Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.mft
File: bcXjzvXaXn_fw2TF1aBALTpnhtw.mft (raw, json)
Hash identifier: Bux7st8v5QMrH632c2koLpIbLYTq1zBCMG+wq8Kpr0U=
Subject key identifier: C8:99:2C:32:10:5F:1C:72:0E:AD:5A:D0:23:45:B7:52:26:D6:00:C9
Authority key identifier: 6D:C5:E3:CE:F5:DA:5E:7F:DF:C3:64:C5:D5:A0:40:2D:3A:67:86:DC
Certificate issuer: /CN=6dc5e3cef5da5e7fdfc364c5d5a0402d3a6786dc
Certificate serial: 019D27043D98F612A49DF1D8F854C49853BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bcXjzvXaXn_fw2TF1aBALTpnhtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.mft
Manifest number: 1121
Signing time: Wed 25 Mar 2026 22:01:22 +0000
Manifest this update: Wed 25 Mar 2026 22:01:22 +0000
Manifest next update: Thu 26 Mar 2026 22:01:22 +0000
Files and hashes: 1: KTh_wFZKz8V5Fp_N5BMzfuwBa2E.roa (hash: Y4+66kr490+tAfYv+Li1KCX6wSQ4d0GvtrjYF/+CHtM=)
2: bcXjzvXaXn_fw2TF1aBALTpnhtw.crl (hash: zZ24lnlbmOwOHq2hc5WhsKDSAdyAxjbPQBmkMaeUCBs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.mft
rsync://rpki.ripe.net/repository/DEFAULT/bcXjzvXaXn_fw2TF1aBALTpnhtw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:3d:98:f6:12:a4:9d:f1:d8:f8:54:c4:98:53:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dc5e3cef5da5e7fdfc364c5d5a0402d3a6786dc
Validity
Not Before: Mar 25 22:01:22 2026 GMT
Not After : Mar 26 22:01:22 2026 GMT
Subject: CN=c8992c32105f1c720ead5ad02345b75226d600c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a5:3a:da:8b:bd:b1:f9:e6:8d:c5:87:7c:31:
be:90:34:ab:5d:c4:ec:06:8a:c8:c9:46:4c:d6:5d:
2d:00:07:19:50:2f:82:c3:83:ac:17:f8:67:9b:84:
7f:38:a2:93:5a:26:ed:83:6f:d5:3f:24:b6:48:f1:
9c:32:14:38:e9:46:da:46:64:53:f8:38:00:6f:16:
2e:2a:87:23:16:5f:0c:50:67:11:6f:66:3c:83:58:
75:2a:e0:bc:72:55:b7:4a:02:a9:53:17:f3:23:73:
c9:a3:48:ce:d3:7c:38:3f:0a:dd:08:6d:78:dd:06:
6b:a5:dc:25:de:0e:45:53:c4:f5:c9:da:13:ad:c2:
1a:c6:93:e6:5d:bb:73:bb:0d:8c:03:4b:e9:69:b0:
e9:0c:f0:d0:ec:43:ab:5e:aa:2b:f2:6d:bc:d5:97:
17:93:29:77:f2:61:15:8d:0e:59:cf:e6:be:cc:6f:
59:65:30:90:e8:82:0b:1e:4f:d6:17:7f:96:fb:60:
68:d7:98:12:27:60:b5:46:a1:2e:71:fc:19:1a:4e:
7b:06:9b:e9:48:8a:69:9d:26:0b:ee:5e:5e:83:e2:
30:5b:42:69:e6:4d:ee:86:e1:67:bf:f3:81:c1:35:
a9:bf:b9:53:32:37:d0:d9:36:b4:84:b1:1b:06:ec:
42:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:99:2C:32:10:5F:1C:72:0E:AD:5A:D0:23:45:B7:52:26:D6:00:C9
X509v3 Authority Key Identifier:
keyid:6D:C5:E3:CE:F5:DA:5E:7F:DF:C3:64:C5:D5:A0:40:2D:3A:67:86:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bcXjzvXaXn_fw2TF1aBALTpnhtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/cc77a6-2b0e-4cdd-8826-cdcc96607b9a/1/bcXjzvXaXn_fw2TF1aBALTpnhtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:7b:87:99:79:e2:4c:f7:4a:7e:0c:09:6d:ce:82:00:dd:a2:
b4:60:71:a9:df:53:a7:01:26:2a:b8:60:55:c0:da:c6:e6:aa:
4d:d5:01:6a:b6:90:00:cc:f2:d9:fc:34:d1:00:ce:f2:82:b7:
b4:01:3e:ff:5e:73:62:74:05:52:82:26:f7:a9:55:b1:cc:01:
53:7b:d6:8d:04:21:dd:cd:13:37:2a:26:06:15:60:2d:9b:78:
5a:45:19:69:e5:f8:9f:b7:54:a8:39:4d:36:05:04:3c:4e:4b:
55:52:8e:5a:5c:d8:52:82:af:b7:fc:e0:5e:cc:a2:12:64:28:
77:45:47:d0:ce:fc:ef:56:1f:96:bd:78:b6:c4:83:a6:42:51:
76:f6:7c:2c:0b:ba:f5:f2:64:fd:41:8d:df:7d:67:5a:8c:4e:
ca:7f:2e:a7:60:6f:3e:71:34:e0:86:6b:40:86:e8:75:c6:c4:
f9:5a:1b:e5:bf:90:bf:26:0e:67:17:c7:7f:97:19:10:ce:a1:
f9:2a:9f:9f:ac:f1:3c:87:0c:b2:ff:bd:52:8a:9e:8f:d4:53:
78:c6:af:11:58:cc:b7:4e:8d:4c:65:eb:96:79:f5:bc:af:cb:
8f:a1:42:68:9f:09:37:de:d3:bb:8f:a8:7c:33:e6:2f:fd:6b:
68:1e:66:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nBD2Y9hKknfHY+FTEmFO8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkYzVlM2NlZjVkYTVlN2ZkZmMzNjRjNWQ1YTA0MDJkM2E2
Nzg2ZGMwHhcNMjYwMzI1MjIwMTIyWhcNMjYwMzI2MjIwMTIyWjAzMTEwLwYDVQQD
EyhjODk5MmMzMjEwNWYxYzcyMGVhZDVhZDAyMzQ1Yjc1MjI2ZDYwMGM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlaU62ou9sfnmjcWHfDG+kDSrXcTs
BorIyUZM1l0tAAcZUC+Cw4OsF/hnm4R/OKKTWibtg2/VPyS2SPGcMhQ46UbaRmRT
+DgAbxYuKocjFl8MUGcRb2Y8g1h1KuC8clW3SgKpUxfzI3PJo0jO03w4PwrdCG14
3QZrpdwl3g5FU8T1ydoTrcIaxpPmXbtzuw2MA0vpabDpDPDQ7EOrXqor8m281ZcX
kyl38mEVjQ5Zz+a+zG9ZZTCQ6IILHk/WF3+W+2Bo15gSJ2C1RqEucfwZGk57Bpvp
SIppnSYL7l5eg+IwW0Jp5k3uhuFnv/OBwTWpv7lTMjfQ2Ta0hLEbBuxCqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMiZLDIQXxxyDq1a0CNFt1Im1gDJMB8GA1UdIwQY
MBaAFG3F48712l5/38NkxdWgQC06Z4bcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmNYanp2WGFYbl9mdzJURjFhQkFMVHBuaHR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9jYzc3YTYtMmIwZS00Y2RkLTg4MjYt
Y2RjYzk2NjA3YjlhLzEvYmNYanp2WGFYbl9mdzJURjFhQkFMVHBuaHR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9jYzc3YTYtMmIwZS00Y2RkLTg4MjYtY2RjYzk2NjA3Yjlh
LzEvYmNYanp2WGFYbl9mdzJURjFhQkFMVHBuaHR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlXuHmXni
TPdKfgwJbc6CAN2itGBxqd9TpwEmKrhgVcDaxuaqTdUBaraQAMzy2fw00QDO8oK3
tAE+/15zYnQFUoIm96lVscwBU3vWjQQh3c0TNyomBhVgLZt4WkUZaeX4n7dUqDlN
NgUEPE5LVVKOWlzYUoKvt/zgXsyiEmQod0VH0M7871Yflr14tsSDpkJRdvZ8LAu6
9fJk/UGN331nWoxOyn8up2BvPnE04IZrQIbodcbE+Vob5b+QvyYOZxfHf5cZEM6h
+Sqfn6zxPIcMsv+9Uoqej9RTeMavEVjMt06NTGXrlnn1vK/Lj6FCaJ8JN97Tu4+o
fDPmL/1raB5mWw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 06:45:31 2026 by rpki-client