Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
File: BXEVMhUM58l6fqSMDXekLm8NX8M.mft (raw, json)
Hash identifier: BeSUs7b/iProZCP3Ibhxmd4Xfc3RXy/LPvjBQ+yn6OI=
Subject key identifier: 6C:0A:E4:83:98:2B:10:E1:35:21:31:3F:06:AC:84:36:0D:DF:8F:84
Authority key identifier: 05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
Certificate issuer: /CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Certificate serial: 019D9A06AD72769DE6FE5A133E1A206E04D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
Manifest number: 0949
Signing time: Fri 17 Apr 2026 06:00:22 +0000
Manifest this update: Fri 17 Apr 2026 06:00:22 +0000
Manifest next update: Sat 18 Apr 2026 06:00:22 +0000
Files and hashes: 1: 2gFrlERikbTFKdI9rMWrqLB3sHI.roa (hash: +aPRdRcOO01yT/CtMcgLBuyFBxEuzS6PPgSrwq5FEhk=)
2: BXEVMhUM58l6fqSMDXekLm8NX8M.crl (hash: NSBeYldzXiYj/GQfrFXZFYs+Q+T0EBobdL/TBNasX9k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:06:ad:72:76:9d:e6:fe:5a:13:3e:1a:20:6e:04:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3
Validity
Not Before: Apr 17 06:00:22 2026 GMT
Not After : Apr 18 06:00:22 2026 GMT
Subject: CN=6c0ae483982b10e13521313f06ac84360ddf8f84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:8a:d9:d3:2d:43:0c:33:2f:6e:d0:a6:cb:4a:
ce:6d:36:37:6e:d6:cd:24:e1:c2:18:70:f4:4c:7e:
e3:cb:14:b1:99:e2:f4:33:bb:cf:9e:0b:ec:60:09:
f1:a5:64:42:a5:2f:45:31:b9:9a:86:7f:cb:29:a7:
2c:6d:03:58:a5:a5:b9:76:6b:28:0f:dc:67:1b:9f:
93:ea:36:ef:37:b2:84:75:1f:db:c5:34:6e:d4:f5:
3a:34:0b:85:c1:eb:e8:5c:77:a6:27:25:aa:12:6d:
73:b7:27:0c:cb:9f:55:6d:45:cb:d2:24:fd:54:ad:
f0:2c:36:01:06:90:f2:21:13:70:01:9a:a4:02:4b:
58:69:f5:36:30:67:29:d0:3e:db:3c:ba:22:52:3f:
9e:70:bd:10:7b:5d:d6:d5:eb:c4:93:10:1d:13:99:
35:8c:61:b1:66:70:17:c5:c3:29:61:e7:35:ed:dd:
f2:83:2c:90:79:97:85:39:0e:90:f1:cd:e2:47:01:
1a:c8:f5:55:e8:b1:73:23:71:4d:80:10:7b:b5:41:
aa:9a:94:bb:20:49:be:80:dc:bf:09:0b:3d:0d:37:
0e:20:61:10:13:a1:d8:17:05:7b:95:dc:90:92:49:
1c:15:fa:66:cf:3c:27:c0:02:f2:ac:78:b8:ff:c3:
bc:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:0A:E4:83:98:2B:10:E1:35:21:31:3F:06:AC:84:36:0D:DF:8F:84
X509v3 Authority Key Identifier:
keyid:05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:11:67:33:e2:77:26:19:a0:b3:92:e4:c9:3e:d7:2f:18:c2:
5b:5e:33:b0:01:28:53:ed:ac:ec:9c:38:73:9b:5a:62:57:68:
60:5b:64:38:af:c6:63:21:4a:70:f6:36:9f:12:fb:73:75:3b:
29:6a:67:7f:8b:8f:44:3f:84:5a:c3:5b:2c:43:d5:ec:04:fa:
30:f0:36:bd:f9:f6:c6:5c:e7:c1:72:10:35:fe:be:14:f0:ce:
8e:94:12:78:bc:63:2a:2e:3c:66:ee:5c:05:84:af:d7:dd:6f:
f0:b5:b8:e4:49:64:ef:41:b7:7e:a3:12:7d:55:f5:08:f5:9c:
37:3d:8b:3e:f4:7e:0c:d1:3a:73:a4:30:99:c4:c8:db:02:1e:
cb:a4:19:da:97:25:50:30:dd:13:04:74:fd:6a:1e:34:a1:99:
6e:33:0a:36:3a:14:ad:f8:fb:40:2f:cd:af:a2:2f:7d:76:a3:
5e:99:c1:c8:1a:69:30:a2:dc:dd:f5:6e:7e:ce:a8:2a:8c:07:
3a:d7:6e:80:3c:90:bd:ab:f2:d0:06:e8:06:56:9a:89:67:f2:
21:6e:6b:47:ad:aa:07:bb:ae:a9:4e:ac:7e:13:75:c6:85:81:
82:cf:82:36:3b:3d:1a:ec:fd:ef:0b:af:66:1d:3a:98:e8:9b:
ba:a7:e3:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:21:24 2026 by rpki-client