Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.mft
File: BpSFf1Ib4h4SZzna13O05qGKxps.mft (raw, json)
Hash identifier: RuEaypsGq613u1ykido+MVRyQw+Hb65RSPmZu8D322k=
Subject key identifier: 13:C7:F5:91:BC:2C:A4:BF:BB:28:6C:69:89:50:10:FE:20:08:A5:FE
Authority key identifier: 06:94:85:7F:52:1B:E2:1E:12:67:39:DA:D7:73:B4:E6:A1:8A:C6:9B
Certificate issuer: /CN=0694857f521be21e126739dad773b4e6a18ac69b
Certificate serial: 019D98F46D568AE9747AFFEF7F162E21D6BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpSFf1Ib4h4SZzna13O05qGKxps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.mft
Manifest number: 0C01
Signing time: Fri 17 Apr 2026 01:00:48 +0000
Manifest this update: Fri 17 Apr 2026 01:00:48 +0000
Manifest next update: Sat 18 Apr 2026 01:00:48 +0000
Files and hashes: 1: BpSFf1Ib4h4SZzna13O05qGKxps.crl (hash: ilUf3zFTZNS9UUlRARXwJhpg0H9F14L9JXIzR1omIAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.mft
rsync://rpki.ripe.net/repository/DEFAULT/BpSFf1Ib4h4SZzna13O05qGKxps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:6d:56:8a:e9:74:7a:ff:ef:7f:16:2e:21:d6:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0694857f521be21e126739dad773b4e6a18ac69b
Validity
Not Before: Apr 17 01:00:48 2026 GMT
Not After : Apr 18 01:00:48 2026 GMT
Subject: CN=13c7f591bc2ca4bfbb286c69895010fe2008a5fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6c:99:e6:76:67:9a:ec:38:dd:1b:4f:97:bc:
25:26:49:55:51:ff:9f:73:f3:37:86:67:b7:d4:ec:
77:f3:09:c9:df:1b:74:76:fe:be:92:66:2a:1b:c6:
21:1f:f0:c3:00:47:87:3e:d5:8d:73:ad:fa:e2:8b:
bf:d9:ea:21:d4:28:34:1d:a3:4b:5a:02:40:c9:0b:
c7:b0:69:3f:41:af:dd:47:cf:25:7b:f8:3d:30:0d:
7b:c8:c2:5a:68:55:e0:1e:65:d5:87:d4:2b:48:3b:
90:52:d0:c6:8b:b8:3a:22:f6:61:ee:bc:e7:02:2e:
d3:68:8c:2d:2f:ad:4d:0b:40:a5:c5:d7:f9:1c:65:
91:8f:ea:9f:46:72:3f:df:a3:6f:a2:c5:a1:bd:62:
d5:16:09:14:fb:c1:a5:93:bf:aa:bb:18:83:f4:5d:
4b:69:bb:0b:ac:4f:4b:8a:ef:64:b4:26:ae:f8:48:
b3:e7:7c:4b:6b:39:f3:d8:fd:33:a6:b5:27:d5:f3:
19:f9:7a:69:6d:12:be:95:b9:33:96:4a:f2:79:75:
be:13:40:05:10:e8:6f:35:f6:65:44:7a:ea:35:41:
42:42:4d:2d:b6:c7:37:1e:70:04:e8:c0:48:0d:10:
eb:2f:a3:84:8e:83:7a:32:06:2c:ca:56:93:d6:db:
85:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:C7:F5:91:BC:2C:A4:BF:BB:28:6C:69:89:50:10:FE:20:08:A5:FE
X509v3 Authority Key Identifier:
keyid:06:94:85:7F:52:1B:E2:1E:12:67:39:DA:D7:73:B4:E6:A1:8A:C6:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpSFf1Ib4h4SZzna13O05qGKxps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:73:87:bf:12:88:05:f6:68:ca:4c:68:16:e2:8a:21:b1:2c:
f5:c0:a5:f5:ce:eb:ae:68:c2:6d:49:2f:3c:03:4c:c1:c3:a9:
9c:a4:c1:24:80:ba:de:0c:6c:81:44:d7:96:64:14:99:89:db:
26:6c:c4:2e:c7:8a:5c:51:3a:f9:f0:5f:5a:5a:54:fe:70:93:
57:51:d6:23:98:83:c3:fd:9a:91:46:72:c5:98:84:a1:0b:39:
83:32:d4:b2:11:00:af:71:fe:ba:aa:9b:3f:68:b7:d9:35:b1:
96:56:e7:1f:98:82:fa:34:6b:c6:e3:d4:28:18:90:bd:91:79:
a0:25:50:a7:64:7c:7f:ed:6c:9f:66:25:b1:24:08:a5:49:4b:
3e:24:35:62:22:b2:51:72:f5:29:ec:35:b2:22:25:50:38:5c:
b5:f7:80:3f:11:a9:4d:70:f5:a4:67:02:8a:5f:29:3d:76:ac:
8b:54:80:c9:33:69:5b:85:59:ec:53:e1:42:92:5f:0d:bf:1a:
f0:a0:dd:cc:45:cf:37:af:eb:59:31:02:23:6b:84:20:c7:f8:
ef:1a:02:bc:be:e8:e0:a5:8f:da:83:95:d6:28:35:51:b2:dc:
e2:9a:aa:58:a3:9c:b2:3d:3c:fb:0e:8d:be:fc:47:02:50:58:
b6:93:0f:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:31:42 2026 by rpki-client