Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/ef6461-a0ef-4c19-9e1d-f223dacb6017/1/Bc5N0ogBsoO_hRtcANAOuLUUpVo.mft
File: Bc5N0ogBsoO_hRtcANAOuLUUpVo.mft (raw, json)
Hash identifier: VH3hB6BVYHlpixtIRBRHJjwOM9YtHQ6My4OXmKwsxKQ=
Subject key identifier: C1:57:20:F9:C8:C5:10:21:3F:B8:6C:A3:2A:BD:6D:B9:E1:AA:28:D9
Authority key identifier: 05:CE:4D:D2:88:01:B2:83:BF:85:1B:5C:00:D0:0E:B8:B5:14:A5:5A
Certificate issuer: /CN=05ce4dd28801b283bf851b5c00d00eb8b514a55a
Certificate serial: 019CAB348B3EAA6F9FF61924A6F8EE9D9131
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bc5N0ogBsoO_hRtcANAOuLUUpVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/ef6461-a0ef-4c19-9e1d-f223dacb6017/1/Bc5N0ogBsoO_hRtcANAOuLUUpVo.mft
Manifest number: 0538
Signing time: Sun 01 Mar 2026 21:01:13 +0000
Manifest this update: Sun 01 Mar 2026 21:01:13 +0000
Manifest next update: Mon 02 Mar 2026 21:01:13 +0000
Files and hashes: 1: Bc5N0ogBsoO_hRtcANAOuLUUpVo.crl (hash: LKo/eoN1uxF+EHytuxnrWsIRY0VMWgxNFHsLpSlYtYk=)
2: hcqZCPDvPSfZpsnstBmJSYUoG0E.roa (hash: 2rsfgP2jZdPy9F0m+kXCLPK5gqhv9//1FnvVgzLaUiw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/ef6461-a0ef-4c19-9e1d-f223dacb6017/1/Bc5N0ogBsoO_hRtcANAOuLUUpVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/ef6461-a0ef-4c19-9e1d-f223dacb6017/1/Bc5N0ogBsoO_hRtcANAOuLUUpVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/Bc5N0ogBsoO_hRtcANAOuLUUpVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:8b:3e:aa:6f:9f:f6:19:24:a6:f8:ee:9d:91:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ce4dd28801b283bf851b5c00d00eb8b514a55a
Validity
Not Before: Mar 1 21:01:13 2026 GMT
Not After : Mar 2 21:01:13 2026 GMT
Subject: CN=c15720f9c8c510213fb86ca32abd6db9e1aa28d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:32:99:be:4e:9a:6e:45:ae:47:57:ef:89:5a:
0c:6d:18:ad:07:89:9d:cb:bf:fc:ea:9a:e6:35:75:
e2:fb:ad:d0:62:91:4a:60:a8:0a:fa:66:24:90:1b:
a4:38:cb:a7:e8:cc:4b:8a:84:d2:ac:d7:f8:85:a2:
0d:76:1e:f0:8f:05:39:65:1a:8f:e4:98:23:e6:f5:
68:22:c2:2a:a1:7a:55:5a:1a:c6:cd:c3:a7:30:9d:
0d:cc:89:1c:28:47:95:5d:5f:54:38:50:86:3f:35:
08:b3:1d:a9:52:c4:f3:5b:0d:8c:f4:d4:a4:33:f1:
0e:5e:1e:c3:e4:20:04:b9:b9:8f:ec:6f:b9:11:f9:
c5:44:b5:36:f0:98:4c:69:8c:da:31:ed:7b:7b:d1:
8f:f6:21:07:a7:ea:36:85:9a:2c:76:6b:09:4c:9e:
7c:0a:25:fc:25:87:40:1a:bf:44:0e:07:54:c9:ca:
b1:2b:25:76:d1:5f:57:2d:d4:28:0b:f2:1a:e2:8b:
d1:db:cb:03:64:3d:1a:df:b6:8e:a5:37:81:29:2f:
b1:86:d2:0c:fa:9c:43:7f:8e:12:80:02:17:0e:ee:
74:5c:78:7d:10:a2:b2:42:f9:56:84:74:11:23:8e:
7c:8c:f4:21:a2:18:0e:5b:4e:d1:5f:ae:9a:fd:9e:
14:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:57:20:F9:C8:C5:10:21:3F:B8:6C:A3:2A:BD:6D:B9:E1:AA:28:D9
X509v3 Authority Key Identifier:
keyid:05:CE:4D:D2:88:01:B2:83:BF:85:1B:5C:00:D0:0E:B8:B5:14:A5:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bc5N0ogBsoO_hRtcANAOuLUUpVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/ef6461-a0ef-4c19-9e1d-f223dacb6017/1/Bc5N0ogBsoO_hRtcANAOuLUUpVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/ef6461-a0ef-4c19-9e1d-f223dacb6017/1/Bc5N0ogBsoO_hRtcANAOuLUUpVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:16:5a:d1:1a:37:a9:15:c7:c9:42:60:c9:a9:82:2c:23:69:
ac:a9:55:b3:8f:0d:5a:4d:90:e3:ce:91:fe:f0:36:62:d3:10:
2d:e5:3a:f4:0e:f6:cd:cc:ea:15:04:30:57:41:2b:e2:2e:3a:
aa:d8:d0:05:01:f0:7c:ec:6b:57:c1:9a:8c:d5:9b:ad:f6:e7:
3a:91:7c:05:36:e9:03:a7:49:3f:b2:f1:81:0e:34:d3:eb:c4:
40:fe:dd:bb:72:1f:a2:ed:de:ef:b2:9e:61:31:29:54:be:1b:
42:d5:e6:41:2f:5c:a4:32:63:13:9f:84:a6:7d:4f:2c:aa:e9:
35:5c:b4:a2:10:ec:3d:ec:78:68:4a:a9:cb:cb:24:3d:54:1d:
c9:ed:a4:6e:67:fb:40:de:80:f2:32:54:e8:29:03:85:e1:84:
ba:77:39:8f:31:31:e9:0d:b5:3e:fd:78:42:23:80:c3:b5:f7:
3f:8b:ac:03:6d:21:d8:7c:78:29:fa:64:80:61:22:32:c4:c3:
0a:81:52:58:bb:29:02:3b:ae:d5:5e:72:c9:48:d2:56:75:e2:
85:9e:36:46:7b:07:ba:f7:06:b0:44:f7:a8:bb:1f:a4:e4:7d:
30:c9:f7:00:80:ef:7b:16:7b:7c:6e:fe:93:dd:da:f9:e8:c3:
1f:70:c6:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:59:09 2026 by rpki-client