Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
File: BKnP8kmB1yY9G31jd59dZz3ivbw.mft (raw, json)
Hash identifier: fwfXaqCngH4ydTfU2Em27MEkbffH6RM0LKH68R5ZiCk=
Subject key identifier: 72:AB:3D:BE:29:F4:E1:2C:E0:FA:5D:42:3A:04:85:68:4B:B6:AF:EC
Authority key identifier: 04:A9:CF:F2:49:81:D7:26:3D:1B:7D:63:77:9F:5D:67:3D:E2:BD:BC
Certificate issuer: /CN=04a9cff24981d7263d1b7d63779f5d673de2bdbc
Certificate serial: 019CACB48C76FDCAB4DDD02F9BAEFB6B9491
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKnP8kmB1yY9G31jd59dZz3ivbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
Manifest number: 184A
Signing time: Mon 02 Mar 2026 04:00:39 +0000
Manifest this update: Mon 02 Mar 2026 04:00:39 +0000
Manifest next update: Tue 03 Mar 2026 04:00:39 +0000
Files and hashes: 1: BKnP8kmB1yY9G31jd59dZz3ivbw.crl (hash: o1AZ99nE/RkpRnZYUfPT++Cg6DV59dMNIQNQHjDZfNo=)
2: I1mm66oM2FV4eaJVlqE4cO8L7zY.roa (hash: ukmH8m+pY6kpoWVsiBBxCRnRwFuMJQWX3qtjANjdYes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BKnP8kmB1yY9G31jd59dZz3ivbw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:8c:76:fd:ca:b4:dd:d0:2f:9b:ae:fb:6b:94:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a9cff24981d7263d1b7d63779f5d673de2bdbc
Validity
Not Before: Mar 2 04:00:39 2026 GMT
Not After : Mar 3 04:00:39 2026 GMT
Subject: CN=72ab3dbe29f4e12ce0fa5d423a0485684bb6afec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:90:bc:fc:bd:25:fd:8e:75:a3:af:f3:9b:d4:
f3:55:f1:b2:2b:78:c9:f1:34:d6:0e:2c:a8:16:6f:
c6:bd:58:18:1d:7b:3f:ce:8b:16:6e:2e:00:99:20:
f1:fc:3e:8f:5f:c8:00:92:e6:43:6f:0a:e4:8c:53:
43:39:1b:6d:2a:ca:f7:86:24:20:99:70:65:a4:41:
ab:91:52:01:3f:f6:45:25:52:72:91:31:24:0a:f3:
d3:72:8a:81:f3:eb:a0:e0:70:a0:04:57:8c:85:19:
97:6c:1f:ba:7d:3a:3b:7e:0d:ec:59:d7:ac:eb:1b:
12:3f:be:0e:e1:02:b7:c8:7f:7e:1f:a5:cc:12:d6:
25:27:97:04:0a:47:93:3f:ac:a4:44:88:75:eb:c9:
65:a3:a5:57:6b:bf:15:63:7f:0a:b5:8f:59:00:75:
53:ad:2c:cc:40:e5:e8:19:fe:33:41:4f:5e:8e:f9:
81:9a:e8:6d:8e:44:03:77:d5:52:0c:99:5f:0b:c1:
b7:cf:29:87:89:12:4e:4b:c5:08:5b:f4:cd:e9:29:
7a:e6:32:cc:4b:8c:21:70:be:66:c1:d0:ad:aa:2c:
57:f5:96:1f:96:a2:3e:57:fa:42:6a:e4:52:f2:dc:
6c:29:63:27:2c:fe:71:5f:e8:bd:f1:d6:c7:53:40:
16:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:AB:3D:BE:29:F4:E1:2C:E0:FA:5D:42:3A:04:85:68:4B:B6:AF:EC
X509v3 Authority Key Identifier:
keyid:04:A9:CF:F2:49:81:D7:26:3D:1B:7D:63:77:9F:5D:67:3D:E2:BD:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKnP8kmB1yY9G31jd59dZz3ivbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:a9:3e:56:54:79:d8:74:3d:d2:6e:84:fa:9e:59:a6:77:20:
f1:de:d1:9c:0d:84:50:1f:00:e9:3a:fc:82:ac:ff:80:af:75:
19:b5:5f:b6:9f:a8:f0:95:64:00:c1:2e:25:e6:e1:c5:6a:8a:
6b:e1:5b:9c:d6:d0:6e:54:27:61:94:c9:89:f5:59:c8:9e:94:
b2:05:27:d1:e7:00:d9:50:be:de:47:30:5f:b2:1e:76:0c:5d:
ba:dc:84:d0:2e:2f:08:e6:7e:3f:0d:0c:89:1e:c4:6f:16:d6:
75:2c:e6:b1:87:8c:a2:de:01:a7:02:ec:8d:74:d6:8d:2a:a4:
a6:2a:49:c4:31:e0:85:17:1b:20:d8:69:9d:7b:a3:06:af:d0:
52:1d:a4:85:ee:f4:0b:33:50:c7:06:a7:b4:dd:db:c6:29:67:
83:56:a3:ee:5d:75:ce:88:6f:13:64:88:47:2a:76:38:32:db:
b7:58:75:a9:31:ba:3a:2e:89:d5:9a:93:32:8d:b4:a5:16:8b:
22:8e:56:4c:91:99:73:4c:97:69:40:ca:aa:54:a2:d8:61:46:
ca:fa:74:74:0b:97:3b:b9:9c:a2:23:8b:54:dc:1d:33:a9:6b:
84:ca:03:ae:62:19:4f:28:96:84:38:de:62:e2:18:11:4c:7b:
3b:39:7d:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:04:16 2026 by rpki-client