Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft
File: bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft (raw, json)
Hash identifier: 1pGwFUckSyBfCAdKOr/6G/jyHmm93psKyXHhVOGR5wQ=
Subject key identifier: 63:D8:0B:49:8D:20:AC:44:84:8C:2F:7F:7C:23:5B:38:90:43:58:50
Authority key identifier: 6C:95:FD:CA:36:7B:CE:19:E2:F2:53:B7:8F:36:08:FF:34:14:28:C9
Certificate issuer: /CN=6c95fdca367bce19e2f253b78f3608ff341428c9
Certificate serial: 019D2583BA09C19EE7E582AE65715DAC95DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJX9yjZ7zhni8lO3jzYI_zQUKMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft
Manifest number: 0450
Signing time: Wed 25 Mar 2026 15:01:22 +0000
Manifest this update: Wed 25 Mar 2026 15:01:22 +0000
Manifest next update: Thu 26 Mar 2026 15:01:22 +0000
Files and hashes: 1: PlsF5PQ3EmH7blpykkipygbTcpI.roa (hash: zKxBR8QIzVtoSlF/4rcdDJ436zJksb7pP3puW4slSSw=)
2: bJX9yjZ7zhni8lO3jzYI_zQUKMk.crl (hash: 9lXdZzffXWNqnFWjpD1VAVLBfrz2DWCYudMFSR1rnko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJX9yjZ7zhni8lO3jzYI_zQUKMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:ba:09:c1:9e:e7:e5:82:ae:65:71:5d:ac:95:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c95fdca367bce19e2f253b78f3608ff341428c9
Validity
Not Before: Mar 25 15:01:22 2026 GMT
Not After : Mar 26 15:01:22 2026 GMT
Subject: CN=63d80b498d20ac44848c2f7f7c235b3890435850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:cd:89:44:8c:b4:85:0d:bd:02:89:d7:27:0d:
c4:e4:bb:f7:0a:1e:e0:ab:67:76:12:3e:31:62:e3:
a4:b9:fe:81:b5:33:9a:5e:3c:f8:85:c9:6c:a8:c6:
e2:6f:91:a7:0e:98:85:be:7b:09:b5:5a:b0:a2:f3:
85:98:52:0e:8e:17:99:de:33:67:e3:e4:c6:d2:4b:
20:39:9f:d1:b3:76:06:db:e4:07:34:f3:70:58:09:
0a:70:93:68:82:6d:e7:f9:59:b6:c6:75:0f:8f:36:
a2:2f:b7:7e:c4:c2:4b:a1:4f:39:14:50:d0:f4:c2:
46:07:f9:88:1f:db:d8:9e:e6:35:ad:50:19:cf:24:
ee:01:85:10:d5:55:aa:20:e8:f3:5e:9d:b3:38:80:
7c:83:cf:44:f7:56:f8:c0:50:f0:4c:21:cd:62:ab:
95:39:0f:eb:af:d2:5a:f9:55:6b:f3:28:e1:6b:97:
90:4e:63:b2:14:3a:71:73:2d:da:b6:12:51:5d:a8:
2b:2e:94:ae:97:a8:0e:05:d7:56:95:ca:52:43:56:
f4:35:49:9d:d1:10:d1:1a:64:b8:f6:c1:35:77:d3:
ae:b7:a8:2f:5a:a2:6f:ec:0f:21:25:ec:5e:a7:15:
10:88:9c:f1:c2:0f:95:8c:89:38:34:04:27:6c:ab:
9b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D8:0B:49:8D:20:AC:44:84:8C:2F:7F:7C:23:5B:38:90:43:58:50
X509v3 Authority Key Identifier:
keyid:6C:95:FD:CA:36:7B:CE:19:E2:F2:53:B7:8F:36:08:FF:34:14:28:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJX9yjZ7zhni8lO3jzYI_zQUKMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:a2:d0:09:93:46:16:3a:19:de:9f:26:8c:0b:0c:c4:4f:81:
62:46:aa:a2:33:d2:ab:73:57:02:58:45:06:53:bc:08:53:f7:
3e:7e:93:b9:e7:9a:1e:6d:e6:1e:3a:4f:e7:6a:32:77:fd:97:
41:b5:27:a8:3b:39:1d:7f:4d:7f:e1:cf:b6:92:8e:c9:15:10:
20:0d:76:a7:d0:85:df:a7:38:58:82:f3:77:b3:0a:29:b3:1c:
ce:15:7f:8c:f6:39:f9:09:03:0a:98:8b:6d:76:6d:62:c0:73:
f2:5f:a1:01:7a:d9:c8:aa:35:4d:94:d8:fe:92:bf:0e:6a:d5:
de:7e:18:26:2a:e6:a8:10:5a:cb:61:b6:a3:9e:27:c4:af:09:
6f:15:eb:f1:1e:5a:8a:1a:5a:f7:58:18:d5:20:dd:9c:74:b5:
ca:37:f3:7f:b9:7d:fe:cf:aa:3d:b1:81:72:25:bd:d5:3d:b2:
3a:a0:0f:ab:aa:72:2a:3e:f7:82:91:46:32:3b:96:5f:a9:b5:
55:7e:be:26:39:54:a2:34:1c:a3:c7:d9:96:a2:9a:9a:8b:13:
54:24:88:02:8c:b3:f9:d4:ca:bf:6a:20:2e:e2:6c:d9:75:6b:
0e:a8:19:eb:b4:35:92:b0:ea:fd:3e:9e:ee:76:59:e2:05:7c:
0b:fc:ee:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:36:48 2026 by rpki-client