Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft
File: BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft (raw, json)
Hash identifier: ggNbsSrtpTZX/4VilTAGKhw6wOydLo9oH67kOmZZtVU=
Subject key identifier: 54:39:09:31:09:18:5F:AF:31:FC:D7:23:E4:AF:EE:5C:BC:73:A9:1F
Authority key identifier: 05:53:C4:33:F6:C2:25:01:9D:9C:B5:A4:33:00:12:F4:C7:7A:1F:3E
Certificate issuer: /CN=0553c433f6c225019d9cb5a4330012f4c77a1f3e
Certificate serial: 019CAB6B70AD725242E31C66752D1A5BEC28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft
Manifest number: 1843
Signing time: Sun 01 Mar 2026 22:01:10 +0000
Manifest this update: Sun 01 Mar 2026 22:01:10 +0000
Manifest next update: Mon 02 Mar 2026 22:01:10 +0000
Files and hashes: 1: BVPEM_bCJQGdnLWkMwAS9Md6Hz4.crl (hash: J6l7jKpaJZPfayhq+FBldcrLJ2YxvruiTlBWGus9e+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:70:ad:72:52:42:e3:1c:66:75:2d:1a:5b:ec:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0553c433f6c225019d9cb5a4330012f4c77a1f3e
Validity
Not Before: Mar 1 22:01:10 2026 GMT
Not After : Mar 2 22:01:10 2026 GMT
Subject: CN=5439093109185faf31fcd723e4afee5cbc73a91f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:83:eb:5c:d8:a0:84:48:38:f6:37:10:c3:80:
2c:7f:9a:d8:50:7e:3c:1c:0b:88:8f:53:0f:43:9a:
e4:07:e2:4c:58:c5:2a:fc:1d:dd:68:ae:ab:7a:4f:
25:bd:b3:19:9f:72:19:d1:8e:cd:95:fb:f8:7a:04:
07:63:e0:4f:22:f9:5f:79:9a:81:cc:b5:d7:85:2b:
35:5e:13:d3:65:e1:f9:de:70:d5:1b:04:66:1d:df:
ac:67:83:41:8c:24:6d:80:63:4b:1e:6c:c3:c6:96:
6f:43:2d:f0:83:32:d9:8c:96:c0:1f:e4:f1:36:f1:
44:67:4b:18:e7:ab:42:a2:0e:83:8d:af:a1:7b:79:
63:20:d0:61:87:ee:fa:ac:fb:cf:4c:a0:21:e0:22:
7d:14:cc:54:d1:c2:70:e9:49:c0:ba:28:c3:31:46:
9e:4b:5c:10:55:ad:8b:d1:7f:97:9a:d1:11:45:13:
2b:f4:e7:81:9f:47:4b:93:fb:2a:1c:af:e9:d9:a3:
b2:a3:1b:71:74:73:e9:e1:ef:2e:bc:61:57:6b:7d:
2a:68:78:69:45:8b:08:a4:02:49:6f:00:9e:3a:49:
5e:43:fa:8b:a1:80:4e:99:c3:1e:14:13:05:2c:51:
1c:60:d8:aa:bc:3c:d9:82:be:3b:7b:18:98:2c:7e:
d4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:39:09:31:09:18:5F:AF:31:FC:D7:23:E4:AF:EE:5C:BC:73:A9:1F
X509v3 Authority Key Identifier:
keyid:05:53:C4:33:F6:C2:25:01:9D:9C:B5:A4:33:00:12:F4:C7:7A:1F:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:80:58:44:b1:08:9b:b3:c0:c3:a0:e3:e7:2c:e4:f3:cb:0f:
3f:db:2d:9f:a7:fe:1a:9b:25:03:33:7b:ec:b3:82:07:d6:ac:
27:13:cf:cc:7b:79:3f:e2:70:56:a5:2e:9c:05:6a:3f:43:15:
f1:4e:62:ce:ae:68:25:b7:3d:21:6a:ac:57:ac:63:f1:63:5b:
2a:69:5c:ee:a7:a4:89:55:af:55:9c:9e:b2:06:dd:5c:8f:9e:
a7:a6:8e:59:af:70:82:54:60:75:d1:89:2c:2d:f9:b2:1b:ba:
a7:36:e0:06:61:bc:ff:6d:7b:9b:93:76:e8:eb:5b:ee:9d:59:
04:3d:a0:c5:4b:cc:08:41:48:87:ae:5d:c3:2e:85:80:dc:e4:
4f:50:93:c3:48:a0:b9:4b:83:9d:0f:34:81:b9:d3:f3:5a:5c:
73:7e:6f:c9:82:3e:fe:84:37:76:36:5c:db:1a:33:7c:d6:61:
07:23:c7:57:79:fd:d2:26:74:e6:a4:07:09:00:e3:a0:82:e5:
0d:79:fa:cc:91:e9:7a:a7:e7:b4:a0:d7:1a:39:41:2a:20:fd:
cb:dc:af:63:e8:04:d3:4d:64:1c:5e:9b:b5:7b:1d:f2:ee:39:
d1:43:48:bd:1c:22:a1:d4:27:17:60:84:04:b6:6e:c8:3a:de:
46:67:5c:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:30:21 2026 by rpki-client