Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
File: BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft (raw, json)
Hash identifier: A96T60KbY1gXIVMwuiiMLTX5hAbu9NiyRhLSTwNeExY=
Subject key identifier: AA:2E:91:42:B4:4E:AF:56:B1:52:44:BB:A8:D1:9E:17:10:FD:B4:99
Authority key identifier: 04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
Certificate issuer: /CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Certificate serial: 019D9AE397F83AAB5C8DB9DBD96C867A7C54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
Manifest number: 0DA7
Signing time: Fri 17 Apr 2026 10:01:39 +0000
Manifest this update: Fri 17 Apr 2026 10:01:39 +0000
Manifest next update: Sat 18 Apr 2026 10:01:39 +0000
Files and hashes: 1: BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl (hash: rPciPgnBeOUQctYENdNvahXQljKiVNmmmc/GEbIIUuU=)
2: we5jn01Cx98OQV43_9pqKOC3HXA.roa (hash: s+Xsw2hTwbHWmllV0HmHTjp9ztGy7bm5p6ULJLREmd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:97:f8:3a:ab:5c:8d:b9:db:d9:6c:86:7a:7c:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Validity
Not Before: Apr 17 10:01:39 2026 GMT
Not After : Apr 18 10:01:39 2026 GMT
Subject: CN=aa2e9142b44eaf56b15244bba8d19e1710fdb499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a7:7c:ce:11:b6:2e:bf:16:b6:fe:56:af:bd:
1d:49:fe:d6:da:e0:a3:c0:ab:71:93:5b:f7:36:9c:
7f:38:29:17:6a:3d:e1:fc:0c:27:33:25:6c:31:92:
f4:78:c8:0e:6d:56:8a:05:77:ff:83:f0:6b:ad:31:
21:91:85:f0:97:9b:d9:ca:bf:5e:e7:21:b3:b6:e5:
f2:9e:24:fe:7f:a1:64:52:1c:39:28:c1:88:a6:58:
f7:f1:9e:1d:48:e3:b4:d1:2d:83:81:aa:1c:93:50:
fe:07:6c:0e:27:52:92:60:f4:1e:14:3a:e6:ce:74:
56:d5:df:26:e0:01:54:26:65:4f:b8:ed:16:95:b2:
2e:b0:f8:6c:90:46:d5:7b:7c:53:94:aa:1d:09:25:
b4:c0:4e:a0:fc:3f:25:9f:5b:ff:5a:f8:91:8c:74:
c9:51:0d:e5:ad:25:e0:62:f5:d5:e2:97:7f:01:97:
00:69:62:dc:8d:aa:d3:b8:a5:cb:2b:c3:4e:f0:2d:
c0:25:71:fc:47:cb:7e:9d:1a:63:8e:66:b7:ac:07:
a8:a2:a3:b3:72:59:56:f9:7a:0d:6d:97:c6:55:45:
9b:46:f5:23:09:3d:83:7e:14:26:11:b7:6c:cf:f4:
f2:d1:8c:ac:8c:9a:ca:71:01:72:95:b5:18:31:2a:
65:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:2E:91:42:B4:4E:AF:56:B1:52:44:BB:A8:D1:9E:17:10:FD:B4:99
X509v3 Authority Key Identifier:
keyid:04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d5:26:84:23:b0:1c:8a:02:3a:a6:11:6d:00:1f:bb:da:12:05:
9e:cd:6d:41:35:66:8d:1d:ce:f0:60:dc:b0:e5:c9:e8:ea:0a:
af:e8:f7:8b:18:86:5a:83:b1:1a:b2:75:f0:3b:4d:31:1f:51:
93:90:e5:2d:67:9d:00:85:10:87:9d:06:4a:b6:6b:20:72:cd:
0b:4d:4b:0d:35:a0:3e:44:57:2b:0a:ba:d5:71:2a:8d:8f:6e:
63:d9:c0:2d:77:0e:c9:02:83:fa:f8:5b:d5:a6:50:a1:d1:d1:
4e:63:87:dd:82:90:b7:31:1a:c7:01:6c:14:a7:b3:4c:28:84:
c4:50:55:2e:71:a2:62:89:db:7a:e5:c3:94:ec:88:55:ca:3c:
81:a9:b1:7f:b8:d9:2a:a0:de:86:95:ed:0b:63:f3:98:9e:e3:
f7:ae:0b:3a:5c:76:4a:ba:0d:90:7f:f6:ad:43:a0:40:ac:6e:
08:ec:d4:9d:da:2b:3b:62:e3:58:1f:d5:30:58:2d:d9:98:0a:
03:d2:22:9f:db:e8:47:b9:d7:79:0f:18:99:76:f9:7c:43:50:
f2:b0:a0:6c:55:1d:0d:80:74:37:b7:54:fd:e0:a4:83:41:d5:
44:86:ee:69:70:5f:e1:e7:f7:63:bf:93:9b:66:8e:5d:1c:d6:
0f:ec:24:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:32:21 2026 by rpki-client