Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
File: bfhqH1cK4xUpAiqk9h79nsK5fQU.mft (raw, json)
Hash identifier: hryGNiJvWfjr+HuiE/aT/VvVp7lUb2SCRG9SD8R1uuk=
Subject key identifier: 45:94:85:6C:9D:A9:79:00:51:AB:F2:37:ED:00:97:44:4A:9D:2D:FB
Authority key identifier: 6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
Certificate issuer: /CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Certificate serial: 019D29607585A57AA1A7834FF9EEB6D89A9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
Manifest number: 1703
Signing time: Thu 26 Mar 2026 09:01:20 +0000
Manifest this update: Thu 26 Mar 2026 09:01:20 +0000
Manifest next update: Fri 27 Mar 2026 09:01:20 +0000
Files and hashes: 1: Nx4WUGOdHpNQN9XS38e-AsCcPVw.roa (hash: 34pVZ/V8QJHpQ0HgHgjAh/BvMJod9h4SmiBh4ahKV2A=)
2: bfhqH1cK4xUpAiqk9h79nsK5fQU.crl (hash: 7biy0zeCvzze91K3HwAl36XlHzZOhnsYPWWcdHBvAig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:60:75:85:a5:7a:a1:a7:83:4f:f9:ee:b6:d8:9a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Validity
Not Before: Mar 26 09:01:20 2026 GMT
Not After : Mar 27 09:01:20 2026 GMT
Subject: CN=4594856c9da9790051abf237ed0097444a9d2dfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:71:70:ba:3c:b8:b4:32:c0:45:65:13:47:22:
e0:fa:84:91:67:d2:73:4c:bd:66:47:17:e5:8a:b3:
17:86:69:8f:b0:e5:9b:1d:76:3f:e4:51:ac:56:fc:
6a:e4:e8:95:e5:9e:e4:61:3f:c8:7c:9c:e8:ff:87:
9f:c8:bf:bb:cf:dc:da:ed:34:4c:6f:18:4e:9e:44:
fb:98:7e:78:94:bd:cd:f8:82:64:7a:33:9e:79:e8:
2d:45:bc:1a:76:ca:01:bc:ec:85:1e:c4:ce:bd:e3:
fb:1a:1d:d9:90:00:ea:ea:05:d1:83:e2:4f:26:2e:
5f:a4:01:69:1d:02:d8:ad:c0:48:82:7e:7f:55:e4:
93:93:68:fe:c1:96:6b:93:03:b2:3d:fd:b3:e1:20:
94:7d:41:f8:82:ca:c9:e1:b7:e5:8c:46:ac:37:b5:
ef:b9:7d:82:ad:86:93:63:ad:e2:3f:93:44:35:77:
30:e7:93:c9:4f:48:13:64:f6:da:9a:b7:6a:a7:2a:
4a:e3:fe:18:73:e3:5b:bb:42:ae:4d:32:58:1d:f6:
57:4e:ad:22:0f:e4:66:17:5c:a4:13:46:3b:34:00:
09:1b:6a:3a:6e:7e:21:79:25:49:0e:bf:d8:71:4b:
1f:96:28:ab:de:4c:40:33:56:89:f9:89:a2:0c:c9:
ad:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:94:85:6C:9D:A9:79:00:51:AB:F2:37:ED:00:97:44:4A:9D:2D:FB
X509v3 Authority Key Identifier:
keyid:6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:9e:37:ee:6a:fb:c2:9c:b0:ca:f6:55:5e:a6:cd:47:3e:fe:
a9:df:1a:6e:3f:35:f2:26:67:c9:be:be:1a:5a:d3:3f:e1:ac:
e1:73:e6:e8:ae:26:89:f0:04:7a:e9:17:9c:16:8f:75:f1:74:
b2:ad:77:17:b4:8b:79:8b:ef:e5:e1:41:e1:7f:45:67:af:75:
21:da:cf:93:18:d0:e1:5f:c7:7c:98:58:42:53:96:c5:69:c8:
db:a6:b2:7d:d0:89:dc:ba:99:74:9f:d5:c1:bb:ad:47:8c:d7:
ae:18:c9:82:3e:76:75:b7:41:5b:4d:c0:40:f1:19:3d:b2:fe:
47:49:a0:12:74:72:16:db:aa:b3:a6:39:d3:33:ff:e2:49:9a:
09:da:14:a5:88:4d:19:ee:c4:3a:7a:57:35:f2:a0:9b:a0:cf:
8c:59:f5:5b:d2:75:49:2d:5a:05:57:88:71:8c:5f:0d:4e:5e:
e6:7b:aa:f4:c9:85:67:e3:ce:78:a7:65:5b:2a:af:9e:b9:86:
6c:91:c8:68:f2:1d:7c:dc:6d:8a:b2:49:3e:a3:cb:ae:4c:05:
94:d2:ef:75:c0:a1:f5:24:58:10:06:29:e3:7f:4e:1e:d6:9c:
6b:86:59:b6:e3:cd:5a:14:98:db:28:fa:f5:a8:cb:23:9b:ab:
a5:ca:1b:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:27:56 2026 by rpki-client