Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
File: bSID7B5abCZsyjm5rxq-LLILGVo.mft (raw, json)
Hash identifier: RiGlsqYFN/UQy6nJZ94I4aRRVYFd3mgns5q4i4dExcU=
Subject key identifier: 1A:FD:45:A6:34:4F:C8:DA:1C:C9:F1:1F:7D:1E:85:52:03:92:7F:CD
Authority key identifier: 6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
Certificate issuer: /CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Certificate serial: 019D265F1AD9E15BFDB555859D20324740DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
Manifest number: 1885
Signing time: Wed 25 Mar 2026 19:01:00 +0000
Manifest this update: Wed 25 Mar 2026 19:01:00 +0000
Manifest next update: Thu 26 Mar 2026 19:01:00 +0000
Files and hashes: 1: KEjUQVlN-kYa2GK1u7oIUmkIKDw.roa (hash: XXTQdFb/FE8pQqJgVu712tdHVCXz3R+MnP7POS5nFQU=)
2: bSID7B5abCZsyjm5rxq-LLILGVo.crl (hash: Gu+2+WUhahl9lN3Ju1H8i/27ZfdX3Lv/VzgPYShr7Xw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:1a:d9:e1:5b:fd:b5:55:85:9d:20:32:47:40:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Validity
Not Before: Mar 25 19:01:00 2026 GMT
Not After : Mar 26 19:01:00 2026 GMT
Subject: CN=1afd45a6344fc8da1cc9f11f7d1e855203927fcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a3:c5:2a:29:a1:75:27:9a:c4:36:b2:8b:aa:
1c:b9:58:ea:98:64:14:7a:99:40:44:b9:77:2e:3a:
d8:31:7c:01:19:fc:16:2d:3a:e0:d3:4f:cf:e1:09:
be:76:a6:09:f6:1d:f5:77:f1:e5:6b:ba:45:f2:fa:
f5:ae:80:97:c0:09:69:c8:b4:b8:3a:7e:06:17:2d:
de:b8:af:f9:aa:6e:91:85:0e:14:ca:5c:25:66:06:
97:d2:5b:41:e1:5a:a5:95:8f:7f:bf:53:b9:27:44:
75:c7:61:ac:50:ff:fa:30:e4:3c:dd:c8:0a:25:4d:
ff:11:8b:5d:62:03:6c:7d:2c:70:da:7c:03:5e:a7:
a6:11:ef:2e:5e:16:f7:4b:8a:ac:1a:60:c5:cd:fa:
8b:1f:87:17:f0:f6:f9:4e:1b:84:a2:46:56:3a:5f:
ef:e4:93:18:51:e2:77:76:57:ef:89:c9:d9:85:a3:
76:06:97:af:8b:d8:ea:24:b0:80:eb:49:45:bd:d3:
5c:f0:28:a1:ba:5d:17:96:81:02:a2:1f:01:c4:bc:
08:33:77:b0:97:7a:2a:7a:ee:e7:9d:c5:d4:12:21:
ff:c2:11:fe:6b:c6:b3:ad:b1:e6:20:1e:81:e6:34:
ad:7a:93:ee:68:ac:6f:24:b3:cb:5b:4c:6b:85:f3:
1d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:FD:45:A6:34:4F:C8:DA:1C:C9:F1:1F:7D:1E:85:52:03:92:7F:CD
X509v3 Authority Key Identifier:
keyid:6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:00:f0:55:07:9f:d1:a2:60:14:a5:b1:39:49:ac:42:1b:d0:
0b:f0:6c:b8:d7:49:1f:a1:83:84:40:ed:7b:2b:d5:9e:4e:b7:
2b:7b:64:c3:1e:20:f7:43:c2:84:30:1f:ec:e7:d9:db:34:c8:
4e:45:8c:20:a7:40:97:0a:b4:1e:59:3e:3b:58:50:4a:59:c6:
a9:8f:eb:e4:ba:22:09:d3:24:1f:40:5e:67:32:9b:44:e7:dd:
07:0d:3b:1e:4c:40:89:70:59:9b:b0:b1:75:52:c0:68:66:3b:
12:c0:4b:7f:64:18:09:6f:0a:d6:e2:69:3f:46:73:9e:59:2f:
78:24:f9:b5:5e:38:bd:24:e6:5f:4c:d3:b6:2c:78:38:0e:97:
70:58:55:ff:b2:a6:f3:b5:39:6f:26:e7:6f:52:9a:57:16:9f:
75:e5:0f:79:ba:40:3c:d0:b5:0c:79:86:3e:8e:d7:41:d9:8f:
23:ed:27:bb:dd:cc:87:16:7c:d3:46:9b:f4:82:3d:7e:cc:80:
7f:1f:70:39:77:5c:e9:04:6a:79:30:fd:c1:5f:3e:ee:3d:ea:
c3:03:f5:63:9b:69:c6:9b:93:f9:40:ef:91:e7:5f:e8:e8:11:
0d:a3:8a:2a:cc:7f:dc:d8:25:cd:22:3c:cc:b8:70:6f:34:70:
27:92:7e:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:19 2026 by rpki-client