Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
File: bzipg89Dc6pJdJhasi1RTA9IHS4.mft (raw, json)
Hash identifier: daKUnyfa5b2FpoTyivtg7jevSLqcdsYvdfXA1TJBRao=
Subject key identifier: DC:5C:B2:01:21:56:E2:41:2A:F8:3F:27:A5:3B:76:25:AA:6B:02:59
Authority key identifier: 6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
Certificate issuer: /CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Certificate serial: 019D3940B86A08574B5331F21113542F7ADB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
Manifest number: 04DD
Signing time: Sun 29 Mar 2026 11:00:35 +0000
Manifest this update: Sun 29 Mar 2026 11:00:35 +0000
Manifest next update: Mon 30 Mar 2026 11:00:35 +0000
Files and hashes: 1: CFG1heBbtoZ3C34wQ-l9LF7gRkA.roa (hash: Oxb1oer/Ad9vuz1FfC3NXR6Dfq/xfhHJ1WN4SPW38Qo=)
2: bzipg89Dc6pJdJhasi1RTA9IHS4.crl (hash: vJuyrZLQJlY0Lc1dScHDTdfeyXtQT0RL7zWM4O9YS1c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:b8:6a:08:57:4b:53:31:f2:11:13:54:2f:7a:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Validity
Not Before: Mar 29 11:00:35 2026 GMT
Not After : Mar 30 11:00:35 2026 GMT
Subject: CN=dc5cb2012156e2412af83f27a53b7625aa6b0259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:de:af:86:02:6a:65:d0:55:d3:e7:e3:20:33:
23:5b:54:b2:42:c9:71:dd:5d:d2:6a:e3:f7:fd:f6:
b6:d3:e8:43:4d:00:bf:16:b1:ed:c4:9f:37:85:0f:
c0:16:ef:28:2d:72:e7:dc:28:92:43:bb:4c:5a:4a:
f2:40:c3:e6:85:8b:da:64:c0:af:ad:35:42:ae:ba:
df:e2:35:a3:7f:f4:8c:80:8e:68:16:c8:70:27:1b:
13:0b:84:ba:e7:13:54:00:3f:2e:b9:d0:21:24:19:
c2:38:27:3a:20:e1:0e:6f:63:53:bf:16:ae:ab:9a:
3f:36:99:b4:a5:c0:9b:4b:f3:89:d1:bc:8f:34:19:
7c:b7:01:de:80:e8:cb:6f:c0:b5:b5:66:2a:af:23:
74:79:c6:61:5b:ec:8d:dd:6a:0a:f7:4d:b0:7d:35:
ed:89:30:8d:27:23:8d:1c:9c:e6:d1:2b:5e:b0:19:
53:e1:a3:d5:ad:60:12:26:98:11:da:e5:61:63:19:
69:e5:68:34:d4:58:29:15:f4:25:79:13:22:66:34:
20:ee:88:bc:7b:33:c6:52:7a:f8:df:2f:fd:83:6f:
6e:a2:38:ec:2c:9f:b5:84:16:68:13:6c:22:05:44:
09:bd:09:88:52:d5:f0:66:1d:27:32:d8:1d:71:22:
c0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:5C:B2:01:21:56:E2:41:2A:F8:3F:27:A5:3B:76:25:AA:6B:02:59
X509v3 Authority Key Identifier:
keyid:6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:55:68:92:28:f2:36:15:33:ec:6a:13:fc:95:d8:ae:b3:a6:
93:ac:c0:49:f9:f9:8c:52:61:fb:ec:09:aa:8d:49:89:ab:73:
f2:1c:07:fb:a3:f4:28:91:24:71:9b:f5:73:0e:56:ea:15:e5:
f3:dd:f6:aa:9b:bf:68:3a:0a:ba:2a:bf:da:9f:3d:13:f8:30:
2e:25:43:ff:05:06:bb:82:28:57:4e:84:43:c9:a5:a9:17:cb:
f5:a5:7a:1d:f0:5c:5a:59:85:1c:64:1d:26:94:5a:12:e7:31:
7f:6b:91:de:d8:ab:18:7e:2c:e2:de:fd:5c:b7:74:2e:d3:7c:
1a:1e:da:9f:a5:c4:c6:60:b5:fb:97:10:23:77:b9:60:2d:6c:
d0:0d:9a:7c:cd:08:d6:14:c1:ce:0f:7d:88:98:22:09:80:6c:
2b:f8:9f:ce:bb:79:22:b3:c3:0f:1a:b0:5b:d6:d0:cf:7e:35:
73:34:ff:cd:56:d0:a7:7f:bb:3f:25:71:f0:03:a5:56:99:e6:
3a:90:f6:57:d2:45:0e:a9:b5:a7:4a:26:35:8a:3c:0d:dd:b4:
6b:13:82:5e:74:b5:74:33:ba:63:5c:f0:38:2c:09:8a:36:8e:
3c:91:ed:e5:08:e8:2c:a3:85:ba:d6:43:b6:e0:1c:65:09:11:
b3:e5:0e:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QLhqCFdLUzHyERNUL3rbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMzhhOTgzY2Y0MzczYWE0OTc0OTg1YWIyMmQ1MTRjMGY0
ODFkMmUwHhcNMjYwMzI5MTEwMDM1WhcNMjYwMzMwMTEwMDM1WjAzMTEwLwYDVQQD
EyhkYzVjYjIwMTIxNTZlMjQxMmFmODNmMjdhNTNiNzYyNWFhNmIwMjU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv96vhgJqZdBV0+fjIDMjW1SyQslx
3V3SauP3/fa20+hDTQC/FrHtxJ83hQ/AFu8oLXLn3CiSQ7tMWkryQMPmhYvaZMCv
rTVCrrrf4jWjf/SMgI5oFshwJxsTC4S65xNUAD8uudAhJBnCOCc6IOEOb2NTvxau
q5o/Npm0pcCbS/OJ0byPNBl8twHegOjLb8C1tWYqryN0ecZhW+yN3WoK902wfTXt
iTCNJyONHJzm0StesBlT4aPVrWASJpgR2uVhYxlp5Wg01FgpFfQleRMiZjQg7oi8
ezPGUnr43y/9g29uojjsLJ+1hBZoE2wiBUQJvQmIUtXwZh0nMtgdcSLAFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNxcsgEhVuJBKvg/J6U7diWqawJZMB8GA1UdIwQY
MBaAFG84qYPPQ3OqSXSYWrItUUwPSB0uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnppcGc4OURjNnBKZEpoYXNpMVJUQTlJSFM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS83NDMzN2ItZjk4ZS00ZTMxLTkwMDQt
YWY1YTU2NzczMmVmLzEvYnppcGc4OURjNnBKZEpoYXNpMVJUQTlJSFM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS83NDMzN2ItZjk4ZS00ZTMxLTkwMDQtYWY1YTU2NzczMmVm
LzEvYnppcGc4OURjNnBKZEpoYXNpMVJUQTlJSFM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQlVokijy
NhUz7GoT/JXYrrOmk6zASfn5jFJh++wJqo1Jiatz8hwH+6P0KJEkcZv1cw5W6hXl
8932qpu/aDoKuiq/2p89E/gwLiVD/wUGu4IoV06EQ8mlqRfL9aV6HfBcWlmFHGQd
JpRaEucxf2uR3tirGH4s4t79XLd0LtN8Gh7an6XExmC1+5cQI3e5YC1s0A2afM0I
1hTBzg99iJgiCYBsK/ifzrt5IrPDDxqwW9bQz341czT/zVbQp3+7PyVx8AOlVpnm
OpD2V9JFDqm1p0omNYo8Dd20axOCXnS1dDO6Y1zwOCwJijaOPJHt5QjoLKOFutZD
tuAcZQkRs+UOSQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:54:38 2026 by rpki-client