Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft
File: BqTBjS4g22T_nbUpKzefU4t2oVE.mft (raw, json)
Hash identifier: zl7KMQJQmtRCxCAax4L5RVbzxqCL7MyYZJ38dHQ5N/k=
Subject key identifier: 84:13:01:CF:18:7E:39:95:2F:79:2E:54:1A:8E:2F:51:63:2D:B7:FE
Authority key identifier: 06:A4:C1:8D:2E:20:DB:64:FF:9D:B5:29:2B:37:9F:53:8B:76:A1:51
Certificate issuer: /CN=06a4c18d2e20db64ff9db5292b379f538b76a151
Certificate serial: 019D99623E788EED7C324C95219DC1CB5A87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft
Manifest number: 0FBF
Signing time: Fri 17 Apr 2026 03:00:45 +0000
Manifest this update: Fri 17 Apr 2026 03:00:45 +0000
Manifest next update: Sat 18 Apr 2026 03:00:45 +0000
Files and hashes: 1: BqTBjS4g22T_nbUpKzefU4t2oVE.crl (hash: n9yE9lzXSvJ10wDYUO6FKTCpm6Mwg+8w+LAJBBnRqZI=)
2: zv32VZMT2QpjwCNJQuKZWRRffIQ.roa (hash: kObmfO3vi0I5D4zj8YBTzKwtPE3NArat9hAGR+jsK8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft
rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:3e:78:8e:ed:7c:32:4c:95:21:9d:c1:cb:5a:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06a4c18d2e20db64ff9db5292b379f538b76a151
Validity
Not Before: Apr 17 03:00:45 2026 GMT
Not After : Apr 18 03:00:45 2026 GMT
Subject: CN=841301cf187e39952f792e541a8e2f51632db7fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:67:b5:20:a2:de:4f:7d:3c:ab:34:26:b0:bc:
cb:e1:88:d6:d3:0d:e5:34:ff:52:46:e7:17:ca:fb:
0e:5b:73:b4:bb:23:c4:5b:04:20:cf:17:35:4d:fc:
7b:f5:8b:b7:b9:0c:c9:18:3e:90:7c:1d:af:75:36:
5a:0b:de:3a:ed:e4:2f:38:a6:e0:c9:98:69:ad:e3:
ac:5c:ff:b3:b8:48:e1:fe:ab:14:55:0c:c5:1a:a7:
d8:a6:89:77:69:0d:7b:1d:6f:24:38:85:1d:83:e4:
ca:b9:0d:32:64:d4:27:42:8a:9c:c9:1c:82:61:74:
d4:01:89:88:d8:29:8d:00:22:9e:dc:c1:90:73:db:
3f:10:2d:00:f8:0c:63:02:6c:df:6c:4e:6a:73:eb:
3a:6e:84:25:82:f3:68:70:2a:76:50:fa:8c:0f:e5:
39:58:5c:4d:4d:7f:73:c0:9d:67:8f:e3:7c:db:de:
0b:f5:18:ed:b4:d4:5f:8c:72:94:32:b6:28:d0:36:
64:b8:6b:45:51:d4:56:1f:cc:71:59:67:8c:be:96:
3b:16:65:02:26:01:2d:f7:31:d4:f3:bd:19:26:eb:
1c:cd:40:05:b7:f9:c4:ab:c9:79:7b:33:c0:f5:34:
70:b0:40:cc:b3:7d:68:82:86:01:c8:90:4d:64:c6:
49:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:13:01:CF:18:7E:39:95:2F:79:2E:54:1A:8E:2F:51:63:2D:B7:FE
X509v3 Authority Key Identifier:
keyid:06:A4:C1:8D:2E:20:DB:64:FF:9D:B5:29:2B:37:9F:53:8B:76:A1:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:03:f2:e6:5b:4c:5b:5a:0d:d8:68:28:88:61:96:f0:ac:6c:
26:54:59:b3:cc:9c:b8:14:b5:80:91:63:fa:1a:1c:8d:91:28:
5d:90:f9:8a:6d:af:50:e1:d5:0c:e5:2a:15:d8:ad:32:a0:f5:
70:ee:67:74:f3:11:0c:44:62:47:80:36:c9:19:78:74:7f:c6:
c5:1f:fb:aa:76:25:36:f7:c7:72:59:ec:25:f0:63:88:05:b9:
7c:83:a7:ae:cb:fc:d1:ad:dc:4d:2a:e4:c8:eb:d4:3f:1b:7a:
e8:5b:3b:b7:95:9d:b5:95:cf:a7:17:a4:be:f0:93:26:a6:08:
2c:42:df:fc:2d:e2:1c:10:9c:d1:ce:89:69:ab:6d:d1:e2:03:
23:76:95:ab:cc:16:73:50:2e:d6:cf:70:f2:32:7d:01:a4:68:
e6:6d:9f:fd:bf:4c:52:37:8e:36:30:9e:c0:d6:7c:9a:92:11:
69:05:ce:8c:25:5a:43:3b:08:40:b8:d1:bf:fc:46:9d:35:ed:
fc:4f:1a:44:8a:2a:85:1e:bf:71:f9:f4:dc:5e:fe:97:b5:d9:
e8:35:44:d3:eb:37:17:9f:85:97:91:53:b4:24:c0:61:6c:af:
f3:b2:dd:a2:6c:0e:67:f7:12:29:fe:27:46:17:ab:b2:d0:82:
73:46:fb:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:25:36 2026 by rpki-client