Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
File: bZYBl_5YkhTCJZ9q6olsThAH6YY.mft (raw, json)
Hash identifier: QmH0SvPKVjUkbcdq8qFBn396PYyMcOrFIGcMCkhHANk=
Subject key identifier: D0:71:5A:3C:DF:F7:12:C9:17:78:21:47:C3:18:3B:B9:A2:AA:C7:99
Authority key identifier: 6D:96:01:97:FE:58:92:14:C2:25:9F:6A:EA:89:6C:4E:10:07:E9:86
Certificate issuer: /CN=6d960197fe589214c2259f6aea896c4e1007e986
Certificate serial: 019D2704BF883C4FB0FD34042F83C748D063
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
Manifest number: 0B23
Signing time: Wed 25 Mar 2026 22:01:55 +0000
Manifest this update: Wed 25 Mar 2026 22:01:55 +0000
Manifest next update: Thu 26 Mar 2026 22:01:55 +0000
Files and hashes: 1: bZYBl_5YkhTCJZ9q6olsThAH6YY.crl (hash: O6trUSLP5NB0Yd6B8RjwR1YE2rG5E1dD7UiesKuSEU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:bf:88:3c:4f:b0:fd:34:04:2f:83:c7:48:d0:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d960197fe589214c2259f6aea896c4e1007e986
Validity
Not Before: Mar 25 22:01:55 2026 GMT
Not After : Mar 26 22:01:55 2026 GMT
Subject: CN=d0715a3cdff712c917782147c3183bb9a2aac799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:81:fa:98:3a:b6:67:5b:6d:9d:28:47:79:81:
29:7a:11:2a:7b:de:10:d6:19:2a:c8:88:11:81:1d:
18:aa:e7:8d:5c:e3:dc:53:9a:7e:8f:2d:cc:92:ce:
d7:90:c2:d2:80:82:79:46:3d:54:fe:60:2b:02:95:
97:28:fc:4c:a3:7a:2d:30:ab:58:bf:d6:c2:bd:32:
5b:99:13:d7:f0:85:05:a8:15:3a:e2:4b:46:48:ac:
6c:82:25:51:93:9f:2e:31:7a:c4:0a:5d:8c:49:a1:
dc:f3:09:d0:a8:af:d9:7c:58:0e:0c:d7:bf:60:c8:
82:92:51:63:44:c1:70:38:19:e0:f7:77:99:72:1b:
ef:e1:b5:b9:81:4e:04:e3:93:e6:71:cc:e8:2d:44:
12:07:28:ac:81:1d:5c:ad:18:49:48:a8:c3:17:0e:
c7:43:85:d6:ec:12:4d:c2:74:2a:64:bc:bd:90:a0:
39:8d:e1:d0:a9:92:1b:d3:34:4b:02:a7:a9:9c:03:
0a:97:42:ff:86:2f:61:1f:59:4e:48:54:5d:50:b7:
b7:3d:c2:f7:d9:16:92:33:be:a8:2c:d4:1f:c3:4c:
21:53:3e:ba:51:67:80:ce:c1:04:12:05:34:ca:ba:
85:5f:28:25:cc:99:79:37:06:bc:e9:0e:87:7b:03:
99:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:71:5A:3C:DF:F7:12:C9:17:78:21:47:C3:18:3B:B9:A2:AA:C7:99
X509v3 Authority Key Identifier:
keyid:6D:96:01:97:FE:58:92:14:C2:25:9F:6A:EA:89:6C:4E:10:07:E9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:5b:6e:62:81:d9:bc:ed:64:71:4b:31:2c:92:4a:9e:07:ad:
35:5f:17:1e:f3:e1:8f:ac:74:a2:85:a5:c1:c5:23:15:c9:f4:
3f:36:fa:d3:b3:b4:1e:07:b2:aa:33:77:f7:6b:a8:58:4f:6e:
52:49:04:11:02:a7:47:b9:da:d7:6a:10:17:d7:83:b3:15:12:
d4:11:25:3b:b0:c1:6a:8d:39:b1:79:ea:78:99:44:c3:d8:61:
9e:a5:5b:ef:e0:ea:d9:9c:c0:6e:9c:72:ba:84:d4:f7:89:98:
38:06:2c:62:bb:8d:81:60:57:74:36:7d:a7:1d:be:94:4f:55:
28:e9:65:bd:e8:79:a3:2f:a2:bb:14:47:0d:16:3c:1d:88:76:
db:d8:74:7d:f2:dc:b9:90:5e:3e:81:ef:0c:18:b2:e1:9f:53:
1d:6b:5c:c5:90:b5:72:01:4c:09:5f:9c:c4:3a:25:e7:46:9e:
51:9c:6d:b2:e5:0c:2c:9e:43:15:38:4b:02:50:72:94:68:0d:
de:3e:85:c6:b2:eb:0e:0b:62:4b:a5:2d:16:48:2b:7a:8e:a5:
26:f0:86:3d:f2:c6:36:5d:22:66:50:72:d8:3f:4b:a7:f6:62:
d8:6e:10:21:ff:ad:51:01:42:e9:4a:dc:2d:9e:07:1b:fc:be:
6a:44:dc:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nBL+IPE+w/TQEL4PHSNBjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkOTYwMTk3ZmU1ODkyMTRjMjI1OWY2YWVhODk2YzRlMTAw
N2U5ODYwHhcNMjYwMzI1MjIwMTU1WhcNMjYwMzI2MjIwMTU1WjAzMTEwLwYDVQQD
EyhkMDcxNWEzY2RmZjcxMmM5MTc3ODIxNDdjMzE4M2JiOWEyYWFjNzk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYH6mDq2Z1ttnShHeYEpehEqe94Q
1hkqyIgRgR0YqueNXOPcU5p+jy3Mks7XkMLSgIJ5Rj1U/mArApWXKPxMo3otMKtY
v9bCvTJbmRPX8IUFqBU64ktGSKxsgiVRk58uMXrECl2MSaHc8wnQqK/ZfFgODNe/
YMiCklFjRMFwOBng93eZchvv4bW5gU4E45PmcczoLUQSByisgR1crRhJSKjDFw7H
Q4XW7BJNwnQqZLy9kKA5jeHQqZIb0zRLAqepnAMKl0L/hi9hH1lOSFRdULe3PcL3
2RaSM76oLNQfw0whUz66UWeAzsEEEgU0yrqFXyglzJl5Nwa86Q6HewOZWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNBxWjzf9xLJF3ghR8MYO7miqseZMB8GA1UdIwQY
MBaAFG2WAZf+WJIUwiWfauqJbE4QB+mGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlpZQmxfNVlraFRDSlo5cTZvbHNUaEFINllZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi84NzljMDItZGJmNC00ZTQwLWE0ZWQt
MzEzNzU0ZTY0ZTEzLzEvYlpZQmxfNVlraFRDSlo5cTZvbHNUaEFINllZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi84NzljMDItZGJmNC00ZTQwLWE0ZWQtMzEzNzU0ZTY0ZTEz
LzEvYlpZQmxfNVlraFRDSlo5cTZvbHNUaEFINllZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk1tuYoHZ
vO1kcUsxLJJKngetNV8XHvPhj6x0ooWlwcUjFcn0Pzb607O0HgeyqjN392uoWE9u
UkkEEQKnR7na12oQF9eDsxUS1BElO7DBao05sXnqeJlEw9hhnqVb7+Dq2ZzAbpxy
uoTU94mYOAYsYruNgWBXdDZ9px2+lE9VKOllveh5oy+iuxRHDRY8HYh229h0ffLc
uZBePoHvDBiy4Z9THWtcxZC1cgFMCV+cxDol50aeUZxtsuUMLJ5DFThLAlBylGgN
3j6FxrLrDgtiS6UtFkgreo6lJvCGPfLGNl0iZlBy2D9Lp/Zi2G4QIf+tUQFC6Urc
LZ4HG/y+akTcRA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 05:15:59 2026 by rpki-client