Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft
File: BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft (raw, json)
Hash identifier: i9IDEWBX23L2qevmXAExQuxTOwSISsiCf97f81vwwEk=
Subject key identifier: C0:13:6A:B4:47:92:2F:AF:EB:B2:15:CA:78:93:6C:95:F3:24:A3:9A
Authority key identifier: 04:71:88:17:78:A1:E1:2F:6D:97:C5:28:8E:FD:4C:B9:56:3D:1D:49
Certificate issuer: /CN=0471881778a1e12f6d97c5288efd4cb9563d1d49
Certificate serial: 019EBFFF33AD5D59BA2FE17700F9BDF7BF38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BHGIF3ih4S9tl8Uojv1MuVY9HUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft
Manifest number: 032F
Signing time: Sat 13 Jun 2026 08:00:33 +0000
Manifest this update: Sat 13 Jun 2026 08:00:33 +0000
Manifest next update: Sun 14 Jun 2026 08:00:33 +0000
Files and hashes: 1: BHGIF3ih4S9tl8Uojv1MuVY9HUk.crl (hash: VGupEiqco+cTAEZa9Ue1HLtyHNYRqOL8VBCYqeq+qe0=)
2: eTOwOWQzkIQMSFcd7XvHaxwHhHg.roa (hash: wPtbDFR3QsqzxzI7/DNrIndvuS59lQkNZu8MuJSmfaE=)
3: hebM_59_tHRwgwIXMubQjV7ZKnA.roa (hash: 67WRXgG1YYYSINNxV4jZ+taQ8P62HynuQpfE/cUxzG0=)
4: xCZyOX3UdGqJ4N0H4sVFPUltMyA.roa (hash: pKVwIh7ZBo3ZwPW274FG7Z+VnBFjJnW9qgbfx0gaNg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/BHGIF3ih4S9tl8Uojv1MuVY9HUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:ff:33:ad:5d:59:ba:2f:e1:77:00:f9:bd:f7:bf:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0471881778a1e12f6d97c5288efd4cb9563d1d49
Validity
Not Before: Jun 13 08:00:33 2026 GMT
Not After : Jun 14 08:00:33 2026 GMT
Subject: CN=c0136ab447922fafebb215ca78936c95f324a39a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b5:44:e2:96:38:7d:7e:33:84:33:63:3d:31:
d6:ca:da:42:6c:fd:0f:55:94:f2:f0:26:e8:25:a0:
90:ba:c5:de:e3:01:de:56:fd:34:35:40:d3:01:03:
10:e8:a6:1e:56:45:d7:e1:8d:c3:58:ce:3f:f3:ee:
fd:e6:91:d1:17:08:9b:ac:2e:7d:44:72:4f:67:69:
da:63:fb:a0:8e:be:d7:a4:e1:b8:8b:5d:7b:c2:f0:
8a:88:3d:e5:a3:d0:4e:e1:89:75:73:35:78:f6:fa:
48:0c:35:2f:6a:57:5b:2a:c0:6b:3f:0c:85:c4:c0:
c4:3d:6a:12:c7:51:2a:4b:8e:f1:11:f8:b8:48:42:
50:50:b4:3b:81:74:45:55:98:8c:6d:d9:cc:18:d2:
89:59:d9:30:f7:f9:1b:b0:f2:2e:bc:c1:53:c6:70:
ba:0c:9a:a3:89:5b:f3:bb:0b:7f:c0:41:b3:93:51:
b7:87:66:79:68:cb:58:66:08:2a:97:b9:19:03:7a:
40:46:9f:b5:cf:28:c8:fb:29:34:7d:71:ac:f5:5c:
09:24:4c:34:34:e3:6e:29:96:fe:b5:4c:f7:cc:60:
c2:bf:02:32:74:c5:54:cb:72:f3:c4:7d:10:23:96:
2f:15:f8:8e:3b:ca:58:f3:95:92:c7:d3:6a:8d:44:
71:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:13:6A:B4:47:92:2F:AF:EB:B2:15:CA:78:93:6C:95:F3:24:A3:9A
X509v3 Authority Key Identifier:
keyid:04:71:88:17:78:A1:E1:2F:6D:97:C5:28:8E:FD:4C:B9:56:3D:1D:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BHGIF3ih4S9tl8Uojv1MuVY9HUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:43:d3:c4:ce:29:a5:8e:6c:ae:ae:be:31:d8:a2:23:ca:88:
b4:ae:4c:52:6b:1e:7a:a2:7a:e2:91:f6:1b:b9:69:9a:ff:a6:
8f:76:01:e7:f1:b7:dd:56:d3:54:f8:fb:12:9c:af:33:9b:63:
51:c1:fd:b6:3e:20:e3:20:1c:9d:ec:53:0e:ee:6e:e1:8b:61:
1d:ed:e6:6d:71:e7:1c:76:08:cc:fc:57:a2:cd:6a:30:86:9c:
7d:db:c0:6f:75:4e:f2:b0:17:ac:13:c0:6a:2e:4e:5f:d8:8c:
06:f9:8a:df:13:3f:3d:85:82:75:e7:68:c3:ce:08:88:58:f3:
0f:28:3e:8b:e5:65:4a:bb:1f:05:5f:ed:4d:fb:63:30:fd:41:
08:8d:c1:f3:c6:1f:a9:83:3d:5c:f8:7c:e5:12:1b:1d:66:83:
df:0e:ae:67:26:9c:48:1d:c3:d9:15:e9:4d:58:cc:6a:52:0c:
10:c0:25:82:7b:8f:ff:16:1d:e8:f1:f3:76:cc:75:ac:9c:66:
96:48:bd:5f:26:bf:2a:f7:44:b4:b2:2c:96:c5:6f:03:10:95:
79:da:72:01:2f:28:d1:da:6b:92:a6:da:cd:c7:e4:e3:c6:a9:
61:62:91:b0:42:14:99:ee:a9:c3:18:63:66:f1:2c:d8:76:53:
59:b5:2c:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:19:28 2026 by rpki-client