Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft
File: bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft (raw, json)
Hash identifier: Lm7ip0YRrWZrGGPCQqZxRTU/BAfuvIqQUbgJcr1NL6s=
Subject key identifier: A8:E8:BA:ED:73:76:41:61:0F:E0:E2:59:6A:53:D0:2B:15:17:68:EB
Authority key identifier: 6D:08:5D:17:7E:EB:0C:B9:1A:42:F4:3E:2D:4C:3C:80:8D:EC:57:08
Certificate issuer: /CN=6d085d177eeb0cb91a42f43e2d4c3c808dec5708
Certificate serial: 019D29CE47B3CFB7E984BB4323B848E2591A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQhdF37rDLkaQvQ-LUw8gI3sVwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft
Manifest number: 012C
Signing time: Thu 26 Mar 2026 11:01:17 +0000
Manifest this update: Thu 26 Mar 2026 11:01:17 +0000
Manifest next update: Fri 27 Mar 2026 11:01:17 +0000
Files and hashes: 1: 16nrOt17hZ1AZ2rbymVzCwBbT7s.roa (hash: g2WQdtjQynAE8UPOyiD7v/vN8Ha9qLkkkQyuaamGfmw=)
2: bQhdF37rDLkaQvQ-LUw8gI3sVwg.crl (hash: Ok5aBXpRkkJ1qj8Ll+T5nimb9KCj6M6zB3VyHXBp4g8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQhdF37rDLkaQvQ-LUw8gI3sVwg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:47:b3:cf:b7:e9:84:bb:43:23:b8:48:e2:59:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d085d177eeb0cb91a42f43e2d4c3c808dec5708
Validity
Not Before: Mar 26 11:01:17 2026 GMT
Not After : Mar 27 11:01:17 2026 GMT
Subject: CN=a8e8baed737641610fe0e2596a53d02b151768eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bb:c7:3d:08:1b:9e:81:0c:20:9f:af:e5:f2:
e2:9b:7f:bd:77:a6:61:b2:61:ed:9a:21:54:6d:b4:
1c:62:c2:fe:50:e0:5b:c7:ca:10:99:e9:46:e1:e9:
58:aa:c8:4c:c3:fa:91:67:7a:3e:98:6a:4f:db:20:
75:7f:11:58:73:25:e4:46:11:ae:e0:66:04:0c:dc:
20:a8:25:90:6b:b5:8f:39:72:08:6f:05:25:71:80:
e3:40:ce:d5:34:d7:ca:c8:8f:ae:1c:00:d2:d4:a5:
cf:87:bc:e4:1b:bf:1b:5e:58:b4:17:1b:f3:ae:b9:
59:3d:d7:ff:62:8f:e0:1e:8e:54:de:39:bd:d4:b0:
b0:64:83:2f:44:76:9a:72:61:dd:8c:34:46:cd:21:
8a:fe:62:33:07:66:24:2b:41:c7:09:d4:7a:8c:97:
db:69:1f:6b:f5:6d:8b:90:f1:a3:ef:90:30:08:85:
76:46:9e:57:86:3f:8f:3b:f8:8d:d4:68:de:5f:44:
1d:21:0b:60:cc:01:92:07:c0:19:4f:a6:72:35:f1:
a0:00:2a:14:d2:5f:2d:43:12:58:26:77:b5:3d:af:
95:a0:a9:7a:32:37:5e:9b:2b:bf:70:bc:38:ab:84:
76:7b:f7:04:fc:91:65:a3:9d:92:39:0a:87:a0:43:
93:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:E8:BA:ED:73:76:41:61:0F:E0:E2:59:6A:53:D0:2B:15:17:68:EB
X509v3 Authority Key Identifier:
keyid:6D:08:5D:17:7E:EB:0C:B9:1A:42:F4:3E:2D:4C:3C:80:8D:EC:57:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQhdF37rDLkaQvQ-LUw8gI3sVwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:49:b7:08:41:36:98:1f:57:9b:c9:5e:8a:c4:60:22:8d:8f:
5e:43:e1:92:f0:78:77:10:6b:02:3e:d3:df:06:24:2d:6a:e1:
e6:66:ee:42:9c:7e:ad:a3:fd:f3:e1:b4:03:ca:23:ed:3b:f1:
0d:0a:92:78:eb:52:79:08:b8:10:9e:88:56:ae:11:49:bb:45:
60:11:c8:86:96:90:8e:61:96:e8:ed:54:6e:2f:85:bf:10:46:
c8:0f:50:d4:b3:11:96:46:6c:b1:06:c6:60:c7:7c:56:a6:f1:
84:18:e6:a4:1b:4a:52:18:0b:16:7d:0e:25:ce:aa:f3:87:54:
b2:c1:52:9e:6f:0a:be:57:4a:fa:f9:31:43:ac:12:53:bf:d1:
2a:5b:50:7c:ba:16:7c:75:71:4b:e5:65:b0:b8:20:c6:9a:54:
e2:77:83:3e:5f:02:f2:66:d3:81:e4:10:8a:f7:97:02:18:a5:
da:75:7e:ba:11:b7:19:4c:1a:17:53:2f:48:ed:12:de:40:27:
c6:7c:e6:35:07:d4:0b:44:c0:04:71:76:6a:c6:eb:34:aa:c5:
7d:b2:f2:b7:79:ab:72:7d:4d:82:14:67:6c:5a:6f:4b:fd:80:
d6:ab:97:4d:53:c9:f2:c5:cd:89:d0:86:05:df:7b:27:6f:93:
06:5d:95:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:10:41 2026 by rpki-client