Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft
File: BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft (raw, json)
Hash identifier: raJSA/bVABRw1qM/hESG3scpkGYfaYInz9UXQkYdA70=
Subject key identifier: D5:96:E5:76:5F:33:71:9E:17:6C:9B:C0:FC:50:10:DB:FC:2D:A4:EE
Authority key identifier: 05:63:CB:26:3D:F5:0D:2D:4D:07:3C:0F:7D:B6:CD:27:76:30:2C:9D
Certificate issuer: /CN=0563cb263df50d2d4d073c0f7db6cd2776302c9d
Certificate serial: 019D9A3DE38D8C53A8865D6C87C248AAE089
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft
Manifest number: 08C6
Signing time: Fri 17 Apr 2026 07:00:40 +0000
Manifest this update: Fri 17 Apr 2026 07:00:40 +0000
Manifest next update: Sat 18 Apr 2026 07:00:40 +0000
Files and hashes: 1: 2mmNYgAAnRwmcSYBM0IDngosLA4.roa (hash: nY1bukKyfttyC/3iq1POePricYqJ+1Tih3NnE1gnsUY=)
2: BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl (hash: kCKF54cVHGUoRea1w+xh5Lh9gGO5+GWqSoZxVha3xAo=)
3: Cqx4m029JaVGdBM3t0xvlCEAgzo.roa (hash: S8GX6C9oLkw5v91FP9+Y195QY3e/NY9EwWhEqzGuxl4=)
4: NeQydQcKe8qY06oC_Afus8sEgJU.roa (hash: 0r3TCPzszCfKtmrF/kyaRrXpr8kuhtaBNUphvREHO1Y=)
5: O63vFzK4x5ZTpmdF6YhLh0H2JRM.roa (hash: C3eD55pIFuNUzJ0bW9R6W7B2wd3cNHOtGS7ITnUaMJ4=)
6: R2uWMDmb1YfPEwjrPUSRr3_QEN8.roa (hash: 6OW2Lx2+1h6iO9PfK83UIXHOzzd7YoT8ZZx73Dp3z4I=)
7: RPcV_46izWFvqHxYNAfwO4rfhNk.roa (hash: +Kcr18TyAtMOfswQ2AFElqR161EtCNJRdXOpxKjayu0=)
8: mdt2WXNNXfXIWBr0juHcaeQiifQ.roa (hash: o+Tkj+m9xGMj8hgnIqFHVjFiAA/cU9ZsV1bWB3LAgR8=)
9: zRt11Vund2Tf-7IALkPmk7aZkx4.roa (hash: z201PyhUCG8Ta577hbAhZW0ZrjPaSrja2N7Brq64aFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3d:e3:8d:8c:53:a8:86:5d:6c:87:c2:48:aa:e0:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0563cb263df50d2d4d073c0f7db6cd2776302c9d
Validity
Not Before: Apr 17 07:00:40 2026 GMT
Not After : Apr 18 07:00:40 2026 GMT
Subject: CN=d596e5765f33719e176c9bc0fc5010dbfc2da4ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b1:f8:f4:a4:73:92:7f:0b:e8:97:c0:3b:79:
38:4e:a5:e3:4c:c5:36:9f:49:c7:38:45:c0:f6:4a:
a2:43:ce:f7:61:ac:a6:e1:f3:55:44:39:0e:ba:7d:
97:e9:2b:6a:71:f7:db:e3:8e:43:ca:13:a2:91:c0:
e3:74:06:b7:29:77:ae:94:62:71:08:35:fe:c2:2a:
a3:d1:85:e5:2f:03:0e:69:89:be:51:a0:71:44:87:
2a:da:31:41:2c:a6:19:98:b3:e5:7e:d8:9c:45:2f:
e7:c6:e8:e8:ad:e1:04:dc:de:6d:39:cd:6f:3b:76:
dc:d8:d2:b4:c5:61:46:f1:03:6d:ce:10:fb:e7:ba:
9f:f3:22:02:fc:33:07:cc:9f:01:4a:a6:83:9e:52:
ba:20:4f:be:ff:06:8e:dd:9a:dc:86:82:73:26:01:
ea:d3:57:b0:1b:7d:62:4e:b2:66:d0:0d:be:18:fe:
55:df:01:6d:d7:86:f8:5e:c2:a4:c8:02:cd:b2:05:
fb:8d:cc:22:0b:9b:d0:73:2d:19:64:9c:af:78:18:
06:b1:3a:11:e1:34:97:63:17:88:d6:63:57:67:ea:
57:ec:fd:7d:c7:8e:5d:15:7d:58:41:f4:62:05:66:
7f:d7:e4:01:c3:90:eb:f6:4e:60:d0:b7:e6:20:00:
da:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:96:E5:76:5F:33:71:9E:17:6C:9B:C0:FC:50:10:DB:FC:2D:A4:EE
X509v3 Authority Key Identifier:
keyid:05:63:CB:26:3D:F5:0D:2D:4D:07:3C:0F:7D:B6:CD:27:76:30:2C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:c3:c5:7b:0b:8e:62:12:6f:e5:01:94:63:77:cf:9e:31:4d:
e8:46:88:fd:2a:93:8c:ae:fa:12:bf:f9:8f:8a:46:5e:71:ee:
3c:6f:ce:5a:cc:f7:1f:d5:1d:b6:35:21:7a:4a:be:02:61:d5:
d3:e0:2b:74:d5:20:2c:f7:be:d6:f3:7f:36:db:ad:3c:f3:fc:
23:bc:eb:34:55:5e:d4:12:dd:ee:94:77:43:c9:58:52:e6:8e:
ed:c7:df:13:f2:72:97:b1:3f:6e:2c:f7:81:81:6e:5b:f4:98:
01:fe:b1:1b:e1:a6:d9:04:28:f0:c5:55:08:49:ae:2a:24:27:
f8:17:2a:cd:94:73:1a:08:4c:8f:90:fb:31:c5:f2:dc:ae:4b:
d5:f5:45:5d:4d:16:1e:d6:af:cd:8b:a0:fc:10:e0:95:ff:b9:
d6:6d:32:60:76:81:fc:bd:ed:94:06:ef:28:6a:5a:98:3f:f4:
d5:8e:ad:1a:74:52:e7:a4:76:13:0e:bc:d1:bb:36:8c:ea:d9:
fc:f1:d6:70:7e:7a:cb:5a:fd:07:10:8b:b6:ce:fd:95:d1:a0:
72:8e:d5:0e:65:e4:e1:61:9c:c0:78:61:0c:b4:2f:b0:6d:c7:
6b:be:39:f0:16:51:b3:be:88:58:63:44:2b:be:07:41:e0:15:
ad:30:a9:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:16:55 2026 by rpki-client