Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.mft
File: bYQL-PLqRGpH22xjOQZmfGPtiG4.mft (raw, json)
Hash identifier: Vmdj7s73hmzSAVCrQ+Rm4HZfYk9mmkKdBpT5pBmslJs=
Subject key identifier: D5:2F:B4:39:9E:22:32:92:5A:1F:D3:DA:47:0E:18:8C:1C:F9:F7:4C
Authority key identifier: 6D:84:0B:F8:F2:EA:44:6A:47:DB:6C:63:39:06:66:7C:63:ED:88:6E
Certificate issuer: /CN=6d840bf8f2ea446a47db6c633906667c63ed886e
Certificate serial: 019D28BB281DFEF306C62286F8FA7B577A57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bYQL-PLqRGpH22xjOQZmfGPtiG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.mft
Manifest number: 12DD
Signing time: Thu 26 Mar 2026 06:00:47 +0000
Manifest this update: Thu 26 Mar 2026 06:00:47 +0000
Manifest next update: Fri 27 Mar 2026 06:00:47 +0000
Files and hashes: 1: Nppx-_HytezaO7OOnUHi3r0aYuY.roa (hash: EooK0hyWHN5rfWystpxx1iBOSlykoNCoHvC6SpxnsDQ=)
2: bYQL-PLqRGpH22xjOQZmfGPtiG4.crl (hash: gzDa4v2j1GdHcMzuxMEXqdOMYcGsvN5gilfhlZHn3r4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bYQL-PLqRGpH22xjOQZmfGPtiG4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:28:1d:fe:f3:06:c6:22:86:f8:fa:7b:57:7a:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d840bf8f2ea446a47db6c633906667c63ed886e
Validity
Not Before: Mar 26 06:00:47 2026 GMT
Not After : Mar 27 06:00:47 2026 GMT
Subject: CN=d52fb4399e2232925a1fd3da470e188c1cf9f74c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:28:2d:1b:71:b2:67:c7:68:b5:79:54:3e:f5:
ed:0a:91:52:30:34:3e:df:ef:c3:ca:7d:9b:f7:2d:
b0:e6:a6:b7:7d:19:44:14:8b:e9:92:4c:55:9e:99:
ad:00:3d:bc:4e:11:2d:16:7e:d0:75:23:8e:6b:19:
38:a7:10:7e:94:c4:e0:6d:00:ba:c3:cf:92:a6:fd:
0c:32:38:c3:76:49:c4:3d:42:70:5a:03:57:d9:50:
51:f8:75:fd:0f:44:18:3b:79:fb:21:1f:8c:05:ff:
09:19:9e:e6:29:9c:d9:79:3a:00:31:d1:c1:4e:74:
4c:ed:47:35:e7:05:40:78:01:cd:55:72:e6:7f:5f:
eb:57:56:0a:33:3d:5a:7b:95:7f:73:35:18:3e:1d:
66:d9:ad:05:4c:29:d9:4a:bf:24:72:91:e3:db:38:
2b:d3:88:d3:ae:6e:99:09:de:0c:f7:cc:fd:cd:01:
a4:8e:ec:a3:f0:07:2c:7e:eb:53:8b:2d:6b:7e:45:
79:21:bd:49:72:63:4a:65:e9:3f:b0:19:b4:f4:f2:
18:d2:85:e5:1e:7b:3c:8e:62:e0:cd:bc:ae:15:dc:
92:81:17:92:cb:88:07:c7:79:fe:be:5f:45:7b:28:
5b:c5:a3:74:a3:f8:c9:a0:c4:12:e0:6c:66:ea:4d:
aa:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:2F:B4:39:9E:22:32:92:5A:1F:D3:DA:47:0E:18:8C:1C:F9:F7:4C
X509v3 Authority Key Identifier:
keyid:6D:84:0B:F8:F2:EA:44:6A:47:DB:6C:63:39:06:66:7C:63:ED:88:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bYQL-PLqRGpH22xjOQZmfGPtiG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/125959-746b-4a0f-96d3-c3e8eadd00ba/1/bYQL-PLqRGpH22xjOQZmfGPtiG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:07:5b:97:2f:37:b1:c5:3b:e9:34:1b:f6:6f:77:f4:c8:c6:
66:c6:41:a0:12:7b:56:77:b2:82:43:1f:58:a7:e1:ec:cb:88:
d2:29:bb:96:b2:4c:da:d3:0a:bc:d4:f3:5d:a0:fe:2f:6f:ad:
65:0f:f2:0d:ba:f6:2a:b4:d8:74:7c:21:b0:5e:c7:c3:43:ab:
e9:40:8c:ea:a0:78:40:6d:4b:44:d2:ab:07:03:c9:b8:5f:5b:
72:64:46:2e:31:ac:14:ac:d8:ae:5d:35:45:b5:7b:96:e8:76:
cd:7c:0a:f5:80:69:e7:ed:64:0d:6c:b5:a2:9c:54:b4:42:a0:
23:dc:d7:48:5e:61:54:d1:f6:36:af:a3:8c:54:1e:8b:c6:d1:
c0:49:cc:d8:26:2f:67:e1:0a:21:00:05:27:e7:a5:2b:4b:90:
9a:64:10:2a:84:33:ce:5a:34:3d:74:42:6b:d9:84:24:47:5f:
c6:2c:43:6c:9b:a8:48:bc:17:c0:17:17:53:5e:dd:a8:a2:81:
bc:0c:46:5e:1a:b5:22:df:4a:68:d0:30:f4:6f:05:4d:a4:4f:
4c:5a:a0:60:28:93:40:3d:c0:08:43:31:7d:dd:2c:03:1c:6e:
34:12:d3:2b:0a:08:c5:1e:b4:2f:a3:0a:c5:02:0f:e5:ef:8e:
02:2d:ba:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:13:13 2026 by rpki-client