Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
File: bs1crU0zBsT3LEKvwG5c0fuv46M.mft (raw, json)
Hash identifier: fgOlHfYJf2qeiUuFg/sHvS9Fow51bDQFiPQR//mud80=
Subject key identifier: 3D:C7:F2:72:89:E0:AC:59:2E:BA:7A:1C:BF:DA:47:D3:BC:70:EB:67
Authority key identifier: 6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3
Certificate issuer: /CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
Certificate serial: 019CF5E0D3EFF8CBA9F09A0CE7AF5C812D2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
Manifest number: 1871
Signing time: Mon 16 Mar 2026 09:01:18 +0000
Manifest this update: Mon 16 Mar 2026 09:01:18 +0000
Manifest next update: Tue 17 Mar 2026 09:01:18 +0000
Files and hashes: 1: 67JbtkLl_lydrJEUs03-aJCfJu8.roa (hash: 7jfLLjxy8JsvhI7ber+RL+ELuddGL4nRXFUSNScrgW0=)
2: bs1crU0zBsT3LEKvwG5c0fuv46M.crl (hash: KQsX0PL3lXoGDcK1apeTNwFCD5qlwkMJ9m1kmnSCHAs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Mar 2026 09:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f5:e0:d3:ef:f8:cb:a9:f0:9a:0c:e7:af:5c:81:2d:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
Validity
Not Before: Mar 16 09:01:18 2026 GMT
Not After : Mar 17 09:01:18 2026 GMT
Subject: CN=3dc7f27289e0ac592eba7a1cbfda47d3bc70eb67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:3d:0a:63:33:83:1e:be:ba:6f:b5:ac:bd:a6:
53:5f:6a:e2:02:4a:66:26:4c:8a:9a:71:78:e0:a8:
86:bf:b3:70:b5:b1:ce:5e:d7:27:f8:73:e8:e8:a4:
71:80:dc:b8:37:07:53:61:a2:be:28:4f:66:1d:cf:
b7:eb:c5:f2:da:13:b0:89:50:8a:bd:10:b7:03:3d:
19:33:63:ab:37:40:bf:57:8e:dc:cc:a4:ad:a2:a2:
de:70:d1:53:0a:99:8a:be:4e:e1:39:b1:35:49:99:
bd:2c:f4:b5:2b:f6:c4:64:02:ff:e6:b7:2a:b6:88:
b2:0c:ed:ac:1e:a3:fc:a2:b2:1d:5e:b8:98:a7:eb:
e1:90:ed:15:5b:fd:44:4d:75:ec:39:b9:3c:db:03:
01:16:30:fb:e3:8f:2a:e9:e0:a1:53:74:2f:2f:6d:
a8:9f:8c:53:b0:ec:f9:7a:a8:d2:bf:3f:82:b7:72:
68:8f:57:cb:c8:a4:26:21:b8:b0:63:38:ab:03:7d:
47:a8:65:83:1d:07:aa:f8:79:f1:72:df:47:a8:23:
62:57:1f:fd:28:97:50:9c:28:ea:3d:f6:01:d5:53:
22:98:8d:e7:fd:3f:b6:51:1a:56:ba:47:3d:6a:0a:
e3:91:1b:ee:93:c7:59:12:6b:ac:c7:98:03:0d:8c:
95:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:C7:F2:72:89:E0:AC:59:2E:BA:7A:1C:BF:DA:47:D3:BC:70:EB:67
X509v3 Authority Key Identifier:
keyid:6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:8e:97:d5:7f:06:f4:0a:e4:12:43:2b:88:a9:58:6e:b0:77:
11:ab:cd:c8:dc:3f:22:f5:ab:12:ff:78:be:8b:24:a3:7f:51:
33:6f:5d:e7:04:6d:e6:ca:55:a7:3c:ad:65:00:60:72:0e:06:
cb:b4:3d:91:d7:6a:ba:13:07:d6:57:50:bc:f2:67:96:5d:1f:
94:e4:54:7a:6c:eb:1c:14:e9:1e:eb:72:1a:58:b1:09:06:0d:
12:17:59:25:19:5c:59:a4:9f:03:64:28:3e:5f:5b:18:63:6d:
5e:50:ff:90:95:6e:28:4d:88:f8:1a:55:04:08:d1:96:b4:e5:
74:da:a8:c4:a8:b3:ee:69:94:a1:8a:84:19:1e:cb:b2:67:96:
3c:3e:e2:82:66:82:22:41:a5:0b:98:38:83:fa:9c:ad:79:24:
ea:6d:43:38:91:53:74:ad:97:c4:e3:65:49:72:4f:42:ca:a7:
20:04:94:ec:20:aa:bb:fc:e1:a9:c3:92:f1:1f:cf:cb:54:6a:
97:2f:dd:4e:8f:9e:63:13:c2:3d:92:5e:78:29:af:08:f5:d9:
33:95:2d:83:8d:4a:5c:7b:68:0a:99:53:1a:8e:39:9d:7a:63:
05:7f:24:58:fb:d6:4d:b6:98:07:31:42:27:61:f7:02:7a:2a:
f7:3d:bb:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 16 15:54:45 2026 by rpki-client