Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
File: bfHIcky70DS6t6Da3wq0uZ_2b_8.mft (raw, json)
Hash identifier: LzVqm1OJLa03ku/9+kyaaUVbeohemWnRvuG26x9yS1E=
Subject key identifier: 9F:7E:FF:5A:44:D6:93:74:A5:C2:A8:C3:E3:20:01:DC:94:F6:90:C2
Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Certificate serial: 019D2A0500ED485CC42D07452E76A2F70F7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 12:01:04 +0000
Manifest this update: Thu 26 Mar 2026 12:01:04 +0000
Manifest next update: Fri 27 Mar 2026 12:01:04 +0000
Files and hashes: 1: QfIo87XsCuJzTUYuuoqKD3WaLb0.roa (hash: 3OJrGr0r+PmdJst/a4vFJ2BEBu96S/fI6q0nYYtF9LQ=)
2: bfHIcky70DS6t6Da3wq0uZ_2b_8.crl (hash: 1+AxZLhmsPQFsW1rARJbZIYua6SQWxbWQtUnyjAypjk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 12:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:05:00:ed:48:5c:c4:2d:07:45:2e:76:a2:f7:0f:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Validity
Not Before: Mar 26 12:01:04 2026 GMT
Not After : Mar 27 12:01:04 2026 GMT
Subject: CN=9f7eff5a44d69374a5c2a8c3e32001dc94f690c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3e:9d:93:f2:ce:98:4d:90:21:f6:1d:3a:28:
a8:b7:a3:0e:a8:15:65:da:e0:62:97:0c:b9:57:1c:
f5:e8:cd:c1:fd:d7:09:76:71:8a:2f:cf:3f:3f:61:
a3:3c:e0:2f:2a:96:97:f6:d4:28:9e:8b:de:7f:be:
fd:06:e6:8c:57:5a:4a:ae:6c:f7:31:1d:a1:a4:04:
7c:d6:c4:a6:53:14:6d:e4:e3:16:57:96:51:83:28:
aa:8f:cd:96:24:a5:f3:59:76:f8:e2:e6:e6:b0:2d:
55:de:32:30:77:3b:ed:1a:04:9f:e3:6c:75:03:d8:
32:75:fe:5c:33:35:35:35:67:ce:d4:af:3b:3b:df:
5e:96:8e:5e:92:5f:3a:4d:c6:7a:d0:b5:c1:bc:dd:
b6:a9:9a:82:a6:15:df:6a:88:e9:d7:d3:80:d7:97:
bc:cb:e8:9e:6e:82:01:bc:97:7f:8e:91:d8:fb:bc:
5a:75:b8:54:3d:e4:1a:3f:8a:43:ba:a4:ef:09:a5:
30:15:c3:23:c0:1d:03:03:69:e9:f7:8a:44:e2:6e:
5a:31:28:52:89:e8:98:eb:bf:4e:be:b7:19:65:4d:
be:50:d0:93:dc:2a:3b:89:57:24:6b:33:7f:b5:b7:
0e:63:2b:29:a9:cd:88:51:24:df:75:0e:52:55:c3:
5c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:7E:FF:5A:44:D6:93:74:A5:C2:A8:C3:E3:20:01:DC:94:F6:90:C2
X509v3 Authority Key Identifier:
keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:69:d2:70:b9:ee:ab:fd:91:d6:e4:0e:00:97:b3:f2:1a:57:
e0:1e:85:c2:c1:10:3a:e3:14:fd:3a:53:3a:f5:19:51:8f:b2:
5c:f0:c9:d9:38:29:48:c9:c2:96:43:9a:5c:7d:b6:79:f5:3d:
e0:52:2c:62:e6:b9:0b:1e:9d:db:24:db:3d:2d:db:17:9c:12:
2c:f1:b9:5c:5e:b0:e0:02:19:18:30:a6:da:5a:fe:5a:5f:21:
8d:15:62:ea:28:e8:00:87:99:2c:73:f6:c0:c2:4c:8b:5c:81:
a5:0e:be:63:49:81:f3:0d:b8:e4:16:72:58:15:43:2c:d9:01:
1e:89:0d:bf:05:ac:22:ad:8d:88:6a:b1:0f:6a:e1:77:71:97:
fd:3c:73:e2:55:3a:a8:96:07:1c:9b:69:f3:0a:55:1c:23:99:
54:fe:82:3e:7a:7d:86:e0:12:b2:10:20:a5:df:a1:63:ed:dd:
d6:77:12:49:f8:7d:ab:1e:d1:3d:c4:87:89:5c:2a:d2:49:86:
7b:f3:0b:69:e9:88:41:d8:3a:21:db:f6:43:08:17:ce:56:ba:
12:5e:e0:9e:96:97:c6:85:c5:cd:37:78:03:cf:4d:71:ab:c7:
d2:eb:7b:c2:85:8b:4b:35:4f:0f:5a:5f:f6:7a:a9:cb:6a:b6:
33:d1:c1:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 21:12:24 2026 by rpki-client