Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
File: bfHIcky70DS6t6Da3wq0uZ_2b_8.mft (raw, json)
Hash identifier: aarrCUQ84RP/O3egVjeqVzZbNQ+CG08jPmMBbC0HX4U=
Subject key identifier: 52:A2:60:6D:CF:E9:95:38:85:A7:CB:B3:68:FD:F4:2A:0E:95:7C:C5
Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Certificate serial: 019D2BF2EBFA8679A89EDB6C1E0EFCFFCC1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
Manifest number: 188A
Signing time: Thu 26 Mar 2026 21:00:33 +0000
Manifest this update: Thu 26 Mar 2026 21:00:33 +0000
Manifest next update: Fri 27 Mar 2026 21:00:33 +0000
Files and hashes: 1: QfIo87XsCuJzTUYuuoqKD3WaLb0.roa (hash: 3OJrGr0r+PmdJst/a4vFJ2BEBu96S/fI6q0nYYtF9LQ=)
2: bfHIcky70DS6t6Da3wq0uZ_2b_8.crl (hash: BSpnqXoWh5jvDM5dIbl4xzQ1XbiNoq1Ow/GYBXo6+Ss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 20:56:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:f2:eb:fa:86:79:a8:9e:db:6c:1e:0e:fc:ff:cc:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Validity
Not Before: Mar 26 21:00:33 2026 GMT
Not After : Mar 27 21:00:33 2026 GMT
Subject: CN=52a2606dcfe9953885a7cbb368fdf42a0e957cc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fa:cd:d8:bf:ad:d7:50:5e:77:47:d2:3f:76:
8b:78:5e:d5:d0:62:85:70:28:6d:3d:f5:b5:1d:ff:
19:7c:ab:96:17:48:07:df:57:f2:40:d5:1b:70:21:
13:7c:bd:f3:a3:5f:0a:5a:f9:a2:68:46:b0:1f:11:
9a:96:66:0f:1c:e0:fc:c1:9d:71:85:3b:53:6c:b6:
a4:76:5d:66:93:b6:69:d3:e6:71:e8:f3:c1:3c:7a:
56:ca:c7:a3:8f:ee:1c:33:e3:e2:c2:d9:8e:78:d5:
53:27:bc:fe:09:c1:97:5e:60:24:24:80:3d:14:3c:
ae:0a:83:b1:fd:e4:1e:41:ce:40:82:71:f5:8d:36:
34:5a:df:cd:45:4b:37:6c:8b:d5:cb:76:2e:56:ce:
e8:e0:b6:c1:f1:9c:b7:cf:89:bc:a0:7e:b1:1d:fb:
78:9f:05:3a:4d:19:3f:bf:d2:75:05:05:69:47:a3:
fa:67:4d:7d:ea:2e:2a:a9:12:2e:93:5b:cc:29:7b:
a0:93:8d:92:01:44:9c:b2:6b:8d:b9:41:44:98:d9:
02:74:2e:e8:0f:26:11:71:08:77:75:15:fb:68:e5:
dd:cb:a3:b8:f1:ca:6a:7b:54:42:b4:6f:04:c1:66:
01:5c:21:3f:5e:77:45:2f:1c:3a:cf:ed:1d:8a:7f:
67:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A2:60:6D:CF:E9:95:38:85:A7:CB:B3:68:FD:F4:2A:0E:95:7C:C5
X509v3 Authority Key Identifier:
keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:29:1e:d5:ba:c8:a0:6c:a7:75:94:72:68:85:17:3d:b1:3d:
1f:aa:b3:f9:26:b2:d9:3b:e2:de:1f:ae:c0:7d:54:2d:30:d3:
13:d9:7c:b3:2e:e1:e0:e3:69:d2:57:9a:df:5a:56:03:d3:6d:
7e:31:c6:93:a2:bd:dd:60:73:8f:1f:0b:c3:eb:90:20:8b:19:
be:8f:bb:f1:d1:fc:8c:24:5a:8f:c2:22:65:a1:2e:a0:27:54:
cd:c1:ba:a0:0f:33:2b:be:f0:23:3e:60:a0:5b:76:d6:75:f6:
28:ed:f4:73:89:5a:78:62:96:f3:e7:c4:ba:93:19:18:2b:62:
66:7d:5f:ab:cb:ba:2c:f7:29:fb:3c:56:fc:3d:3f:3a:f4:9e:
a0:45:ea:c2:a2:19:7e:73:f2:f3:b4:d3:f0:aa:eb:1c:fc:64:
c0:a7:5d:fe:b6:bb:45:da:53:0e:74:db:fc:92:6f:0d:fe:b5:
b6:71:47:02:c6:4f:67:39:f3:7b:71:db:f5:15:18:7d:42:2c:
18:4f:a7:aa:2d:c3:81:5f:90:58:a5:17:ea:00:6e:dc:b7:49:
99:78:2d:e2:70:0c:44:07:cb:eb:f8:eb:eb:ea:6f:da:b7:a4:
74:55:ea:65:c2:e9:86:e9:d6:24:7e:ce:db:7a:c9:cc:09:fd:
bc:d7:69:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 03:29:45 2026 by rpki-client