Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
File: BKnP8kmB1yY9G31jd59dZz3ivbw.mft (raw, json)
Hash identifier: ArUxJvhFvCXpXwNZ3vfpuXF+tL4hGNdZJq5iIbYW80w=
Subject key identifier: 21:0B:04:A8:41:61:7D:AF:E2:46:DE:F1:B9:31:31:5A:FA:66:C5:D8
Authority key identifier: 04:A9:CF:F2:49:81:D7:26:3D:1B:7D:63:77:9F:5D:67:3D:E2:BD:BC
Certificate issuer: /CN=04a9cff24981d7263d1b7d63779f5d673de2bdbc
Certificate serial: 019DA3E643339869E5D9F639CB0064F016FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKnP8kmB1yY9G31jd59dZz3ivbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
Manifest number: 18CA
Signing time: Sun 19 Apr 2026 04:01:09 +0000
Manifest this update: Sun 19 Apr 2026 04:01:09 +0000
Manifest next update: Mon 20 Apr 2026 04:01:09 +0000
Files and hashes: 1: BKnP8kmB1yY9G31jd59dZz3ivbw.crl (hash: f3wlpgLs/RhSvu42m71dOfY6IfqmLL840Ams4CO+Q08=)
2: I1mm66oM2FV4eaJVlqE4cO8L7zY.roa (hash: ukmH8m+pY6kpoWVsiBBxCRnRwFuMJQWX3qtjANjdYes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BKnP8kmB1yY9G31jd59dZz3ivbw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:e6:43:33:98:69:e5:d9:f6:39:cb:00:64:f0:16:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a9cff24981d7263d1b7d63779f5d673de2bdbc
Validity
Not Before: Apr 19 04:01:09 2026 GMT
Not After : Apr 20 04:01:09 2026 GMT
Subject: CN=210b04a841617dafe246def1b931315afa66c5d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:8f:a9:d1:24:6b:96:40:2f:13:c9:68:28:a2:
92:0d:86:88:07:46:45:df:1b:9a:e9:90:79:2c:1c:
32:11:fd:2f:6f:ed:ef:f5:b2:d8:f8:1b:90:ed:b0:
fa:46:f7:0b:5c:6f:07:54:67:f6:0c:6d:78:42:7f:
90:4e:ee:b7:01:23:cb:41:25:3b:56:c4:b0:03:26:
4f:d5:11:20:b9:3b:b7:76:e5:cf:4f:fc:5f:3c:82:
56:21:84:b0:c8:2f:4e:74:66:3c:f8:71:ef:20:7e:
7d:54:4e:87:ba:3a:a4:70:6e:a2:bd:47:c7:37:62:
51:56:22:db:be:16:c1:4d:92:62:9a:ef:7a:89:a7:
9e:d0:65:70:ad:82:f2:72:99:f1:d0:75:98:2e:c4:
a0:33:e6:f7:17:3f:07:be:79:f7:47:f6:d0:94:d6:
d6:b6:f1:60:b8:38:be:bc:c6:d5:48:26:b6:ef:4b:
d0:c6:51:dc:d0:ba:fc:c4:80:ab:d3:03:ff:03:1b:
ec:55:5c:ff:f3:13:26:4b:75:7c:f9:91:de:20:f0:
5f:85:6c:38:dc:2b:ee:69:05:18:5f:4a:9a:7b:fe:
e0:c7:21:15:84:2f:61:7d:f4:d1:9c:2e:e5:c5:31:
a9:28:19:a9:cf:2e:40:26:ef:ec:5f:03:02:de:8d:
6a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:0B:04:A8:41:61:7D:AF:E2:46:DE:F1:B9:31:31:5A:FA:66:C5:D8
X509v3 Authority Key Identifier:
keyid:04:A9:CF:F2:49:81:D7:26:3D:1B:7D:63:77:9F:5D:67:3D:E2:BD:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKnP8kmB1yY9G31jd59dZz3ivbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/eecf8b-3d63-4c9c-bd84-cd0d9e5742cb/1/BKnP8kmB1yY9G31jd59dZz3ivbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:24:fb:6f:4d:47:90:ed:8f:57:85:3a:ed:8a:f7:b9:dd:46:
ae:f4:80:4f:f6:74:31:8e:a7:a1:08:81:b4:93:14:1d:80:9b:
ab:c8:b0:51:ba:a1:4e:bb:40:dc:b8:1d:8b:a6:cd:5c:df:6a:
5d:68:89:d9:2a:7c:33:56:6a:68:28:f3:23:0c:8c:10:2c:e1:
8a:d7:4a:30:28:c9:5e:39:20:cf:c1:1b:9d:93:53:61:38:74:
95:53:da:e7:33:02:bf:25:b5:01:17:8a:13:63:2a:b5:87:25:
29:a0:32:82:5c:de:72:13:15:95:54:21:74:c7:2d:a2:17:7c:
c1:95:b6:5e:b1:b4:29:7a:06:69:8c:2f:72:0c:db:19:c6:b6:
7f:14:f6:fd:93:bf:20:13:24:a8:10:d9:79:6a:34:0c:3d:fe:
20:f9:94:36:be:96:ed:c3:d4:19:5a:30:fe:b1:c7:f1:8b:3f:
fb:25:ef:ff:46:08:53:b9:0d:20:6c:9d:36:69:09:14:b4:7f:
61:77:55:4b:9e:f1:f2:19:eb:74:4d:fa:7f:6a:2d:f1:05:fa:
c4:d5:de:2a:f0:78:ea:11:62:c0:4b:ac:c6:c3:be:5b:a9:cd:
e0:f5:ca:2a:fe:8a:41:d6:3d:f4:31:b9:b9:36:8d:01:2c:90:
71:db:89:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2j5kMzmGnl2fY5ywBk8Bb6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0YTljZmYyNDk4MWQ3MjYzZDFiN2Q2Mzc3OWY1ZDY3M2Rl
MmJkYmMwHhcNMjYwNDE5MDQwMTA5WhcNMjYwNDIwMDQwMTA5WjAzMTEwLwYDVQQD
EygyMTBiMDRhODQxNjE3ZGFmZTI0NmRlZjFiOTMxMzE1YWZhNjZjNWQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAho+p0SRrlkAvE8loKKKSDYaIB0ZF
3xua6ZB5LBwyEf0vb+3v9bLY+BuQ7bD6RvcLXG8HVGf2DG14Qn+QTu63ASPLQSU7
VsSwAyZP1REguTu3duXPT/xfPIJWIYSwyC9OdGY8+HHvIH59VE6HujqkcG6ivUfH
N2JRViLbvhbBTZJimu96iaee0GVwrYLycpnx0HWYLsSgM+b3Fz8Hvnn3R/bQlNbW
tvFguDi+vMbVSCa270vQxlHc0Lr8xICr0wP/AxvsVVz/8xMmS3V8+ZHeIPBfhWw4
3CvuaQUYX0qae/7gxyEVhC9hffTRnC7lxTGpKBmpzy5AJu/sXwMC3o1qowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCELBKhBYX2v4kbe8bkxMVr6ZsXYMB8GA1UdIwQY
MBaAFASpz/JJgdcmPRt9Y3efXWc94r28MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQktuUDhrbUIxeVk5RzMxamQ1OWRaejNpdmJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS9lZWNmOGItM2Q2My00YzljLWJkODQt
Y2QwZDllNTc0MmNiLzEvQktuUDhrbUIxeVk5RzMxamQ1OWRaejNpdmJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS9lZWNmOGItM2Q2My00YzljLWJkODQtY2QwZDllNTc0MmNi
LzEvQktuUDhrbUIxeVk5RzMxamQ1OWRaejNpdmJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUCT7b01H
kO2PV4U67Yr3ud1GrvSAT/Z0MY6noQiBtJMUHYCbq8iwUbqhTrtA3Lgdi6bNXN9q
XWiJ2Sp8M1ZqaCjzIwyMECzhitdKMCjJXjkgz8EbnZNTYTh0lVPa5zMCvyW1AReK
E2MqtYclKaAyglzechMVlVQhdMctohd8wZW2XrG0KXoGaYwvcgzbGca2fxT2/ZO/
IBMkqBDZeWo0DD3+IPmUNr6W7cPUGVow/rHH8Ys/+yXv/0YIU7kNIGydNmkJFLR/
YXdVS57x8hnrdE36f2ot8QX6xNXeKvB46hFiwEusxsO+W6nN4PXKKv6KQdY99DG5
uTaNASyQcduJTA==
-----END CERTIFICATE-----
Generated at Sun Apr 19 11:05:28 2026 by rpki-client