Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft
File: BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft (raw, json)
Hash identifier: 4Dlu/hKZQNkOX+RwHLS1PKNKFTHpMij4imR2fv8x3nw=
Subject key identifier: 40:9F:25:51:77:77:74:8D:85:8D:1D:D0:85:0E:7D:45:42:BD:C1:EA
Authority key identifier: 05:53:C4:33:F6:C2:25:01:9D:9C:B5:A4:33:00:12:F4:C7:7A:1F:3E
Certificate issuer: /CN=0553c433f6c225019d9cb5a4330012f4c77a1f3e
Certificate serial: 019DA29C6573C9C8CE559243E5412EEBE18A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft
Manifest number: 18C3
Signing time: Sat 18 Apr 2026 22:00:51 +0000
Manifest this update: Sat 18 Apr 2026 22:00:51 +0000
Manifest next update: Sun 19 Apr 2026 22:00:51 +0000
Files and hashes: 1: BVPEM_bCJQGdnLWkMwAS9Md6Hz4.crl (hash: HNmEt0wMoZNAZR5bOE4w7ilT0qyPNs7E9cCc4mYBmtY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 22:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:9c:65:73:c9:c8:ce:55:92:43:e5:41:2e:eb:e1:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0553c433f6c225019d9cb5a4330012f4c77a1f3e
Validity
Not Before: Apr 18 22:00:51 2026 GMT
Not After : Apr 19 22:00:51 2026 GMT
Subject: CN=409f25517777748d858d1dd0850e7d4542bdc1ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ea:cc:fe:dc:e1:5d:41:f4:0b:8c:d7:ba:e4:
01:20:bf:b2:e4:6e:50:2b:82:be:d6:ba:7e:fa:a5:
45:2a:cb:3b:22:5c:18:0a:48:d1:c9:e1:9c:b8:3b:
ec:50:32:5d:f5:30:4d:6c:ad:25:52:04:e9:d6:27:
e6:f1:aa:f4:ca:61:ac:18:6a:9a:be:f0:1d:df:18:
c7:4d:16:0b:01:ca:57:6b:6f:fe:8e:89:09:13:6d:
12:01:02:a9:92:22:04:f7:a0:6a:e4:c9:f3:7b:c6:
f4:2a:c9:9f:82:8f:97:16:a8:42:e2:46:69:b2:8a:
5e:b7:12:8e:60:da:27:50:7b:56:fc:7e:97:43:78:
f7:4a:f1:12:f8:0c:1b:0e:96:dd:d6:a3:82:a1:20:
b6:24:57:24:84:01:45:65:e5:7c:74:4e:c4:de:c4:
b1:b3:53:73:35:cc:25:95:a0:40:1f:e8:f3:4f:f4:
95:07:9e:39:da:1e:48:74:ae:26:5c:81:56:3e:de:
3e:84:90:76:19:96:7e:ef:68:ea:fd:31:17:25:ab:
c7:98:07:d2:71:a5:27:8c:fa:f2:d4:ba:0b:7f:b2:
d2:96:03:af:73:b7:73:20:a6:0d:0e:23:f3:16:f1:
6f:ad:48:5d:d9:40:0f:b4:9f:ce:bf:4c:d6:77:98:
26:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:9F:25:51:77:77:74:8D:85:8D:1D:D0:85:0E:7D:45:42:BD:C1:EA
X509v3 Authority Key Identifier:
keyid:05:53:C4:33:F6:C2:25:01:9D:9C:B5:A4:33:00:12:F4:C7:7A:1F:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:df:44:93:fa:ac:2f:ef:0f:e4:e4:90:66:5f:04:9f:8b:2b:
84:bd:6a:13:b9:0e:7b:e0:6a:0d:8a:29:94:c4:f4:0b:1f:3d:
7b:43:ee:87:de:75:8c:27:51:af:95:f4:f5:1d:e3:f9:8b:3e:
db:3b:cd:0c:b3:9f:41:2d:f9:be:f1:ce:75:ca:d4:a4:eb:ae:
ed:98:0a:23:b0:7f:82:89:22:e8:08:61:e7:11:bc:1a:8e:6a:
c3:24:3d:e8:b5:b4:76:40:c6:c7:b4:27:92:e1:1c:cf:a6:36:
11:b9:67:11:c3:7e:b5:95:74:22:06:d5:7f:fc:9a:61:05:54:
dc:a6:7c:4e:f8:93:6c:32:59:11:6e:20:03:42:ad:e7:1b:bf:
fd:cc:6c:7d:9c:29:c8:16:89:85:6b:15:99:ff:f2:f0:ff:0d:
27:33:fc:9f:a2:25:d1:36:0f:e9:b4:b7:44:c1:e0:03:e1:57:
87:d0:51:a3:aa:17:ef:f5:24:4f:a9:91:c0:57:19:e9:83:d0:
37:6f:23:58:77:63:78:b7:a2:bf:e3:8e:dd:49:9b:2b:79:ea:
85:95:2b:e4:05:a9:9a:4d:d4:17:e1:a5:30:44:1b:4b:96:ca:
82:c7:76:2a:30:63:13:cd:cc:1e:68:17:7a:72:f5:b4:61:04:
b7:81:4f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:20:18 2026 by rpki-client