Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
File: BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft (raw, json)
Hash identifier: /k+2whLG4djfZzh2sw4zWyLhMvmMPy1djw/qiRadBw8=
Subject key identifier: 86:54:D5:5E:4C:E8:E4:8D:4A:A2:41:23:9C:ED:70:A3:0A:EA:5A:46
Authority key identifier: 04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
Certificate issuer: /CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Certificate serial: 019CAB6BBF0609C92B566ECF4B80733CC958
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
Manifest number: 0D2B
Signing time: Sun 01 Mar 2026 22:01:30 +0000
Manifest this update: Sun 01 Mar 2026 22:01:30 +0000
Manifest next update: Mon 02 Mar 2026 22:01:30 +0000
Files and hashes: 1: BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl (hash: wXisQDKiM1oMnscBXAMZOGmigzStTXLE2f0dY75lw8w=)
2: we5jn01Cx98OQV43_9pqKOC3HXA.roa (hash: s+Xsw2hTwbHWmllV0HmHTjp9ztGy7bm5p6ULJLREmd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:bf:06:09:c9:2b:56:6e:cf:4b:80:73:3c:c9:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Validity
Not Before: Mar 1 22:01:30 2026 GMT
Not After : Mar 2 22:01:30 2026 GMT
Subject: CN=8654d55e4ce8e48d4aa241239ced70a30aea5a46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:8f:5a:98:74:5a:51:82:79:1d:db:ef:d3:7c:
47:30:29:94:32:ee:39:fc:87:47:0b:50:b9:3d:06:
38:d9:65:b2:83:1f:a6:6c:4c:cb:ae:08:17:1a:1d:
e2:a3:12:5e:5f:61:5a:98:91:bb:ba:16:29:a9:7c:
1e:54:2f:8f:ef:84:9b:10:12:8e:e9:2b:43:e0:49:
b0:ef:b7:12:4e:47:12:be:00:c6:7f:ac:4e:6a:cb:
fe:5f:4a:29:79:78:86:99:67:f8:d2:4d:db:8d:cc:
3b:00:8a:36:6e:53:b8:1f:d6:b8:7c:a2:1b:86:b4:
f9:a0:38:54:48:f5:5d:64:ac:39:5f:a8:ad:39:39:
a1:45:eb:00:d6:36:c3:65:9b:bd:ea:19:46:66:11:
cb:4f:f3:c9:f6:b7:af:2f:b7:83:7f:cf:74:dc:a3:
19:b9:15:17:d7:8f:73:73:4d:a5:7c:10:aa:20:db:
cf:fe:64:9e:1a:01:6b:40:14:2e:60:3f:2f:9d:f4:
31:b6:8f:f1:07:d1:6f:ed:6d:50:e6:ec:79:f0:1e:
a6:2b:0c:19:72:6a:8e:74:79:94:70:05:24:68:4e:
3c:d0:25:2d:af:40:71:2c:7f:19:1b:f0:3e:0a:04:
ba:e3:56:ea:e8:0b:39:5a:16:da:c3:f4:18:f5:5e:
c7:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:54:D5:5E:4C:E8:E4:8D:4A:A2:41:23:9C:ED:70:A3:0A:EA:5A:46
X509v3 Authority Key Identifier:
keyid:04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:0e:c6:ca:ee:a7:07:04:2c:14:0d:cb:f3:61:45:ef:2c:f9:
29:5f:da:0b:3c:6e:5d:71:a3:6e:79:5a:65:2b:71:c7:0d:25:
47:2f:4f:29:15:18:67:99:33:fb:c1:95:6d:b2:b5:db:ad:4b:
63:e8:9b:d3:79:d2:84:e6:93:e3:f3:14:37:76:17:0f:40:98:
9f:8f:bb:aa:e2:34:8f:ff:fa:72:c7:ac:06:e1:db:f6:09:92:
ac:37:c0:c5:7a:9b:06:ee:8b:45:9f:ac:1e:48:c8:08:09:97:
72:c8:10:53:d5:1b:e2:37:5f:d0:a4:d5:00:c6:71:4d:aa:04:
1f:db:c3:28:93:4d:51:bb:25:8b:44:b6:f5:17:15:27:43:60:
ef:78:50:3d:04:97:15:97:36:17:dd:04:4c:59:8a:e1:fb:33:
b2:34:a9:a1:97:17:1b:06:9a:a9:c5:44:96:7f:37:1f:ab:44:
b1:06:86:08:34:eb:25:e8:91:c6:00:05:32:b6:e7:99:81:7c:
03:aa:72:fc:38:a7:7f:4c:d2:4e:c4:61:0e:57:0d:c6:2a:eb:
1b:b3:10:96:42:65:e5:f3:8b:70:78:18:9c:af:36:a9:da:f8:
b8:42:c8:a3:0b:b8:a8:55:2f:51:46:eb:89:78:29:5a:5e:a5:
bf:46:16:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyra78GCckrVm7PS4BzPMlYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0ZDI5MjExZjkyZTU2MGYwYjc4MzRiYjI5MzJhYzYzY2Fi
ZmExNGEwHhcNMjYwMzAxMjIwMTMwWhcNMjYwMzAyMjIwMTMwWjAzMTEwLwYDVQQD
Eyg4NjU0ZDU1ZTRjZThlNDhkNGFhMjQxMjM5Y2VkNzBhMzBhZWE1YTQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Y9amHRaUYJ5Hdvv03xHMCmUMu45
/IdHC1C5PQY42WWygx+mbEzLrggXGh3ioxJeX2FamJG7uhYpqXweVC+P74SbEBKO
6StD4Emw77cSTkcSvgDGf6xOasv+X0opeXiGmWf40k3bjcw7AIo2blO4H9a4fKIb
hrT5oDhUSPVdZKw5X6itOTmhResA1jbDZZu96hlGZhHLT/PJ9revL7eDf8903KMZ
uRUX149zc02lfBCqINvP/mSeGgFrQBQuYD8vnfQxto/xB9Fv7W1Q5ux58B6mKwwZ
cmqOdHmUcAUkaE480CUtr0BxLH8ZG/A+CgS641bq6As5Whbaw/QY9V7H5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIZU1V5M6OSNSqJBI5ztcKMK6lpGMB8GA1UdIwQY
MBaAFATSkhH5LlYPC3g0uykyrGPKv6FKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQk5LU0Vma3VWZzhMZURTN0tUS3NZOHFfb1VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mNmFjMzQtNmJjMy00MTdiLTgxNGQt
ZThkMTkyOTYzOTVjLzEvQk5LU0Vma3VWZzhMZURTN0tUS3NZOHFfb1VvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9mNmFjMzQtNmJjMy00MTdiLTgxNGQtZThkMTkyOTYzOTVj
LzEvQk5LU0Vma3VWZzhMZURTN0tUS3NZOHFfb1VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASg7Gyu6n
BwQsFA3L82FF7yz5KV/aCzxuXXGjbnlaZStxxw0lRy9PKRUYZ5kz+8GVbbK1261L
Y+ib03nShOaT4/MUN3YXD0CYn4+7quI0j//6csesBuHb9gmSrDfAxXqbBu6LRZ+s
HkjICAmXcsgQU9Ub4jdf0KTVAMZxTaoEH9vDKJNNUbsli0S29RcVJ0Ng73hQPQSX
FZc2F90ETFmK4fszsjSpoZcXGwaaqcVEln83H6tEsQaGCDTrJeiRxgAFMrbnmYF8
A6py/Dinf0zSTsRhDlcNxirrG7MQlkJl5fOLcHgYnK82qdr4uELIowu4qFUvUUbr
iXgpWl6lv0YWZw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 06:03:17 2026 by rpki-client