Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.mft
File: bIlKsevTD7N84imjdNPjE52QUY8.mft (raw, json)
Hash identifier: k7TdxkHGcKG5zYxzJIm6EBtxpuuMKe/IbFAx+koamcs=
Subject key identifier: B4:00:95:1E:D8:E4:74:BC:18:9C:7F:AF:2D:EF:B8:26:9C:0E:77:FF
Authority key identifier: 6C:89:4A:B1:EB:D3:0F:B3:7C:E2:29:A3:74:D3:E3:13:9D:90:51:8F
Certificate issuer: /CN=6c894ab1ebd30fb37ce229a374d3e3139d90518f
Certificate serial: 019D27042F3850F2A116080316E7D96DEABE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bIlKsevTD7N84imjdNPjE52QUY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.mft
Manifest number: 08C6
Signing time: Wed 25 Mar 2026 22:01:18 +0000
Manifest this update: Wed 25 Mar 2026 22:01:18 +0000
Manifest next update: Thu 26 Mar 2026 22:01:18 +0000
Files and hashes: 1: HMK0XQoxdRxzLrSbOk3nRa3LDfU.roa (hash: ULrE37Ak3LEpHtIRIUxe40WhUc8sSXQeL2cSCTuAsyw=)
2: bIlKsevTD7N84imjdNPjE52QUY8.crl (hash: RxFpWlIizo7Hk/tBvOj+kJmXUbFDDIaf80XKiENRiTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bIlKsevTD7N84imjdNPjE52QUY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:2f:38:50:f2:a1:16:08:03:16:e7:d9:6d:ea:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c894ab1ebd30fb37ce229a374d3e3139d90518f
Validity
Not Before: Mar 25 22:01:18 2026 GMT
Not After : Mar 26 22:01:18 2026 GMT
Subject: CN=b400951ed8e474bc189c7faf2defb8269c0e77ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:98:0e:33:83:ca:4d:87:9d:04:61:90:10:ab:
76:e1:8b:44:9e:b5:1f:82:71:21:fa:1c:b4:1f:c7:
f1:c6:f9:21:d9:6d:53:86:a0:76:06:b6:a7:aa:9c:
37:76:7f:f0:a0:57:8b:43:3f:b8:1d:fb:0f:f6:4b:
43:a2:af:d6:9c:bd:c7:03:3c:92:b3:ea:2d:ec:73:
36:57:25:59:ae:df:e3:5d:48:96:0e:92:d0:10:ac:
36:f8:06:3b:1f:55:48:6f:22:7c:f6:18:0a:bf:b1:
0c:00:14:6b:78:90:fa:b8:45:85:a6:f4:e9:36:14:
39:fc:e6:f3:d2:10:f3:62:01:57:99:43:5c:43:b9:
dc:78:59:bf:38:7a:a9:b4:39:2b:bf:04:51:b9:c0:
28:d7:42:2e:4d:74:ef:3e:59:d3:41:3c:2a:1a:68:
c6:01:32:e6:a1:f0:0c:9f:12:0e:06:03:7d:69:18:
85:52:6f:b3:f2:b5:d1:0f:7d:ba:67:a4:3f:bd:8d:
60:fe:17:f1:76:7f:8d:91:fd:de:62:70:9d:29:60:
fa:33:af:ee:b5:c8:b9:65:13:e0:f1:08:8e:dc:cf:
d7:a0:51:fd:e1:99:0e:02:cb:79:fa:f8:81:ce:23:
06:d8:0f:05:32:15:1b:e3:50:0c:d1:aa:32:ac:6c:
b4:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:00:95:1E:D8:E4:74:BC:18:9C:7F:AF:2D:EF:B8:26:9C:0E:77:FF
X509v3 Authority Key Identifier:
keyid:6C:89:4A:B1:EB:D3:0F:B3:7C:E2:29:A3:74:D3:E3:13:9D:90:51:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bIlKsevTD7N84imjdNPjE52QUY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:0c:7d:f1:c8:df:f9:80:f9:b7:26:5d:a5:e2:35:5d:5a:b0:
9b:62:95:1f:29:79:e9:87:0c:ac:54:a0:a3:07:ec:8d:60:e1:
1d:8c:54:a6:94:4d:dc:57:43:4b:2d:37:80:b2:d5:a8:e9:a2:
a0:dc:f9:20:9d:9c:8b:6f:76:8b:54:0e:f6:ed:be:da:5e:69:
a0:b9:f5:2a:62:cf:0f:c0:af:47:37:bc:19:83:32:1e:44:d2:
8b:dc:85:ff:f3:60:1f:4d:d0:8f:14:b8:b4:04:d7:c9:d9:c1:
e2:12:1f:57:37:98:10:8d:bc:fe:61:80:cb:a5:25:7e:da:22:
d4:80:44:16:3a:da:31:2f:4c:be:ec:77:0d:bb:03:e3:e7:18:
08:5e:51:5f:80:92:5d:32:4e:5d:a1:04:69:5d:21:8e:a0:8c:
a1:87:1b:e8:1a:3f:bd:29:ae:c0:31:ce:92:fa:f9:e7:7a:b3:
83:73:25:93:5e:04:a8:9a:60:0e:04:c9:bb:81:31:02:43:95:
f0:c2:c2:03:2c:ce:fc:7b:63:65:f6:38:c2:20:59:8b:ce:00:
cb:a7:e8:0a:10:19:45:05:a1:c8:89:51:49:55:d8:c8:c6:cf:
ec:af:dc:e6:15:8a:32:b7:83:c5:3c:05:26:36:6f:d2:35:6e:
14:c0:7d:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:41 2026 by rpki-client