Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.mft
File: bGbVyy-crT9IQ_cUpNxi1yE96-g.mft (raw, json)
Hash identifier: bFTHvnTEK1eAod/OaJs1JDzH7Tow+S3fnmtrwQOTYB0=
Subject key identifier: B0:18:86:69:69:AF:1C:9C:6D:FE:2B:32:08:75:D3:87:1E:40:EE:00
Authority key identifier: 6C:66:D5:CB:2F:9C:AD:3F:48:43:F7:14:A4:DC:62:D7:21:3D:EB:E8
Certificate issuer: /CN=6c66d5cb2f9cad3f4843f714a4dc62d7213debe8
Certificate serial: 019D39778DDD75930BD1BF3FB358403DBCE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bGbVyy-crT9IQ_cUpNxi1yE96-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 12:00:29 +0000
Manifest this update: Sun 29 Mar 2026 12:00:29 +0000
Manifest next update: Mon 30 Mar 2026 12:00:29 +0000
Files and hashes: 1: C5jsnVKUNd-QjxAfcYEN208S_pw.roa (hash: hPHsfdIlUzljJe1+AZwmO8/boBM8APNo8d6nTn8lWf0=)
2: bGbVyy-crT9IQ_cUpNxi1yE96-g.crl (hash: 4WguYr942Aqx7gxrJrN7XgUUhKDRe89Ww2d71YeS+IY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.mft
rsync://rpki.ripe.net/repository/DEFAULT/bGbVyy-crT9IQ_cUpNxi1yE96-g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:8d:dd:75:93:0b:d1:bf:3f:b3:58:40:3d:bc:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c66d5cb2f9cad3f4843f714a4dc62d7213debe8
Validity
Not Before: Mar 29 12:00:29 2026 GMT
Not After : Mar 30 12:00:29 2026 GMT
Subject: CN=b018866969af1c9c6dfe2b320875d3871e40ee00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0c:32:5c:6f:39:0e:2a:1a:87:aa:7b:2a:62:
32:f1:1d:36:28:95:b8:fb:e3:bf:ff:09:d1:e3:1f:
36:7a:1d:5c:fe:b2:96:00:1c:dc:f6:70:de:a2:e5:
90:00:f5:50:b1:c7:d7:d5:d8:cb:ac:ac:ce:e9:d5:
99:96:23:90:14:ab:6e:9d:6e:c8:93:71:42:c0:b9:
4e:53:b6:1b:b5:29:32:3c:d7:84:3b:12:54:10:b3:
21:1d:04:af:59:fc:b5:85:6a:a0:70:fe:01:08:40:
67:ab:15:4d:ed:37:4f:83:86:e0:2d:ac:f5:61:e4:
10:cd:54:c1:f6:84:1d:f6:e6:e7:f8:6a:46:78:37:
86:d5:d0:f4:d2:58:6a:8b:f7:ef:78:c6:bd:85:28:
48:ae:89:0d:02:36:83:7c:1b:6d:b5:f5:28:f0:a1:
12:94:91:5b:af:df:2f:80:6b:da:98:29:06:d7:dd:
52:b7:42:7d:c0:72:ce:3f:31:9f:b4:5f:f3:3a:61:
77:9b:cb:1c:6e:d2:70:ee:54:80:50:27:d5:91:5f:
84:a2:aa:31:32:bc:ee:aa:78:ec:75:03:43:3f:ab:
b5:82:6a:57:8c:f3:9f:25:c5:0d:d2:e7:47:60:07:
63:72:11:38:ce:15:6a:0d:6a:43:bc:cd:a7:56:24:
4e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:18:86:69:69:AF:1C:9C:6D:FE:2B:32:08:75:D3:87:1E:40:EE:00
X509v3 Authority Key Identifier:
keyid:6C:66:D5:CB:2F:9C:AD:3F:48:43:F7:14:A4:DC:62:D7:21:3D:EB:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bGbVyy-crT9IQ_cUpNxi1yE96-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:23:99:ae:e4:f7:2a:09:09:99:7f:23:cf:e3:1c:7d:d9:25:
f6:f0:a0:62:87:f2:7d:82:cf:a3:09:a1:1d:83:85:0f:6a:98:
0e:95:c0:23:3d:9b:c6:f5:f2:2d:3e:07:ef:ee:a2:0c:79:0b:
79:e2:e8:35:1f:e9:04:7d:39:fe:cc:72:62:61:bf:d9:6e:5a:
2b:c3:b1:f4:ed:21:cc:13:32:2c:1e:1d:24:9c:92:d3:da:8c:
22:26:a6:94:f5:46:60:ae:6d:77:4c:0d:fd:f4:c3:3c:fc:a4:
00:55:81:46:36:d4:e3:cb:70:fb:19:fc:ad:d0:1c:bc:03:66:
77:52:15:3e:1e:6d:bb:b1:6e:80:43:3c:70:6c:95:1f:60:43:
47:28:86:43:40:33:b1:7b:96:c9:8d:c1:f7:7f:b6:40:53:ba:
bb:7d:88:f8:b3:8c:83:02:31:69:b3:b7:48:d6:ec:2f:b5:20:
1c:43:d2:63:92:72:5d:26:64:03:30:84:2e:05:e9:2d:b4:d4:
ef:0c:aa:f0:8a:d9:3e:f9:c1:7b:f1:b5:6d:c6:a1:14:9b:3e:
88:3c:4d:34:97:0a:84:7d:63:cb:2d:2b:d7:b0:54:b6:9c:96:
90:29:58:88:85:1d:1f:78:b1:68:43:42:2c:06:ce:bd:11:43:
3f:4a:93:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:00:39 2026 by rpki-client