Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
File: bzHGTD5afeEED0Daj-3EfDj-Wfo.mft (raw, json)
Hash identifier: DNugaY5OkcGerRmBEXvGx7DPcmdbI31fVA393cDBfyw=
Subject key identifier: E8:25:36:EB:A9:BC:70:29:67:CF:6E:6C:CF:A6:57:EA:7D:BB:9A:51
Authority key identifier: 6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA
Certificate issuer: /CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa
Certificate serial: 019D2583275357D8AAA8F60687A87673565F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
Manifest number: 1132
Signing time: Wed 25 Mar 2026 15:00:45 +0000
Manifest this update: Wed 25 Mar 2026 15:00:45 +0000
Manifest next update: Thu 26 Mar 2026 15:00:45 +0000
Files and hashes: 1: bzHGTD5afeEED0Daj-3EfDj-Wfo.crl (hash: 2ajH2Gp01S214NWDng6BOmZPL8T5oBo03U7UrHaNlag=)
2: mis20mCNr7-z3Juye3bJqllLhII.roa (hash: jr44OSFfE8hxxzeZqyHwzACU4GFNkuxHslOFaTPqZNE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:27:53:57:d8:aa:a8:f6:06:87:a8:76:73:56:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa
Validity
Not Before: Mar 25 15:00:45 2026 GMT
Not After : Mar 26 15:00:45 2026 GMT
Subject: CN=e82536eba9bc702967cf6e6ccfa657ea7dbb9a51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6e:4c:8f:82:13:25:bf:cb:fb:6e:7b:e4:c3:
3c:0c:2c:2a:84:15:f5:f1:0b:7c:77:ef:71:c9:a4:
76:96:8c:f4:9c:3c:90:b5:ae:f2:f9:05:a9:30:e6:
f5:28:20:b3:c6:e4:61:56:4e:82:e6:a9:23:cc:e1:
79:a0:c3:93:79:80:97:05:d1:82:4e:e3:e5:b3:2f:
d9:81:7f:0c:05:ed:db:9c:59:16:a5:57:e5:d2:7c:
34:fd:e5:cc:bb:cb:07:0e:66:35:ec:9f:09:2b:e4:
49:41:7b:81:41:d0:c1:0a:c5:41:4c:30:2a:cc:4f:
19:09:fd:e2:54:b6:25:a9:23:e7:4f:8f:3b:00:83:
ad:6e:77:0c:60:4f:73:10:54:59:4b:c6:7d:74:81:
4f:66:9a:24:22:cf:ae:e0:25:1c:dd:29:17:b2:ef:
8d:16:6b:b2:bb:45:5a:63:69:e9:51:81:36:79:03:
12:c1:9f:95:01:6c:64:32:2a:db:bb:be:ec:4a:2d:
02:d9:7e:1a:e0:cc:56:b9:68:a3:61:52:4e:65:ab:
14:cf:5c:77:c5:e3:f8:16:db:2f:fc:72:8c:88:a8:
02:f9:e5:fa:1a:f5:88:24:be:85:6f:a6:7e:e0:c9:
63:d5:de:4c:2b:cd:c3:03:75:40:af:a1:c7:34:ea:
f7:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:25:36:EB:A9:BC:70:29:67:CF:6E:6C:CF:A6:57:EA:7D:BB:9A:51
X509v3 Authority Key Identifier:
keyid:6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:03:18:6f:41:7f:1d:4e:71:70:5a:cb:25:fe:f7:2f:f8:7b:
40:10:fd:f2:f9:48:27:ff:20:b7:09:89:91:5c:0e:35:cd:32:
ad:f5:c3:0a:76:61:42:bf:a1:73:d4:dc:0c:b1:43:15:9b:c9:
2c:30:cd:37:bd:b6:80:b6:dd:b3:94:6a:0a:6b:19:68:bc:e2:
1e:5e:c6:30:7e:62:08:93:e5:ca:b0:5a:b6:dc:21:4f:fe:7f:
92:87:17:77:91:6f:69:72:8c:b9:91:56:a3:b8:a6:37:a9:79:
c7:23:c1:2f:76:76:32:e8:60:9f:9c:08:84:ad:02:61:f3:d9:
08:73:15:cd:82:7f:b4:25:af:e1:e9:59:37:90:dd:67:3f:ae:
bb:7f:54:be:95:c5:35:2d:b9:20:bd:04:6d:17:3d:2d:37:ea:
93:6c:91:ac:7b:bb:56:a3:bd:72:be:e2:0a:31:85:10:a8:73:
85:eb:2c:fa:48:09:99:34:1a:eb:56:16:5b:51:bd:92:7a:14:
52:1d:59:e3:bc:29:a1:d2:8e:dc:60:48:5b:29:bb:a1:ca:e5:
f7:22:ed:89:5b:d9:93:85:54:ca:de:fe:1b:da:49:91:0a:52:
d1:23:a0:5a:16:5e:05:a0:0a:f1:78:42:b7:45:7e:db:77:d6:
7d:95:db:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:29:39 2026 by rpki-client