Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
File: bfHIcky70DS6t6Da3wq0uZ_2b_8.mft (raw, json)
Hash identifier: UNnPCdK2czzSkeGzy04tRQNZdml644cz5iRk8F0CKvM=
Subject key identifier: 07:8C:0A:87:DA:C5:B2:C4:B7:8A:8E:83:0D:74:FE:31:4B:4C:10:61
Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Certificate serial: 019E213647853FFD7AD67FB6A75201C782CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
Manifest number: 1909
Signing time: Wed 13 May 2026 12:01:05 +0000
Manifest this update: Wed 13 May 2026 12:01:05 +0000
Manifest next update: Thu 14 May 2026 12:01:05 +0000
Files and hashes: 1: QfIo87XsCuJzTUYuuoqKD3WaLb0.roa (hash: 3OJrGr0r+PmdJst/a4vFJ2BEBu96S/fI6q0nYYtF9LQ=)
2: bfHIcky70DS6t6Da3wq0uZ_2b_8.crl (hash: Na0RMuhdfN8m3g1sMv9B6BG+X4TEiAnuW9ChxUuJY6s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 12:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:36:47:85:3f:fd:7a:d6:7f:b6:a7:52:01:c7:82:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Validity
Not Before: May 13 12:01:05 2026 GMT
Not After : May 14 12:01:05 2026 GMT
Subject: CN=078c0a87dac5b2c4b78a8e830d74fe314b4c1061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4a:69:34:63:78:ab:8b:ef:bd:65:9e:2f:be:
de:55:31:5f:c9:2c:7a:5c:19:a5:85:e1:ba:8c:41:
71:96:df:9f:56:6a:9e:0a:29:a0:8a:6f:91:6d:55:
39:c8:06:a5:3d:0e:86:d2:e5:04:da:58:c5:b9:89:
7c:79:cd:70:8d:a3:4f:2f:5e:3a:5c:60:a9:ee:aa:
17:36:a7:b5:6e:57:a6:e7:7c:45:1a:0f:cd:ca:5f:
d1:9a:72:5c:c3:d7:36:d4:76:d4:43:6c:b2:18:de:
5d:1d:4f:64:f5:a3:02:89:0e:a8:8b:f0:ab:9f:47:
9a:18:ec:71:c0:6d:2d:d0:85:a2:ca:0e:3d:78:34:
c1:2a:38:b2:d0:86:31:21:42:fe:55:a8:e3:7f:df:
45:22:da:9e:67:dd:b6:0e:4e:69:61:a1:23:2e:0b:
cf:8b:2e:a4:bb:a5:97:54:1b:bd:e7:0c:7b:aa:ed:
ff:14:8a:b1:c2:99:a7:2d:ed:98:5b:85:b0:d4:64:
95:de:b0:af:36:20:29:fa:df:15:d6:61:77:d0:2e:
2a:14:54:0c:2e:91:96:31:7a:a8:03:18:ff:fc:ee:
8a:ed:0e:21:0c:f0:64:3c:8c:b7:2b:4a:62:01:43:
17:fb:32:fc:07:13:79:44:da:99:00:b6:10:3b:e2:
0a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:8C:0A:87:DA:C5:B2:C4:B7:8A:8E:83:0D:74:FE:31:4B:4C:10:61
X509v3 Authority Key Identifier:
keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:3c:cf:4b:ba:82:fb:eb:b1:da:d9:63:a9:98:1c:a5:85:ff:
4c:0d:e5:f6:ba:97:cf:1e:3d:d9:48:ca:22:16:4a:2b:f3:38:
4f:6f:14:33:86:48:de:3e:c9:a5:f7:e2:e5:91:e0:39:81:1a:
18:ac:22:f6:12:01:58:78:55:92:dd:f9:03:37:12:8c:73:f5:
75:1b:ba:59:7d:41:08:0c:55:5c:d9:a8:2c:4b:20:98:91:76:
21:ee:7c:46:a4:43:a8:28:03:73:a7:98:8d:5f:4f:d2:2f:e4:
7e:f5:88:ab:70:e7:58:51:eb:f6:50:7d:2f:8f:1b:01:6f:0f:
f3:a0:73:9b:9c:5e:e6:06:de:f3:6b:f3:1c:bf:39:2f:58:5d:
8a:3e:b7:1f:bb:5e:40:5c:a1:6f:40:e4:d8:d4:e9:9f:84:2c:
32:69:79:2b:42:a3:c9:ef:da:95:82:9d:f8:a2:c5:07:42:86:
42:6b:15:2e:20:3f:dd:1e:18:cf:27:74:7b:0c:df:fa:98:9d:
5c:03:28:83:7d:88:03:01:18:12:43:65:3b:e1:ce:e7:c5:06:
12:7e:bf:31:5c:fd:da:9e:59:f9:a4:ce:dc:9c:a9:d6:04:39:
fd:55:49:c7:e6:78:b7:95:5d:2f:dc:b5:d1:25:81:25:b8:ff:
6c:00:9e:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:02:56 2026 by rpki-client