Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft
File: BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft (raw, json)
Hash identifier: XBos6EuGEpt2GHaHe31qK9ABl52M9TZswK1LWnWNEQA=
Subject key identifier: DA:5C:49:33:B4:63:0C:FA:07:5C:F1:71:EF:E2:04:F1:80:62:36:A8
Authority key identifier: 05:63:CB:26:3D:F5:0D:2D:4D:07:3C:0F:7D:B6:CD:27:76:30:2C:9D
Certificate issuer: /CN=0563cb263df50d2d4d073c0f7db6cd2776302c9d
Certificate serial: 019CACB4A0C76400FF4B524638F1C90E1E2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft
Manifest number: 084B
Signing time: Mon 02 Mar 2026 04:00:44 +0000
Manifest this update: Mon 02 Mar 2026 04:00:44 +0000
Manifest next update: Tue 03 Mar 2026 04:00:44 +0000
Files and hashes: 1: 2mmNYgAAnRwmcSYBM0IDngosLA4.roa (hash: nY1bukKyfttyC/3iq1POePricYqJ+1Tih3NnE1gnsUY=)
2: BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl (hash: IL2a6/6GE775/EerS69zhYxJv1qxwISndJPyuNV3mNk=)
3: Cqx4m029JaVGdBM3t0xvlCEAgzo.roa (hash: S8GX6C9oLkw5v91FP9+Y195QY3e/NY9EwWhEqzGuxl4=)
4: NeQydQcKe8qY06oC_Afus8sEgJU.roa (hash: 0r3TCPzszCfKtmrF/kyaRrXpr8kuhtaBNUphvREHO1Y=)
5: O63vFzK4x5ZTpmdF6YhLh0H2JRM.roa (hash: C3eD55pIFuNUzJ0bW9R6W7B2wd3cNHOtGS7ITnUaMJ4=)
6: R2uWMDmb1YfPEwjrPUSRr3_QEN8.roa (hash: 6OW2Lx2+1h6iO9PfK83UIXHOzzd7YoT8ZZx73Dp3z4I=)
7: RPcV_46izWFvqHxYNAfwO4rfhNk.roa (hash: +Kcr18TyAtMOfswQ2AFElqR161EtCNJRdXOpxKjayu0=)
8: mdt2WXNNXfXIWBr0juHcaeQiifQ.roa (hash: o+Tkj+m9xGMj8hgnIqFHVjFiAA/cU9ZsV1bWB3LAgR8=)
9: zRt11Vund2Tf-7IALkPmk7aZkx4.roa (hash: z201PyhUCG8Ta577hbAhZW0ZrjPaSrja2N7Brq64aFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:a0:c7:64:00:ff:4b:52:46:38:f1:c9:0e:1e:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0563cb263df50d2d4d073c0f7db6cd2776302c9d
Validity
Not Before: Mar 2 04:00:44 2026 GMT
Not After : Mar 3 04:00:44 2026 GMT
Subject: CN=da5c4933b4630cfa075cf171efe204f1806236a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d9:c9:7f:a7:68:01:91:55:e5:7e:a1:35:e6:
51:64:fb:23:22:42:df:06:54:15:a1:67:81:9d:88:
a9:43:5e:2c:26:c4:25:fe:81:81:0f:41:6c:f2:2a:
31:35:e2:82:c1:e9:1f:26:4c:da:9c:21:53:48:da:
b4:d8:63:13:7d:b1:3d:f8:38:2a:40:15:e2:fe:3a:
68:8c:7b:d0:79:3a:b2:1a:a8:4e:52:ae:86:b9:76:
97:28:f8:d5:ca:00:81:ae:30:df:19:41:f0:4b:d6:
24:23:b9:62:d1:51:69:e0:1e:f8:66:4e:b8:67:c2:
3c:3e:15:63:69:d1:7c:3a:c7:48:37:99:9e:31:f8:
50:1c:75:36:61:e4:f9:7a:51:c7:93:9e:84:ff:45:
4c:0f:b6:95:c0:ca:c5:2e:5f:1d:a2:d3:71:74:9b:
2e:30:16:65:20:62:ce:6c:59:f4:29:8e:3c:5d:23:
de:e6:4e:ce:d7:cb:96:a4:fe:9e:8e:28:d5:48:45:
3f:79:e9:2a:a8:54:23:b4:05:c2:66:62:55:e6:b8:
7d:f8:f3:46:38:39:3d:a1:a3:68:73:1d:cb:32:51:
df:b0:f1:0d:32:3b:5a:f6:b8:a4:b5:38:40:d7:19:
52:e2:b3:3b:0e:e6:93:03:00:1c:12:44:47:a4:34:
13:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:5C:49:33:B4:63:0C:FA:07:5C:F1:71:EF:E2:04:F1:80:62:36:A8
X509v3 Authority Key Identifier:
keyid:05:63:CB:26:3D:F5:0D:2D:4D:07:3C:0F:7D:B6:CD:27:76:30:2C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:ad:a4:66:89:bd:04:00:9d:de:26:72:a1:7c:8c:f9:02:ac:
cc:4b:79:b9:81:f7:cc:f6:71:d0:73:d0:74:d5:cc:72:c1:ee:
ac:99:36:21:83:05:2d:7d:cc:a5:b6:59:6c:41:47:83:1c:6b:
b1:f6:3a:8d:7d:43:d3:3b:ac:e0:6d:41:75:9d:62:ea:8d:c8:
85:e6:c9:2b:bf:e0:db:15:cb:8f:d7:2a:88:b2:8c:17:3a:46:
5d:d3:01:30:73:a6:3b:00:18:27:8f:e0:d2:f8:0c:f0:8a:9a:
8c:80:06:25:4b:23:3e:9d:9d:e1:97:2c:ba:8a:1f:67:7c:77:
c4:46:07:0a:bb:f8:a4:b2:fe:61:3e:2a:1c:9c:18:a8:23:79:
dc:ed:b4:b7:5e:e1:46:2f:40:83:85:b0:00:6e:a2:cc:4d:51:
7b:db:29:6e:d5:57:38:3f:6e:b2:d8:d2:ef:35:1e:05:f9:8b:
db:59:1d:77:f6:48:4a:77:1d:1f:bf:d1:4b:84:f3:06:d9:c8:
8d:5b:7e:10:ba:0f:0f:a3:0a:df:0d:22:99:09:7e:04:68:9f:
93:e4:cf:7f:06:61:af:19:35:67:e5:54:d3:eb:02:3c:aa:2e:
d4:72:20:09:f8:ba:79:75:6a:21:d9:9e:00:6b:38:b3:bc:9a:
ca:dd:30:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:18:29 2026 by rpki-client