Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
File: bMdYWreoPsgLVauVe_N7eR52UBY.mft (raw, json)
Hash identifier: /zx0hPfjOoc765OrysWJGMGvNuLEIoArHxPQhmEMVx8=
Subject key identifier: AF:C3:37:39:D2:8E:10:A8:0F:BA:7A:86:17:E0:C7:A6:C4:19:5B:32
Authority key identifier: 6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
Certificate issuer: /CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Certificate serial: 019D3752F5080A9CC62462208C86E6D4E51C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
Manifest number: 15FA
Signing time: Sun 29 Mar 2026 02:01:16 +0000
Manifest this update: Sun 29 Mar 2026 02:01:16 +0000
Manifest next update: Mon 30 Mar 2026 02:01:16 +0000
Files and hashes: 1: bMdYWreoPsgLVauVe_N7eR52UBY.crl (hash: 8cJzkUxiJ5Mg7hYHxEn5x0Q0sTH5W3QwC/saCTy1jYc=)
2: e51r6d8MY0z0wgESUl_beU3OIIY.roa (hash: NKb+xyyt/CtCVFv1JVTrUrEnFhYCHL7jXn1hVp8rZ4E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:f5:08:0a:9c:c6:24:62:20:8c:86:e6:d4:e5:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Validity
Not Before: Mar 29 02:01:16 2026 GMT
Not After : Mar 30 02:01:16 2026 GMT
Subject: CN=afc33739d28e10a80fba7a8617e0c7a6c4195b32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8b:06:39:75:5b:c5:66:3d:72:a9:25:a8:8a:
36:53:a8:d4:02:ad:77:03:1c:6c:ec:6d:c2:02:1d:
ce:67:88:26:2c:9b:cc:46:90:ab:c5:16:3c:dd:03:
ec:0d:9c:ad:e2:10:27:9e:8e:8a:86:4f:ba:e0:94:
d8:da:0f:e9:ad:3c:60:ba:8a:19:6e:bb:2d:1e:b2:
d5:64:7a:36:9d:53:e6:be:3b:a3:3a:14:1b:87:23:
8f:ae:b0:e5:c8:6a:38:79:94:af:59:02:dd:9c:54:
2e:27:16:51:b8:16:66:55:b7:f4:8b:4b:d8:26:08:
9d:71:12:60:e5:6b:54:40:f8:91:1a:31:85:e5:46:
5f:b8:fa:60:0e:47:9d:68:3b:01:b6:ac:de:e1:99:
4c:c2:86:4f:50:51:77:be:4d:b6:c7:7f:ed:b5:dd:
90:c0:e6:23:16:43:6f:4e:1b:ad:a6:66:52:45:9d:
64:02:50:d6:20:fa:8a:cb:58:dc:f4:36:dd:f1:e5:
68:77:fc:f8:21:96:8d:25:6a:50:72:1d:b0:1e:06:
5d:b3:99:d2:7b:62:38:b4:12:5f:51:31:c5:60:d4:
f2:1f:74:d9:57:89:ea:93:b6:ca:e7:d2:69:55:6b:
38:f6:ed:92:e1:15:1b:fa:aa:ba:3b:79:8f:f6:ba:
71:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:C3:37:39:D2:8E:10:A8:0F:BA:7A:86:17:E0:C7:A6:C4:19:5B:32
X509v3 Authority Key Identifier:
keyid:6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:d9:3b:67:26:bc:57:7a:98:e2:0f:2b:d0:04:d4:bd:cd:c6:
90:ad:11:e2:b5:cd:b2:81:9f:1a:4c:b9:75:22:c0:74:70:d4:
a0:3a:9c:0f:56:2c:38:4c:c1:a0:ae:d0:7c:bd:bd:9e:8e:18:
f5:67:a0:c2:a3:95:be:14:fb:c3:e1:ed:57:68:74:5c:09:ff:
a2:f5:e2:bc:45:77:2d:ce:f6:e6:49:7a:ff:4f:37:2f:ab:3d:
52:b0:82:1d:dd:01:7e:4a:6b:d0:a9:ab:7b:ae:37:54:f4:4a:
6e:e7:9c:e9:a5:e0:2e:5c:fd:be:d6:e5:d1:82:88:61:ae:49:
af:c1:33:85:49:d5:5d:e7:ea:87:4e:ed:0b:dd:85:89:13:b4:
2a:c4:89:25:79:82:16:b0:5a:53:66:2b:60:13:24:5b:ed:89:
16:93:36:bf:f7:f8:50:ac:e8:16:42:58:10:54:89:c5:9c:4e:
6a:22:04:84:69:0a:e4:5d:91:ca:40:b7:be:cf:b7:65:eb:e5:
84:54:08:be:0d:c5:24:f8:6d:7a:37:89:57:39:83:9e:b3:ba:
99:63:0d:ff:cd:59:26:3d:59:1d:45:6d:69:74:d3:84:de:5a:
7c:dc:15:23:af:93:9e:57:9a:1d:15:17:be:ab:98:46:11:3d:
8c:2a:58:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:13 2026 by rpki-client