Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
File: BsdGzX1N-VptA8qVVKdUdg1eTgY.mft (raw, json)
Hash identifier: hdvOpysINuwJLzpWWbvPxZXk4gUcw5cSpMqAAD6l5Kk=
Subject key identifier: 4D:A0:B3:B3:C2:0C:1A:B5:E4:7E:30:3F:B5:93:8F:C3:1B:CE:C3:80
Authority key identifier: 06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06
Certificate issuer: /CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06
Certificate serial: 019CAA8F5E5C7D36C402697FE824E56A70A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
Manifest number: 08BD
Signing time: Sun 01 Mar 2026 18:00:48 +0000
Manifest this update: Sun 01 Mar 2026 18:00:48 +0000
Manifest next update: Mon 02 Mar 2026 18:00:48 +0000
Files and hashes: 1: BsdGzX1N-VptA8qVVKdUdg1eTgY.crl (hash: cQ+uEGriobA28tr1labmt3pzmC4n1N3k9BxtZqEFnWQ=)
2: NBGlz4BOwm_Rb4kwh-h4UA65oDk.roa (hash: Ugv5nwQuiMqwOwqv6jAyXgwzxe6xlFAAFYW63xYA81c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:5e:5c:7d:36:c4:02:69:7f:e8:24:e5:6a:70:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06
Validity
Not Before: Mar 1 18:00:48 2026 GMT
Not After : Mar 2 18:00:48 2026 GMT
Subject: CN=4da0b3b3c20c1ab5e47e303fb5938fc31bcec380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:46:59:14:3b:88:e1:88:b7:9d:ba:aa:95:6f:
7e:f2:5c:b4:fa:35:fd:f1:d6:38:6e:c0:2c:c9:f1:
f2:a2:79:bc:59:5e:0c:6a:87:30:1d:d4:1b:6d:51:
88:ae:55:26:5a:df:51:e4:d2:6c:72:90:68:7a:70:
52:de:e3:1d:a0:2c:6a:45:c3:26:ed:0b:b7:60:fa:
44:ab:cc:62:da:85:27:b2:71:11:61:81:ec:2c:36:
34:de:d5:da:ad:76:88:37:d8:7d:25:71:00:3c:7e:
10:1f:64:c3:6f:43:78:e2:58:0f:77:e3:8b:60:e9:
01:51:8e:97:0d:6b:1a:26:10:9f:8b:4b:72:c5:24:
f3:e1:76:46:e7:a6:47:a2:eb:ef:1e:98:8c:e6:2c:
de:d0:7f:86:b4:be:79:5d:12:9b:05:ae:25:9c:10:
ac:de:1d:c7:89:14:98:f4:d5:1c:e2:63:ef:6a:67:
3c:24:15:c2:59:ad:3a:24:26:97:63:c5:23:2c:13:
f5:63:f4:5b:e3:9b:4a:7d:0b:51:28:5f:97:9b:fc:
a9:7d:ea:e2:10:bd:0f:d6:5c:7b:74:bd:b4:ab:8e:
02:0e:7b:8e:34:32:8a:a5:11:90:30:de:ee:fa:fa:
0c:e1:fc:6e:ce:7d:4c:cd:5d:98:cb:f6:95:a5:78:
80:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:A0:B3:B3:C2:0C:1A:B5:E4:7E:30:3F:B5:93:8F:C3:1B:CE:C3:80
X509v3 Authority Key Identifier:
keyid:06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:16:b5:23:53:db:68:db:97:22:83:98:0c:17:7c:7e:7c:28:
04:28:a4:eb:92:b3:45:fd:63:d2:8d:4b:9e:a0:27:6f:fe:3e:
de:a2:0a:f1:f0:9a:1b:09:14:98:43:ec:89:56:55:f0:5b:24:
25:05:ef:25:ff:4f:a7:94:b8:a9:96:fb:56:bd:0e:69:79:f3:
42:e0:b6:f2:6c:51:99:77:98:2c:49:5b:64:89:1f:5e:c5:a9:
59:d0:91:96:0a:5c:ab:08:85:49:95:08:fc:d2:85:18:60:1a:
30:fd:04:50:f3:d5:6f:d4:dc:2e:cc:f8:4e:c3:e7:8a:27:e4:
5d:a5:31:3a:f6:ed:fc:d9:8d:02:16:4a:04:16:a5:47:69:1e:
bc:9f:c7:2d:a9:0d:19:e9:ac:a5:71:96:01:e2:0f:12:5e:d8:
2e:a6:70:fb:32:c8:ea:c4:80:a7:5a:fd:e1:55:d0:b2:74:f9:
b5:48:b3:ee:b1:23:6e:57:df:b2:bc:44:4a:87:ac:12:36:43:
9e:df:ac:91:8f:17:43:fe:a2:c2:c4:c3:19:fb:71:97:36:fb:
9c:36:b0:4d:5b:78:f1:72:8f:fc:cf:1d:ce:f6:67:9e:4d:22:
6a:8f:e3:93:72:de:e3:f3:63:be:45:21:9b:81:d0:84:8d:19:
8c:e9:6e:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:03:44 2026 by rpki-client