Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
File: BCSFBLVFValEOwKjPTUakChju5k.mft (raw, json)
Hash identifier: squJ+wf3uJoBZh8sl9l9IunvGkFXsGkwQ2znFIt/cu8=
Subject key identifier: CC:03:A0:D8:0A:0D:27:E5:EC:46:81:BD:16:63:A9:B3:2C:4C:B4:AD
Authority key identifier: 04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
Certificate issuer: /CN=04248504b54555a9443b02a33d351a902863bb99
Certificate serial: 019CAA21D4BAD058FC19EAE36FB7CBA2DC6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
Manifest number: 1848
Signing time: Sun 01 Mar 2026 16:01:09 +0000
Manifest this update: Sun 01 Mar 2026 16:01:09 +0000
Manifest next update: Mon 02 Mar 2026 16:01:09 +0000
Files and hashes: 1: BCSFBLVFValEOwKjPTUakChju5k.crl (hash: OgXOb80lzh0tflFjhSYnHRDtIEtMGP4wH2uhdHOEAXc=)
2: dfr7uobX_w4lQ4i9yNjUHYWp4ow.roa (hash: M74uU1K2KPG63rDAm5lv4SwVTXIBc7q05CCX0TzlAgw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:d4:ba:d0:58:fc:19:ea:e3:6f:b7:cb:a2:dc:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04248504b54555a9443b02a33d351a902863bb99
Validity
Not Before: Mar 1 16:01:09 2026 GMT
Not After : Mar 2 16:01:09 2026 GMT
Subject: CN=cc03a0d80a0d27e5ec4681bd1663a9b32c4cb4ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:bb:b9:b3:5d:4a:3f:95:17:20:67:5a:35:bd:
21:5e:9e:24:1e:fd:fd:0d:bc:19:48:f9:15:94:be:
79:d2:7d:f9:bd:5e:76:ae:ef:9d:c9:e9:72:07:3d:
94:3d:90:c1:80:92:f1:20:d9:5e:97:4c:49:c6:8f:
00:f7:57:9a:67:17:cb:19:c1:e8:dc:66:2f:0b:0b:
7e:91:a6:83:3f:da:d3:12:a3:85:6a:e0:7b:24:8f:
64:a4:e0:41:4f:27:a5:fc:a5:9b:c8:9d:16:ab:a5:
ce:76:70:15:7d:96:a8:a0:69:b7:f3:55:89:72:14:
b2:31:f2:ed:a9:39:3f:17:96:ef:31:0a:04:f1:cb:
0a:56:7c:f4:94:26:42:f0:64:c2:8e:30:17:9b:26:
73:e0:20:56:bc:70:17:fa:ef:3f:5f:84:b8:87:33:
b0:5d:bd:32:b4:cd:bb:d7:e2:5d:e3:e5:1c:a0:b8:
3c:62:f9:85:82:c9:11:dd:d5:7c:f7:66:87:41:bd:
86:21:cf:0b:84:ee:b0:b6:89:09:e5:a5:31:5d:fb:
c2:bc:e2:bf:86:2f:86:42:ae:16:e3:bc:e3:2a:92:
6c:67:00:72:df:20:27:11:7e:f4:7f:e5:1b:8d:8a:
5f:58:c4:3d:2f:4b:f2:5a:37:f8:40:a3:83:b6:c3:
31:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:03:A0:D8:0A:0D:27:E5:EC:46:81:BD:16:63:A9:B3:2C:4C:B4:AD
X509v3 Authority Key Identifier:
keyid:04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:46:f1:99:0d:78:66:4b:e2:32:cc:1a:79:81:b7:d0:a7:a8:
45:10:e2:6b:4f:50:90:42:b4:c6:07:0f:b9:bc:b4:6d:74:29:
d8:92:76:df:86:fd:02:0f:43:5f:c5:5a:27:a0:bf:e3:5a:6f:
10:49:83:f2:75:41:4d:d0:bd:cf:6f:cd:67:d6:8f:fb:b0:34:
f5:80:f9:0b:27:9c:b9:8a:e9:c6:df:af:63:53:6c:65:5b:63:
ab:f3:bb:9f:3b:a0:cd:cc:66:c2:bd:a0:09:8c:0a:0c:a9:98:
ea:7f:8f:73:1c:7e:e8:51:c9:37:11:1a:fc:60:15:4a:a9:49:
71:e3:de:1e:09:8e:10:57:91:d5:aa:5c:b5:d6:7f:bd:db:72:
2c:05:9b:d5:de:99:ed:58:f2:77:24:48:d6:e1:cd:93:8a:c8:
b4:de:e9:93:89:1c:95:f9:c5:b2:eb:2a:f7:19:65:31:b3:5f:
12:69:02:73:60:28:9f:73:55:65:63:ac:f3:3b:5c:34:45:c1:
5e:fe:b8:80:34:42:f2:1f:4e:e9:ba:6f:d8:17:c6:13:9c:5a:
24:df:ae:e1:6e:15:0a:0a:c6:30:b6:78:7a:f3:60:31:ae:83:
c2:a6:ca:fa:e7:f7:f6:58:36:a9:6d:f4:4a:0d:03:69:c9:16:
75:ff:1b:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:03:40 2026 by rpki-client