash identifier: u0rmdHaJj1ntqW6L0h2dneuHZRl7IUyZHgQxcv/sHiI=
Subject key identifier: DD:C4:97:F3:21:4A:D5:F6:8F:D0:B2:87:55:04:06:EE:46:69:1F:5D
Authority key identifier: 04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
Certificate issuer: /CN=04248504b54555a9443b02a33d351a902863bb99
Certificate serial: 019D99991FEEA957371A04A2EDBC6218BE5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 04:00:42 +0000
Manifest this update: Fri 17 Apr 2026 04:00:42 +0000
Manifest next update: Sat 18 Apr 2026 04:00:42 +0000
Files and hashes: 1: BCSFBLVFValEOwKjPTUakChju5k.crl (hash: wIshV+5p3flNI7ee/IKiDAHwqajYqCPiqDyu1QexFN0=)
2: dfr7uobX_w4lQ4i9yNjUHYWp4ow.roa (hash: M74uU1K2KPG63rDAm5lv4SwVTXIBc7q05CCX0TzlAgw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:1f:ee:a9:57:37:1a:04:a2:ed:bc:62:18:be:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04248504b54555a9443b02a33d351a902863bb99
Validity
Not Before: Apr 17 04:00:42 2026 GMT
Not After : Apr 18 04:00:42 2026 GMT
Subject: CN=ddc497f3214ad5f68fd0b287550406ee46691f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:25:ec:11:92:c9:fc:56:68:2a:40:96:f7:e4:
aa:52:7c:71:f2:44:5a:e0:24:77:14:b2:2c:93:f3:
21:4e:a1:86:0f:90:8a:42:96:03:9c:5d:6c:27:28:
6d:e8:5b:1d:d4:23:5c:c0:a3:b2:47:87:c2:55:1e:
fd:9e:7d:da:f1:10:2d:01:ef:17:2f:77:d6:1d:7b:
cb:c0:6d:7a:1d:94:b8:0a:d2:01:5c:ee:5d:34:bf:
e4:50:4b:d5:cb:cf:eb:60:75:a1:01:24:d7:b1:14:
0b:51:a8:6f:c1:72:cf:29:55:6a:35:03:86:c0:eb:
85:76:ca:fd:9b:ff:94:8a:89:b6:2c:80:8d:64:38:
83:f0:8f:c8:b7:a3:f5:66:43:a5:ff:20:51:d5:ce:
24:6e:c1:f8:c7:f1:f4:bf:f1:b5:37:b7:3d:bd:e3:
13:e3:9b:1b:19:79:2a:57:b1:c3:7d:87:5b:47:ee:
9b:08:0f:89:3f:0a:5d:ec:ef:19:a6:77:03:1a:31:
1e:4b:dd:50:3e:1d:59:ec:a7:ab:fc:d3:81:e3:ed:
10:3e:58:4f:fb:b5:37:cf:93:5c:7a:c7:a3:18:70:
8b:a6:4b:eb:ad:49:b7:db:0e:fe:ba:f2:5f:fb:7e:
ff:44:3e:d3:8d:b8:f6:42:8c:03:51:22:a5:48:d7:
b2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C4:97:F3:21:4A:D5:F6:8F:D0:B2:87:55:04:06:EE:46:69:1F:5D
X509v3 Authority Key Identifier:
keyid:04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:19:25:a6:24:65:2a:fa:99:b6:01:0a:5d:7c:27:cb:05:ae:
94:c3:5d:7b:eb:e9:2d:25:a7:2f:92:7e:8d:3c:e1:51:24:98:
c8:db:f6:2e:22:42:7c:4e:be:a0:86:6a:41:2a:76:a1:dd:f7:
7d:87:ba:da:0d:e8:02:f6:af:4f:19:5a:78:bc:23:de:1e:c3:
89:43:d7:83:2e:f8:aa:28:45:10:31:4a:22:3f:f5:d1:de:1b:
1e:71:43:68:01:d2:41:67:d1:73:7d:d4:18:de:64:37:b9:8d:
37:2f:20:b2:10:cc:3b:7b:62:b3:1b:42:65:54:7d:5c:ef:8b:
79:fd:f9:d3:9d:a9:08:19:e4:1c:01:19:11:af:9c:1f:7d:52:
b3:bd:ca:84:6a:47:a7:37:03:61:c1:8f:19:95:21:16:b2:78:
fb:30:99:fe:d7:5d:a2:61:de:22:31:6f:f3:af:e6:8d:a7:4c:
89:c4:72:02:06:50:69:8d:9f:33:fc:6c:56:7b:43:42:e3:57:
6e:46:2e:b3:e7:f6:84:c9:c9:c0:f4:e9:c9:1b:4e:f2:73:ef:
ab:5c:9f:ff:fd:bc:ef:00:f2:27:c5:55:12:75:f7:05:a6:c1:
ee:ec:b1:6e:cd:0f:5d:00:d9:ac:46:d2:db:d6:fd:78:c6:eb:
0c:18:38:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:49:45 2026 by rpki-client