Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
File: bSID7B5abCZsyjm5rxq-LLILGVo.mft (raw, json)
Hash identifier: QPu4QVOWxkrl3XTbTMjoAGAKEfAK8m6hYmiqn0PtORE=
Subject key identifier: E8:88:38:C0:C3:FD:7D:4A:30:44:27:67:93:41:9F:A0:05:8D:43:41
Authority key identifier: 6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
Certificate issuer: /CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Certificate serial: 019D37C049798E9E5AC3F3C1CD1969EDE9AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 04:00:41 +0000
Manifest this update: Sun 29 Mar 2026 04:00:41 +0000
Manifest next update: Mon 30 Mar 2026 04:00:41 +0000
Files and hashes: 1: KEjUQVlN-kYa2GK1u7oIUmkIKDw.roa (hash: XXTQdFb/FE8pQqJgVu712tdHVCXz3R+MnP7POS5nFQU=)
2: bSID7B5abCZsyjm5rxq-LLILGVo.crl (hash: PtuWFEE+lo/ATOAYVt5LbuF+JDmwJbqGozPcPG2OUZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:49:79:8e:9e:5a:c3:f3:c1:cd:19:69:ed:e9:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Validity
Not Before: Mar 29 04:00:41 2026 GMT
Not After : Mar 30 04:00:41 2026 GMT
Subject: CN=e88838c0c3fd7d4a3044276793419fa0058d4341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b3:6e:7a:94:e0:6f:74:79:07:cc:30:a0:a7:
ca:b9:3b:d7:33:56:83:e4:68:bc:56:ba:c5:c1:4b:
f8:72:6f:53:4a:d1:d9:e3:52:91:42:da:bb:7c:48:
cd:aa:52:72:19:81:db:e6:18:7c:12:0e:0a:0d:4a:
c1:37:e4:8a:55:93:52:ec:fc:3f:20:86:44:8f:e9:
56:8c:e4:1b:ff:4e:de:ed:64:6f:9c:d5:99:8f:cc:
bb:db:7b:da:49:94:96:27:3e:c3:04:ca:99:14:9e:
13:c6:a7:d2:6a:7d:0b:d7:7b:31:b7:c1:1f:58:63:
d5:77:c0:92:55:83:bf:56:1a:b7:c0:3d:36:c7:d8:
6d:34:19:19:20:6a:81:e2:d8:2b:c4:f5:9a:db:46:
5b:04:8c:8c:a2:0f:a4:e0:db:b2:cf:6c:b1:2c:05:
8a:a2:8c:e1:bf:0d:b0:35:50:96:9f:c0:9b:b4:f9:
ec:bf:b4:19:af:e9:79:51:93:df:fb:ef:94:42:5f:
c1:bc:9c:e3:a9:3c:2c:ac:3d:2f:bc:0c:3d:78:7a:
c3:4a:ed:48:f6:9d:63:a2:83:71:ea:a3:f7:ab:5d:
d5:a0:b9:82:5b:56:26:73:34:74:cb:2d:60:f7:e6:
bd:ee:ed:cf:e0:73:ba:e1:37:fb:ea:25:ee:b0:a5:
51:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:88:38:C0:C3:FD:7D:4A:30:44:27:67:93:41:9F:A0:05:8D:43:41
X509v3 Authority Key Identifier:
keyid:6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:db:62:42:7e:5a:17:46:4f:c1:7b:a2:f4:49:43:68:77:6d:
52:af:a4:5b:3e:9d:19:cf:aa:6d:32:44:93:ba:66:2b:23:4d:
bf:27:25:a3:cc:6e:cb:11:2f:b1:b5:a1:ca:5f:5f:98:b3:56:
20:98:30:19:42:d7:04:40:1d:4f:47:e3:05:5c:1f:3d:b0:cb:
b4:ae:3d:68:8c:c9:cb:80:e4:55:75:6e:85:be:20:ca:d4:9c:
9e:76:11:ed:0c:02:4a:f8:7f:73:d3:4b:14:43:95:b4:7d:af:
7b:2e:d4:92:6c:d5:be:b2:55:ef:01:7d:f9:71:9d:c7:a1:bd:
4a:69:b0:18:0f:b1:ef:0c:4f:31:89:f3:ba:04:29:83:e0:99:
d0:27:95:6e:2a:44:36:bb:93:05:3a:50:a7:73:cf:5a:87:fa:
60:80:d2:e0:71:51:3d:04:20:e9:7a:22:fa:d6:6d:d8:eb:8e:
1f:fe:bf:eb:b4:6c:52:2e:46:43:9a:ef:23:b1:5f:01:d9:d8:
a4:9e:91:e4:82:82:52:ab:af:95:e3:12:c7:11:fe:69:50:ed:
65:a2:a2:af:74:5a:e2:ea:7f:9d:db:9c:4f:49:2a:3a:45:af:
d1:d8:de:aa:1c:09:c8:03:f7:82:b8:58:9c:18:63:82:11:f3:
3e:2c:54:6c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03wEl5jp5aw/PBzRlp7emqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMjIwM2VjMWU1YTZjMjY2Y2NhMzliOWFmMWFiZTJjYjIw
YjE5NWEwHhcNMjYwMzI5MDQwMDQxWhcNMjYwMzMwMDQwMDQxWjAzMTEwLwYDVQQD
EyhlODg4MzhjMGMzZmQ3ZDRhMzA0NDI3Njc5MzQxOWZhMDA1OGQ0MzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArrNuepTgb3R5B8wwoKfKuTvXM1aD
5Gi8VrrFwUv4cm9TStHZ41KRQtq7fEjNqlJyGYHb5hh8Eg4KDUrBN+SKVZNS7Pw/
IIZEj+lWjOQb/07e7WRvnNWZj8y723vaSZSWJz7DBMqZFJ4TxqfSan0L13sxt8Ef
WGPVd8CSVYO/Vhq3wD02x9htNBkZIGqB4tgrxPWa20ZbBIyMog+k4Nuyz2yxLAWK
oozhvw2wNVCWn8CbtPnsv7QZr+l5UZPf+++UQl/BvJzjqTwsrD0vvAw9eHrDSu1I
9p1jooNx6qP3q13VoLmCW1YmczR0yy1g9+a97u3P4HO64Tf76iXusKVR1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOiIOMDD/X1KMEQnZ5NBn6AFjUNBMB8GA1UdIwQY
MBaAFG0iA+weWmwmbMo5ua8aviyyCxlaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9mYzUyMmYtYjIwZi00N2FmLTgwYzYt
MWE5Nzk0NGM5MWNhLzEvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9mYzUyMmYtYjIwZi00N2FmLTgwYzYtMWE5Nzk0NGM5MWNh
LzEvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQttiQn5a
F0ZPwXui9ElDaHdtUq+kWz6dGc+qbTJEk7pmKyNNvyclo8xuyxEvsbWhyl9fmLNW
IJgwGULXBEAdT0fjBVwfPbDLtK49aIzJy4DkVXVuhb4gytScnnYR7QwCSvh/c9NL
FEOVtH2vey7UkmzVvrJV7wF9+XGdx6G9SmmwGA+x7wxPMYnzugQpg+CZ0CeVbipE
NruTBTpQp3PPWof6YIDS4HFRPQQg6Xoi+tZt2OuOH/6/67RsUi5GQ5rvI7FfAdnY
pJ6R5IKCUquvleMSxxH+aVDtZaKir3Ra4up/nducT0kqOkWv0djeqhwJyAP3grhY
nBhjghHzPixUbA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:31:46 2026 by rpki-client