Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
File: BZ9RaALCYTCaYQSHcubq_VhnqZA.mft (raw, json)
Hash identifier: Mc/r6Iz1xSI7NKr7k2eswKy892cqKU7gEsAJ3yQAxRk=
Subject key identifier: FD:B2:16:7C:C7:2C:8C:FA:94:A7:F2:44:68:F5:2D:68:75:0D:20:E2
Authority key identifier: 05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
Certificate issuer: /CN=059f516802c261309a61048772e6eafd5867a990
Certificate serial: 019D2A72585B66D6F75CBC3A8ADC7DDBC7F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
Manifest number: 1745
Signing time: Thu 26 Mar 2026 14:00:29 +0000
Manifest this update: Thu 26 Mar 2026 14:00:29 +0000
Manifest next update: Fri 27 Mar 2026 14:00:29 +0000
Files and hashes: 1: 46krBMuMgQRTOnYjjiwz0jZnP9g.roa (hash: i+WuevI3Tnw5jBTEqmKxgeqDkLLDwvFZgvTXSU8JdlE=)
2: BZ9RaALCYTCaYQSHcubq_VhnqZA.crl (hash: 21d5NoWqCip8Gv6Uk1PByJZSmbF40BkmvJEyNV3y2eg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 14:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:58:5b:66:d6:f7:5c:bc:3a:8a:dc:7d:db:c7:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=059f516802c261309a61048772e6eafd5867a990
Validity
Not Before: Mar 26 14:00:29 2026 GMT
Not After : Mar 27 14:00:29 2026 GMT
Subject: CN=fdb2167cc72c8cfa94a7f24468f52d68750d20e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:fc:eb:e7:cd:e8:32:6a:77:2f:c1:c0:20:3f:
c1:48:28:89:f1:94:6e:1f:e0:e9:ce:03:aa:dd:eb:
0a:7b:d1:85:df:38:b5:b0:6d:bf:37:98:51:90:f0:
fb:da:50:76:fe:f9:f5:08:22:37:e8:e6:f4:bb:15:
7c:5a:79:53:2d:c0:2a:86:1c:42:d2:6c:27:8e:e7:
3b:22:09:ec:1c:49:15:84:39:1e:2f:40:0a:c1:99:
0d:c0:cd:15:d1:87:e0:8b:ed:4f:2f:3a:1b:77:8e:
76:d5:c2:c1:73:c9:5d:c0:37:a4:f8:b0:da:7e:1e:
8a:e8:3b:5a:29:87:14:fd:0e:b6:b9:59:25:4f:f8:
4f:7d:11:a0:4b:49:2e:b9:63:8c:e6:94:16:2a:63:
a2:5c:81:c1:36:fc:f0:51:e1:f3:a1:06:4b:a4:7c:
c5:bd:7d:f5:00:43:5b:0c:ed:e0:ff:6e:93:7d:fa:
c7:78:e9:08:44:95:a6:4e:ea:63:eb:1a:6d:b6:d5:
33:dc:5d:db:f5:a5:e8:6f:9a:1a:1e:e8:36:e5:42:
7b:9a:e2:7d:dd:3f:c5:86:a4:63:08:fe:ae:ce:7d:
77:d4:ba:6f:d3:55:46:a1:1d:97:4e:95:c2:b1:26:
e8:39:f3:b5:ba:97:1a:9e:2d:62:b7:e8:08:61:cb:
8c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:B2:16:7C:C7:2C:8C:FA:94:A7:F2:44:68:F5:2D:68:75:0D:20:E2
X509v3 Authority Key Identifier:
keyid:05:9F:51:68:02:C2:61:30:9A:61:04:87:72:E6:EA:FD:58:67:A9:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZ9RaALCYTCaYQSHcubq_VhnqZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4087cf-71e9-42ca-8c35-951b1985671c/1/BZ9RaALCYTCaYQSHcubq_VhnqZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:18:c5:2e:3e:c2:5c:df:ac:a6:39:bb:56:de:e0:50:6d:b3:
5b:c0:15:30:6f:93:7e:44:ff:fe:12:1f:3d:db:a7:1f:d5:59:
ed:ed:01:b0:bb:28:90:45:27:e8:05:42:cb:21:c2:c6:c7:0b:
0b:bf:ac:69:08:e4:8d:c6:2b:33:75:86:8f:14:66:29:63:f6:
d1:12:c1:6b:98:86:9c:35:12:a7:cf:fe:b9:1f:0d:5c:27:9b:
55:1d:ed:59:24:d8:a8:19:fd:2b:3b:cb:16:d0:3d:5d:e1:02:
4d:3a:60:f0:3c:fe:3e:29:a0:e5:7a:af:c6:81:0b:fa:6a:03:
0e:1e:43:80:b8:40:82:bb:df:a9:14:08:55:ba:71:0b:4c:bc:
38:23:63:d5:b3:c2:a5:4c:b0:69:b7:dc:29:76:d9:bc:87:6a:
a7:6f:9b:69:09:61:04:15:c7:79:f5:ef:d7:55:3f:11:57:92:
16:46:02:14:a3:bb:41:ff:3f:16:73:89:36:9f:70:45:82:d8:
d7:4b:43:ec:b6:0f:9e:ab:e4:a2:65:17:37:15:cb:ff:1a:90:
ea:89:16:b2:95:36:3f:a4:11:b6:a7:29:81:93:7f:e7:5e:b6:
09:fc:d8:66:f9:70:72:ab:c3:ba:1a:7b:81:0f:bc:89:6a:57:
91:0e:04:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 22:09:18 2026 by rpki-client