Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
File: BkwamGxZM6O5EIToo_8IBm05jhk.mft (raw, json)
Hash identifier: OrfcjuXdZ5cWHUoTh1dRlvBIjOww3Mz6oTe3SzfqZWI=
Subject key identifier: 31:ED:3D:FA:B8:DC:B7:E6:B6:6A:20:CD:88:5D:6E:18:84:CC:71:40
Authority key identifier: 06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19
Certificate issuer: /CN=064c1a986c5933a3b91084e8a3ff08066d398e19
Certificate serial: 019D9AE329EE921F8AE142A5CADF75839E9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
Manifest number: 0CD2
Signing time: Fri 17 Apr 2026 10:01:11 +0000
Manifest this update: Fri 17 Apr 2026 10:01:11 +0000
Manifest next update: Sat 18 Apr 2026 10:01:11 +0000
Files and hashes: 1: BkwamGxZM6O5EIToo_8IBm05jhk.crl (hash: 72wtWQxz+B5sODFyh6Kjhf+Cp95cmG8uuWJ2zYDe1SY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:29:ee:92:1f:8a:e1:42:a5:ca:df:75:83:9e:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=064c1a986c5933a3b91084e8a3ff08066d398e19
Validity
Not Before: Apr 17 10:01:11 2026 GMT
Not After : Apr 18 10:01:11 2026 GMT
Subject: CN=31ed3dfab8dcb7e6b66a20cd885d6e1884cc7140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b3:22:77:17:2d:15:73:14:02:d7:4f:83:61:
1a:76:9b:b6:f9:19:07:45:e3:3a:19:40:e8:99:b1:
2c:2f:a6:e0:b8:f9:d0:18:a2:d4:db:ad:27:72:f0:
d1:44:34:16:35:f2:5e:2f:51:1a:af:3f:dd:f2:b0:
d6:9d:06:8e:18:c9:cd:c6:c9:93:6d:28:d9:fe:2f:
6a:33:4f:77:df:b3:32:bd:4b:9c:f7:90:1c:4d:8e:
e2:bb:07:20:3f:57:fe:9d:ec:6d:c6:68:ec:e3:3a:
5e:77:d6:f6:f3:e3:b0:f7:a9:bb:25:db:4b:54:68:
97:bd:dc:0f:b4:e6:96:29:18:d7:d4:8a:25:77:52:
54:01:89:03:2a:b1:5e:34:ea:76:b3:fd:b9:05:ba:
ff:7a:14:20:c4:23:2a:42:91:49:53:6d:22:a0:55:
a7:60:4b:55:f7:66:bd:44:29:95:15:ec:7b:a5:11:
99:a2:aa:96:40:b9:11:09:f8:a0:57:b7:84:7b:89:
bb:3d:95:70:fd:6e:92:e3:20:18:c3:e2:68:63:64:
7e:fb:93:95:7a:e1:fd:b6:32:b1:ce:a5:30:08:87:
f9:8b:0f:4a:b1:76:ef:4e:51:32:e3:c0:2f:09:36:
07:26:ed:da:bf:01:41:12:43:c4:ee:da:03:d1:00:
06:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:ED:3D:FA:B8:DC:B7:E6:B6:6A:20:CD:88:5D:6E:18:84:CC:71:40
X509v3 Authority Key Identifier:
keyid:06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:1e:1a:bb:63:67:61:ad:a1:96:c9:3e:64:97:cd:72:55:88:
6e:44:cb:5d:53:0f:0f:40:f4:c9:47:07:42:e3:68:a2:8a:31:
f8:36:4e:dc:4b:c7:90:5c:96:1c:53:f6:2f:4e:59:89:d5:01:
4b:b2:c5:fa:0d:a6:bb:96:f8:cd:b1:a0:93:12:73:a6:c3:09:
91:e0:51:c8:13:b6:2f:5d:6b:43:a3:28:f3:e6:a6:96:fd:c5:
d6:08:2a:45:2f:48:65:35:66:b2:28:d3:e9:6e:ac:f0:df:77:
50:d8:ca:70:53:c6:a1:cc:e3:c1:59:61:02:57:a9:e0:eb:7e:
9e:e0:05:a8:d9:7f:5d:f1:34:3a:21:62:a4:b4:03:08:ce:9b:
52:a4:ed:d5:81:bb:db:23:49:6c:81:91:78:d5:b7:3f:e6:41:
bc:1c:fb:3f:91:85:b0:2a:d9:ff:6d:60:71:77:5e:55:78:58:
7b:dc:72:f0:8b:72:ff:4a:71:28:2d:7f:c8:2d:72:b3:f5:fd:
45:07:62:e8:eb:6f:4f:bf:ea:01:f1:5c:59:3a:39:37:5a:80:
c6:7f:4d:6b:cf:1d:6f:81:b5:3d:db:7c:0d:f6:2a:16:e2:77:
5e:24:20:af:27:73:9d:98:c2:6e:81:e8:75:97:18:b6:5c:3c:
13:c7:ac:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:22:55 2026 by rpki-client