Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
File: bfhqH1cK4xUpAiqk9h79nsK5fQU.mft (raw, json)
Hash identifier: sa9JAhjHdurDAklbPaWhVLDaWZLR1HRhG4Dc00z7SdM=
Subject key identifier: B6:75:73:9D:99:3E:96:9A:F2:5B:97:FB:89:A6:E4:2B:AB:73:D4:2E
Authority key identifier: 6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
Certificate issuer: /CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Certificate serial: 019D38D33199FE14CC2634591C8DDFFCCE13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
Manifest number: 170B
Signing time: Sun 29 Mar 2026 09:00:57 +0000
Manifest this update: Sun 29 Mar 2026 09:00:57 +0000
Manifest next update: Mon 30 Mar 2026 09:00:57 +0000
Files and hashes: 1: Nx4WUGOdHpNQN9XS38e-AsCcPVw.roa (hash: 34pVZ/V8QJHpQ0HgHgjAh/BvMJod9h4SmiBh4ahKV2A=)
2: bfhqH1cK4xUpAiqk9h79nsK5fQU.crl (hash: r0wpCEequpMz4I3ZFGYGYEwpeb5pyoqBEDLm/hwEmtw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:31:99:fe:14:cc:26:34:59:1c:8d:df:fc:ce:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Validity
Not Before: Mar 29 09:00:57 2026 GMT
Not After : Mar 30 09:00:57 2026 GMT
Subject: CN=b675739d993e969af25b97fb89a6e42bab73d42e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ad:fa:b3:e1:ce:6f:3e:6c:79:ce:ec:68:bf:
b5:2c:ee:b1:db:57:6f:9c:84:eb:36:a0:95:4c:55:
2a:d7:21:4b:dc:b9:60:fc:0b:7d:00:92:90:7b:5d:
94:91:b4:68:52:3c:89:38:f4:e0:53:57:95:b5:e3:
e8:1f:0b:22:a9:0d:9f:d0:d8:59:1c:82:ac:a5:63:
a3:79:6a:67:fb:c1:c0:45:50:97:5b:b2:1a:fe:81:
87:9c:5f:57:16:59:2c:b0:cd:c0:a5:ca:80:ca:b0:
ff:a4:5d:bb:98:94:36:86:ab:0a:f7:e3:8d:45:65:
e8:dd:25:97:bb:0d:b6:2f:d5:b2:af:fb:b4:f3:87:
2a:34:e3:fe:dc:9f:33:d0:90:76:1b:4b:b1:25:d6:
25:f5:eb:46:29:af:73:d7:cd:e8:89:d4:c0:dc:3b:
d5:1b:e3:40:6e:dd:58:62:17:48:7e:2b:bd:1c:0d:
96:95:cf:43:5b:7a:5a:86:11:57:41:b9:1d:d8:a8:
26:08:e9:e9:68:17:93:6b:0d:37:ef:f2:7b:12:a2:
bd:46:33:6f:fd:c9:aa:e3:0e:c2:5d:23:63:26:19:
b0:96:3c:bd:62:1e:67:d6:e9:ce:47:9c:c8:77:e9:
21:c3:28:64:c0:51:36:73:71:88:7c:8c:af:e8:42:
c4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:75:73:9D:99:3E:96:9A:F2:5B:97:FB:89:A6:E4:2B:AB:73:D4:2E
X509v3 Authority Key Identifier:
keyid:6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:31:56:1e:5d:49:18:ae:c1:2f:91:5e:7f:5a:0b:42:97:b6:
4f:f0:66:35:9f:70:b5:68:c4:90:48:20:2a:df:21:61:fd:48:
97:8c:b1:29:95:58:fe:00:49:c0:69:15:53:bd:2b:35:a8:4b:
2d:5f:78:4f:cd:16:a5:a7:2b:18:54:56:fd:4b:89:92:bf:19:
ff:31:ef:7c:fe:55:b3:0c:85:75:2d:b9:34:de:49:de:a5:df:
79:bf:d8:1b:af:35:13:89:7f:75:cb:e2:25:de:31:d7:25:b4:
08:56:ed:e0:2a:49:1e:b4:df:50:52:d9:8b:57:c9:61:5d:cf:
08:01:8b:06:c5:03:47:7d:3c:c6:c1:43:12:1b:1d:03:63:f2:
46:43:1e:9c:5b:58:31:f4:33:51:b1:68:71:cf:20:3d:70:5a:
39:88:75:a2:06:c1:8c:9c:2e:a8:f5:8a:6c:a1:a0:d7:79:0b:
f1:ff:88:4d:86:3a:26:01:da:34:85:07:92:14:d9:7b:ac:62:
91:ed:5c:2f:1d:09:d6:5f:b9:2a:a0:6c:ad:fa:47:ef:8b:5a:
84:df:3b:de:10:c5:01:24:dd:2b:41:eb:9b:1d:d0:8a:f0:34:
db:6b:c0:18:22:97:84:41:3a:25:29:98:b5:fc:7f:df:0b:40:
ba:99:20:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040zGZ/hTMJjRZHI3f/M4TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZjg2YTFmNTcwYWUzMTUyOTAyMmFhNGY2MWVmZDllYzJi
OTdkMDUwHhcNMjYwMzI5MDkwMDU3WhcNMjYwMzMwMDkwMDU3WjAzMTEwLwYDVQQD
EyhiNjc1NzM5ZDk5M2U5NjlhZjI1Yjk3ZmI4OWE2ZTQyYmFiNzNkNDJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApa36s+HObz5sec7saL+1LO6x21dv
nITrNqCVTFUq1yFL3Llg/At9AJKQe12UkbRoUjyJOPTgU1eVtePoHwsiqQ2f0NhZ
HIKspWOjeWpn+8HARVCXW7Ia/oGHnF9XFlkssM3ApcqAyrD/pF27mJQ2hqsK9+ON
RWXo3SWXuw22L9Wyr/u084cqNOP+3J8z0JB2G0uxJdYl9etGKa9z183oidTA3DvV
G+NAbt1YYhdIfiu9HA2Wlc9DW3pahhFXQbkd2KgmCOnpaBeTaw037/J7EqK9RjNv
/cmq4w7CXSNjJhmwljy9Yh5n1unOR5zId+khwyhkwFE2c3GIfIyv6ELECwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLZ1c52ZPpaa8luX+4mm5Curc9QuMB8GA1UdIwQY
MBaAFG34ah9XCuMVKQIqpPYe/Z7CuX0FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmZocUgxY0s0eFVwQWlxazloNzluc0s1ZlFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS82YWRkMzUtYTk4My00MDExLWFmOGEt
N2FhYzJkODQ3OTU1LzEvYmZocUgxY0s0eFVwQWlxazloNzluc0s1ZlFVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS82YWRkMzUtYTk4My00MDExLWFmOGEtN2FhYzJkODQ3OTU1
LzEvYmZocUgxY0s0eFVwQWlxazloNzluc0s1ZlFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlDFWHl1J
GK7BL5Fef1oLQpe2T/BmNZ9wtWjEkEggKt8hYf1Il4yxKZVY/gBJwGkVU70rNahL
LV94T80WpacrGFRW/UuJkr8Z/zHvfP5VswyFdS25NN5J3qXfeb/YG681E4l/dcvi
Jd4x1yW0CFbt4CpJHrTfUFLZi1fJYV3PCAGLBsUDR308xsFDEhsdA2PyRkMenFtY
MfQzUbFocc8gPXBaOYh1ogbBjJwuqPWKbKGg13kL8f+ITYY6JgHaNIUHkhTZe6xi
ke1cLx0J1l+5KqBsrfpH74tahN873hDFASTdK0Hrmx3QivA022vAGCKXhEE6JSmY
tfx/3wtAupkgLw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:56:13 2026 by rpki-client