Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft
File: b1frSRlt0uBgbVl3wrdLEBt5vAs.mft (raw, json)
Hash identifier: JoAbQcyg/nOmeFQhK/yqfCO7YtalRSd9Ed5GCVQ314U=
Subject key identifier: D8:B0:C3:57:C7:1F:2A:93:85:21:7C:FD:36:71:00:00:E4:18:C6:EB
Authority key identifier: 6F:57:EB:49:19:6D:D2:E0:60:6D:59:77:C2:B7:4B:10:1B:79:BC:0B
Certificate issuer: /CN=6f57eb49196dd2e0606d5977c2b74b101b79bc0b
Certificate serial: 019D28BBE5151FA5F35F6AAADC9D20C567DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b1frSRlt0uBgbVl3wrdLEBt5vAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft
Manifest number: 0B17
Signing time: Thu 26 Mar 2026 06:01:35 +0000
Manifest this update: Thu 26 Mar 2026 06:01:35 +0000
Manifest next update: Fri 27 Mar 2026 06:01:35 +0000
Files and hashes: 1: b1frSRlt0uBgbVl3wrdLEBt5vAs.crl (hash: x8yFSTi+6COKH/4/ypAHnYDG0vesv6biwIuYMlo7X/g=)
2: lm3OTOwIvXSXM9pioR3a9JAWpbo.roa (hash: jQABbYTjEwoFiegPBkd7R4azYt9ZrDtGw7Anzr3WHlY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/b1frSRlt0uBgbVl3wrdLEBt5vAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:e5:15:1f:a5:f3:5f:6a:aa:dc:9d:20:c5:67:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f57eb49196dd2e0606d5977c2b74b101b79bc0b
Validity
Not Before: Mar 26 06:01:35 2026 GMT
Not After : Mar 27 06:01:35 2026 GMT
Subject: CN=d8b0c357c71f2a9385217cfd36710000e418c6eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ed:dc:5a:6d:e4:23:6e:bc:0e:15:6a:57:bb:
48:2f:46:18:89:f5:7d:5e:c3:55:a8:99:bb:38:bc:
40:a2:5b:d1:e3:d6:89:45:9b:1f:cd:b3:33:12:5c:
67:99:4e:e2:52:3b:ad:bd:8d:9d:76:54:61:90:0b:
f9:fa:d8:50:c3:be:27:95:20:f0:09:b8:c8:5d:0a:
03:cf:35:38:e5:73:ad:a8:9f:8e:42:65:fb:a1:68:
21:94:55:e6:7f:78:ad:bd:a9:a0:bd:a3:88:9c:9c:
9e:4b:4b:86:31:16:51:c2:c7:b1:41:27:c8:a8:70:
84:30:58:a1:21:cd:6c:83:59:1f:7c:98:20:31:f7:
c4:41:da:e5:cd:ab:74:51:fd:cc:4c:62:2e:c3:89:
74:66:4e:ba:94:51:5a:db:25:00:37:9e:a3:de:8a:
01:88:7a:9f:0f:33:93:dd:04:92:22:40:fa:7c:76:
ce:de:d0:f3:d8:09:00:ec:5c:ac:c8:19:00:d4:43:
f4:2c:99:f8:02:7a:8d:76:6c:13:3f:1d:4d:e9:7f:
4b:18:17:55:22:82:f7:87:b2:22:c1:96:8d:be:97:
29:69:3e:17:f9:e9:e0:79:cc:b7:52:32:47:7f:8f:
05:66:b0:e0:5e:d4:93:8c:e5:3d:14:43:6f:13:d7:
c4:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:B0:C3:57:C7:1F:2A:93:85:21:7C:FD:36:71:00:00:E4:18:C6:EB
X509v3 Authority Key Identifier:
keyid:6F:57:EB:49:19:6D:D2:E0:60:6D:59:77:C2:B7:4B:10:1B:79:BC:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1frSRlt0uBgbVl3wrdLEBt5vAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:7b:a6:ca:3b:d7:16:3b:fe:86:bc:1d:6f:83:26:8c:19:d9:
5e:21:60:70:4e:e2:f8:35:f1:82:11:ad:68:80:02:23:41:fd:
dd:a0:08:49:45:e9:53:25:36:79:c8:39:ed:26:18:e5:05:bf:
51:c3:bf:d6:3d:34:19:63:0b:13:b8:82:52:3f:55:ec:c5:a2:
c7:1b:d1:7d:ae:31:3c:60:67:f4:46:cb:c1:29:c0:f3:c6:8d:
af:4b:61:e6:f7:ff:73:9c:c2:30:01:68:67:00:78:68:d0:73:
9b:30:ed:d2:cc:bf:64:9f:79:ce:11:98:e6:7b:5d:19:4a:83:
22:57:5c:c4:a7:81:49:85:3c:0a:f0:80:6a:bb:0c:15:e2:9b:
95:e7:6f:67:22:36:d8:b0:7b:ca:d9:ea:0e:c8:a2:e6:63:27:
ae:18:b8:19:ca:53:97:4a:29:ce:e3:c7:ad:85:57:d7:11:62:
38:37:00:7e:64:94:46:2c:fe:61:ba:e4:77:61:a4:51:a5:3e:
62:20:7c:ad:ad:04:c8:12:31:48:29:10:2a:b6:9f:b0:60:71:
71:40:5e:3c:6c:03:a4:09:33:57:e6:5d:92:be:ce:9f:73:8c:
61:90:67:30:94:dd:e5:fa:87:ac:69:be:c6:13:f7:68:ac:dd:
be:1f:1c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:51:59 2026 by rpki-client