Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft
File: bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft (raw, json)
Hash identifier: lGejxDH5k8dUmRw1+ZECTzOQFXAAmmPq2N560XypKAQ=
Subject key identifier: 95:AF:7A:CA:15:06:7D:6D:7D:E8:BA:F6:35:37:97:08:47:EB:1A:AA
Authority key identifier: 6D:8E:0E:7E:86:77:5B:41:5D:3D:57:80:CE:4C:FE:C0:C8:59:18:9C
Certificate issuer: /CN=6d8e0e7e86775b415d3d5780ce4cfec0c859189c
Certificate serial: 019D28BBD9A4DD9DCDD1775A357C93565A09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft
Manifest number: 1616
Signing time: Thu 26 Mar 2026 06:01:32 +0000
Manifest this update: Thu 26 Mar 2026 06:01:32 +0000
Manifest next update: Fri 27 Mar 2026 06:01:32 +0000
Files and hashes: 1: ZQDRmVSAS-VQjlQwPz6YndLHMAk.roa (hash: HlwMeTdyXew+ZhiKaF8HUzGdDR+H+dDeb0Vxy+YC2Vo=)
2: bY4OfoZ3W0FdPVeAzkz-wMhZGJw.crl (hash: g9xbpAMpwPC4CBfyJYJnTAxJjw6EZ4Dkycf/GnQNBn4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft
rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:d9:a4:dd:9d:cd:d1:77:5a:35:7c:93:56:5a:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d8e0e7e86775b415d3d5780ce4cfec0c859189c
Validity
Not Before: Mar 26 06:01:32 2026 GMT
Not After : Mar 27 06:01:32 2026 GMT
Subject: CN=95af7aca15067d6d7de8baf63537970847eb1aaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:41:18:c2:f7:60:e3:4b:ac:86:0e:7c:b8:d2:
02:f5:f5:41:1f:69:9f:f0:99:3b:8b:22:3f:9d:e1:
ba:dd:05:57:e9:a6:7b:49:92:4d:ca:5f:e0:23:2b:
ed:5b:9a:22:4b:f2:bc:3f:5e:23:63:e3:56:1d:09:
01:b4:7a:06:79:c3:93:7d:85:fe:c5:4f:17:84:05:
e6:8b:cd:98:6f:54:c9:69:07:b9:5f:d1:e7:53:c5:
9d:09:47:11:c3:ca:c5:50:8f:65:e2:a9:df:11:fc:
2e:f5:75:92:3c:60:b0:63:17:07:69:94:84:0d:10:
44:95:95:7e:56:b7:f8:88:7b:80:ad:78:1f:bb:72:
be:72:d3:96:e5:35:7a:d7:af:42:66:b0:7a:72:74:
30:ea:e1:01:d5:e5:b1:d0:c0:bf:bf:19:da:5c:85:
e9:52:b4:78:9d:c4:af:98:f7:70:84:da:cb:46:2b:
b3:38:09:5b:89:8c:af:66:b3:84:50:df:43:dc:ba:
5c:7b:0d:82:56:8f:1b:fc:67:19:d5:e3:35:3d:07:
16:b3:11:02:2c:94:69:21:f8:92:1b:71:8e:1d:68:
68:b8:22:bd:e6:de:ae:a5:bc:82:cd:f8:1e:13:bc:
48:21:9a:56:95:fa:08:c5:d6:8f:2c:24:c7:50:58:
eb:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:AF:7A:CA:15:06:7D:6D:7D:E8:BA:F6:35:37:97:08:47:EB:1A:AA
X509v3 Authority Key Identifier:
keyid:6D:8E:0E:7E:86:77:5B:41:5D:3D:57:80:CE:4C:FE:C0:C8:59:18:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:ba:75:2a:6c:40:82:14:e6:b3:8c:5f:c9:7e:0f:be:93:b1:
e4:93:f5:8d:f1:84:49:c1:3e:06:47:39:c3:d2:49:b3:82:2e:
c4:3f:08:0d:75:9a:12:99:14:6f:b5:5a:1e:ef:56:2f:f1:76:
3c:d9:cf:42:67:dd:f3:08:f3:bf:6b:96:fb:2c:e9:98:ac:5a:
be:19:48:d2:d2:b4:7f:cc:a8:d0:02:eb:b4:41:d6:e4:5c:34:
1c:13:79:3c:94:19:f0:31:ea:ed:6d:3d:d4:a1:68:28:ac:79:
f4:d0:3f:8f:47:4c:71:60:32:4b:32:50:d3:12:e9:64:06:93:
78:d4:77:d4:b4:05:3f:5c:9c:b3:ec:90:f6:d8:40:21:52:e0:
a4:e4:99:26:a7:e1:bc:7a:11:b0:30:f9:d6:96:0b:53:dd:13:
70:cd:6a:96:1a:b0:ad:7d:fd:d6:e1:93:24:49:58:c9:de:4a:
cd:04:69:74:cb:df:e5:d0:a4:92:4a:a3:d3:89:eb:60:3e:a8:
cc:0a:07:08:e8:77:3b:44:2f:b7:12:a5:97:43:a2:9d:6b:ca:
30:95:81:5b:c2:3c:98:43:de:88:0f:44:78:ee:2c:8c:71:70:
88:fb:d5:34:db:c7:f5:c7:a2:d9:70:fc:a4:61:b4:31:26:38:
41:f8:67:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:17:58 2026 by rpki-client