Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft
File: BgPfkU3wTkf1a9li8vncPwQ0pdM.mft (raw, json)
Hash identifier: LKtNTz+UbfwfKRgXX9U5RV0feUnA9EzuI7YpdlJuyv8=
Subject key identifier: 5B:18:E8:71:02:4B:DA:59:1F:E9:BC:A9:9C:15:50:F0:04:D3:98:0D
Authority key identifier: 06:03:DF:91:4D:F0:4E:47:F5:6B:D9:62:F2:F9:DC:3F:04:34:A5:D3
Certificate issuer: /CN=0603df914df04e47f56bd962f2f9dc3f0434a5d3
Certificate serial: 019CABD9B0B8B9738125AB957F9495CA1597
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BgPfkU3wTkf1a9li8vncPwQ0pdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft
Manifest number: 0A91
Signing time: Mon 02 Mar 2026 00:01:36 +0000
Manifest this update: Mon 02 Mar 2026 00:01:36 +0000
Manifest next update: Tue 03 Mar 2026 00:01:36 +0000
Files and hashes: 1: BgPfkU3wTkf1a9li8vncPwQ0pdM.crl (hash: HL0390O5imSeeO5s3vPLzQzj2G/WfAllOJE5sJcp5bI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft
rsync://rpki.ripe.net/repository/DEFAULT/BgPfkU3wTkf1a9li8vncPwQ0pdM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:b0:b8:b9:73:81:25:ab:95:7f:94:95:ca:15:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0603df914df04e47f56bd962f2f9dc3f0434a5d3
Validity
Not Before: Mar 2 00:01:36 2026 GMT
Not After : Mar 3 00:01:36 2026 GMT
Subject: CN=5b18e871024bda591fe9bca99c1550f004d3980d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:28:e6:db:6c:c0:60:82:63:78:b4:5c:07:60:
ac:79:f2:4e:34:10:47:53:08:ed:11:3b:80:49:2a:
b9:03:da:fc:89:58:93:ea:2b:3e:55:05:79:e5:09:
0d:fe:25:5e:a1:d2:77:cf:cc:ac:46:cf:23:a1:44:
00:2f:b2:05:a6:65:2f:05:f1:e8:cf:dd:c9:46:d4:
6f:76:9a:2b:57:ff:64:0a:88:88:96:e7:ef:a0:54:
f6:6b:be:58:44:bf:8e:69:3c:36:67:0d:bc:e0:56:
9f:73:15:2f:97:36:d3:47:46:a5:07:16:19:8c:c8:
0f:48:c5:02:9b:7d:8a:dc:70:ab:d8:da:84:cf:0c:
41:c5:cc:c9:ff:42:bc:0e:2e:7a:37:8e:b9:bf:ad:
fb:68:2f:06:7c:bd:a7:51:53:5d:4e:58:47:0e:f7:
e7:a2:37:65:b1:aa:3b:32:9d:58:ef:c0:78:4b:12:
1f:52:ec:dc:6c:66:c9:2b:36:92:5c:20:df:ce:0e:
51:bf:4c:43:34:4c:5e:8b:9c:31:f0:ca:06:d0:3b:
51:1e:d6:e3:37:03:17:68:5e:0d:84:1c:e3:79:9a:
bc:a5:5b:b8:c6:a8:e6:a6:1a:b7:4a:4a:2f:cf:eb:
6f:d3:19:49:0e:e3:06:eb:36:ac:f9:f0:a8:63:32:
33:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:18:E8:71:02:4B:DA:59:1F:E9:BC:A9:9C:15:50:F0:04:D3:98:0D
X509v3 Authority Key Identifier:
keyid:06:03:DF:91:4D:F0:4E:47:F5:6B:D9:62:F2:F9:DC:3F:04:34:A5:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BgPfkU3wTkf1a9li8vncPwQ0pdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:79:3e:b2:52:7e:51:44:fe:e0:3d:27:29:8e:df:e0:b2:06:
64:c6:f9:06:38:3b:44:33:a5:24:74:1c:bb:15:1d:36:73:bf:
d0:47:82:c1:35:b3:8b:6a:16:20:14:5d:e5:07:e7:b9:ce:c2:
17:4c:ab:52:92:a3:d9:9e:05:ba:37:24:66:85:33:51:24:17:
ec:1b:83:79:61:9f:31:92:14:a2:4f:78:08:b7:a4:d7:22:7e:
7b:43:38:96:cf:1b:f9:3b:97:8e:21:5a:a7:ed:9c:97:67:94:
11:ad:a5:14:4e:00:a7:4d:d4:0d:0f:3a:90:09:19:e0:57:d3:
71:bb:67:a8:41:a1:50:02:96:5e:15:0b:2b:af:ac:fc:d0:f1:
82:56:e7:e3:b7:01:7b:bf:fc:75:61:e3:67:89:e5:9f:4c:43:
05:15:fe:3c:9a:77:ee:b0:72:c5:ec:46:25:69:cf:7a:e6:6d:
d2:10:ad:55:4b:0c:fc:fe:be:d7:94:56:01:c1:4f:f1:de:cc:
ef:12:6c:3f:65:1f:59:32:25:49:ff:6f:0f:db:f1:cd:95:7c:
34:e9:e4:07:5a:cb:ce:1d:b3:f5:32:6b:d8:78:ea:6c:06:58:
bd:d7:52:4c:24:01:7a:a5:88:d9:0a:b0:19:20:65:15:4a:3d:
25:2f:9b:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:04:22 2026 by rpki-client