Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
File: bIkO9qiKsz-logZ2B2jdMlHCOK8.mft (raw, json)
Hash identifier: aPzk8eKJe/nkMYSPIrcQQmlTp84am67ecnLBz3qzS0Q=
Subject key identifier: 96:C5:1D:DB:E4:D9:BB:3F:7F:CA:31:EA:91:3D:77:72:BD:C2:98:EE
Authority key identifier: 6C:89:0E:F6:A8:8A:B3:3F:A5:A2:06:76:07:68:DD:32:51:C2:38:AF
Certificate issuer: /CN=6c890ef6a88ab33fa5a206760768dd3251c238af
Certificate serial: 019D37C082522221AC7D4C1CFE239F142BB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 04:00:56 +0000
Manifest this update: Sun 29 Mar 2026 04:00:56 +0000
Manifest next update: Mon 30 Mar 2026 04:00:56 +0000
Files and hashes: 1: bIkO9qiKsz-logZ2B2jdMlHCOK8.crl (hash: MeOhePHd/71mH6VHIMY2F1kVM0lVQVBJhNgJ7Czauc4=)
2: u5hJOCynJQAu4PH5D56C-AeKtEc.roa (hash: 53JyrjI2rSv7IJ0kdQIBEc2NY8BsRGlwPaWvUaVHA/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:82:52:22:21:ac:7d:4c:1c:fe:23:9f:14:2b:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c890ef6a88ab33fa5a206760768dd3251c238af
Validity
Not Before: Mar 29 04:00:56 2026 GMT
Not After : Mar 30 04:00:56 2026 GMT
Subject: CN=96c51ddbe4d9bb3f7fca31ea913d7772bdc298ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e0:19:02:fb:d7:e2:a9:99:ee:d9:d6:90:ac:
b4:0c:6b:f3:40:a7:f0:45:58:59:6f:af:fd:4c:10:
8b:f0:56:37:56:27:de:a8:18:48:61:1a:d1:65:0e:
54:6a:f2:bd:27:68:95:04:c0:ed:78:aa:be:fe:eb:
35:9a:11:33:e2:05:53:fb:53:d2:52:83:d0:9a:ec:
f4:cd:82:be:f9:fb:ab:f0:c9:d8:89:90:1c:78:cc:
6d:d1:ad:b1:f2:f6:6a:af:7b:91:ab:ff:41:34:c8:
eb:25:da:0f:6c:7d:b2:bd:00:be:87:97:ae:65:26:
4b:99:d8:5d:ef:f9:5c:f2:b5:e1:b6:26:0d:1e:8a:
99:8c:95:12:41:cb:a8:82:f8:10:f1:88:b1:6c:ce:
97:0e:3b:a5:99:19:7a:32:09:6d:5d:db:74:38:26:
dd:f2:7a:d9:d9:a5:21:e5:e4:48:3f:b4:7f:b7:f7:
82:ba:4c:3f:b7:6d:e6:7e:36:66:67:30:24:1e:bc:
ee:5f:d6:57:81:0b:bd:20:0e:a4:cb:18:28:bd:ed:
fb:bb:a7:ae:3f:77:84:f4:9c:32:7d:84:14:d9:a2:
e3:3a:5f:61:3a:38:92:2f:26:d3:50:f1:c6:68:ca:
33:40:c9:62:6b:f2:d8:69:8c:5b:dc:a0:00:04:57:
33:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C5:1D:DB:E4:D9:BB:3F:7F:CA:31:EA:91:3D:77:72:BD:C2:98:EE
X509v3 Authority Key Identifier:
keyid:6C:89:0E:F6:A8:8A:B3:3F:A5:A2:06:76:07:68:DD:32:51:C2:38:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:5f:73:94:47:b6:72:c6:b8:14:40:56:1c:0b:30:c4:b6:61:
ab:f9:4a:21:c8:78:8e:04:a2:1a:2c:dc:fe:12:a7:45:4c:b7:
6e:ff:27:ce:5e:e3:cd:d5:0c:e1:1e:9a:a5:88:bb:7a:c8:46:
2f:0d:3f:ae:ac:0c:8d:cd:e7:58:de:b6:b7:38:0a:4c:bc:ba:
69:64:81:02:d4:3d:8b:1a:07:d8:e0:b5:d0:a5:3b:89:c9:34:
5e:b8:ad:6d:af:07:0b:b7:36:ba:c4:0e:26:70:02:2a:02:a2:
4f:00:a6:10:25:75:f3:4b:b1:3a:b3:8d:5c:3c:76:88:b7:34:
e3:69:aa:59:0c:2f:ae:da:60:a4:b5:77:69:49:38:77:f8:1f:
47:17:32:9f:28:8d:5a:86:06:27:da:18:d9:ba:ae:48:f3:9a:
9f:21:94:ed:dd:4a:bc:6d:ca:74:90:0c:a7:48:be:26:d6:3c:
ac:00:33:26:5b:9e:41:ee:b9:ee:b8:a8:c3:50:12:b8:33:ea:
9e:37:fa:1e:47:05:b2:e3:13:3d:67:c2:99:78:ff:7c:d8:e7:
5b:86:bc:70:b5:c0:39:01:cf:72:f3:0b:b6:7d:07:73:b6:e0:
db:aa:d3:7c:8d:17:ab:cd:02:cc:4d:ae:9e:ed:d8:91:7f:94:
e7:92:6d:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:00 2026 by rpki-client