Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
File: BsdGzX1N-VptA8qVVKdUdg1eTgY.mft (raw, json)
Hash identifier: XMOg5YHL9F8ctaS75019vFhAV7ToQoA4POaoHLBZohM=
Subject key identifier: 51:32:A7:36:A7:92:C1:D6:2E:B6:5A:65:4B:CE:3E:3B:FF:A6:85:85
Authority key identifier: 06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06
Certificate issuer: /CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06
Certificate serial: 019D9818CF446EBEEDCCC34CA600923A940A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
Manifest number: 0938
Signing time: Thu 16 Apr 2026 21:00:55 +0000
Manifest this update: Thu 16 Apr 2026 21:00:55 +0000
Manifest next update: Fri 17 Apr 2026 21:00:55 +0000
Files and hashes: 1: BsdGzX1N-VptA8qVVKdUdg1eTgY.crl (hash: vyX33bKqtLffyxOfLn3T5sobwQUWdbrCYMK47qC37Jw=)
2: NBGlz4BOwm_Rb4kwh-h4UA65oDk.roa (hash: Ugv5nwQuiMqwOwqv6jAyXgwzxe6xlFAAFYW63xYA81c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:cf:44:6e:be:ed:cc:c3:4c:a6:00:92:3a:94:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06
Validity
Not Before: Apr 16 21:00:55 2026 GMT
Not After : Apr 17 21:00:55 2026 GMT
Subject: CN=5132a736a792c1d62eb65a654bce3e3bffa68585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:69:4d:7b:ed:3b:75:19:15:63:5e:f8:6f:1a:
a4:e3:7d:9b:cd:3c:cd:99:fc:d3:3d:44:10:68:92:
2b:c1:7e:5b:b9:75:96:63:dd:20:93:a9:c4:2a:51:
51:81:3e:ca:aa:ef:d1:65:71:9b:64:a7:28:dd:46:
b2:7a:68:f8:c2:4d:2c:68:43:be:9d:0c:f2:8e:56:
90:86:40:45:fb:20:a0:a0:f9:6a:bb:f6:de:54:99:
88:ee:7e:85:4f:53:73:b0:49:1f:52:64:99:ee:ef:
cd:9a:12:6f:f9:9b:be:af:16:55:ed:63:f8:bf:10:
ba:a2:e1:c6:14:3a:32:ff:a1:dc:4d:8c:7c:6f:13:
21:3a:71:d0:d6:e1:15:59:d6:7b:db:75:10:b3:52:
ce:6f:c9:4d:3f:07:91:1d:eb:98:0d:ee:30:21:de:
34:7c:73:f9:0d:7b:11:8b:ba:e8:8f:10:13:70:d8:
6b:c5:56:b4:b9:09:15:3e:9b:57:cb:54:7d:ce:4e:
96:ee:be:7e:e4:1f:56:86:8f:a9:9b:f8:71:89:7f:
c8:6b:2c:ba:df:29:68:b9:f2:fe:11:57:ab:c1:af:
36:ea:e7:d4:fa:24:80:c4:38:db:65:3f:b7:37:83:
f4:7e:bd:3e:d3:68:cd:f9:3a:96:44:54:bc:ff:63:
a9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:32:A7:36:A7:92:C1:D6:2E:B6:5A:65:4B:CE:3E:3B:FF:A6:85:85
X509v3 Authority Key Identifier:
keyid:06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:28:5a:d7:b0:50:d6:5b:73:7d:00:37:61:e8:89:c1:9d:d2:
08:c7:df:16:6f:95:35:be:fb:4f:23:96:82:ea:82:f1:77:49:
35:10:a2:38:5e:74:0c:9f:56:74:0d:f0:81:9c:3c:8c:73:99:
b9:24:37:ad:1b:16:6d:63:64:c9:73:a5:bb:8c:e4:6a:b3:d7:
b3:8c:69:5f:93:c2:fa:e3:8f:34:f7:6f:2d:73:da:b4:16:7a:
5e:4a:9a:d8:b7:db:52:61:b8:c0:62:a5:0e:e2:79:e8:bc:6b:
21:71:bb:29:8c:54:d7:3c:84:01:e2:80:b2:0a:c8:c2:bc:5b:
d7:94:aa:e7:d4:42:5a:93:64:ed:c5:9a:95:12:f4:47:b1:97:
b9:d7:57:8b:d4:fa:34:1c:33:00:6e:a5:3c:2b:62:7d:59:74:
b2:32:f7:54:92:3b:68:a6:ec:90:41:6e:ed:5a:c8:7f:3d:c1:
c5:21:58:e5:bc:8b:f0:4d:0c:b8:a2:1d:95:8e:84:94:54:69:
fd:52:8d:15:a5:18:ce:44:14:29:d6:05:87:54:1d:18:e1:d6:
47:db:dd:4d:6a:28:26:bd:87:ee:0d:77:d1:61:d4:f9:f0:53:
4b:a1:96:8c:6a:11:42:ef:8d:cf:4a:c1:89:1e:6c:66:05:a7:
4c:a1:a9:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:42:36 2026 by rpki-client