Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/61979a-ea83-4ee7-b7f7-e168db2c54b4/1/bZ_0pTo9sPQyggzXN9VD-Gepctg.mft
File: bZ_0pTo9sPQyggzXN9VD-Gepctg.mft (raw, json)
Hash identifier: FybX7zzhtkzf4/RLi/Qs/V8xphmi/YCQKmd9Vy9DSPE=
Subject key identifier: 3F:A9:5D:86:24:9E:0D:6B:37:22:48:72:30:9B:F6:D2:7A:CF:74:55
Authority key identifier: 6D:9F:F4:A5:3A:3D:B0:F4:32:82:0C:D7:37:D5:43:F8:67:A9:72:D8
Certificate issuer: /CN=6d9ff4a53a3db0f432820cd737d543f867a972d8
Certificate serial: 019D3A5473A69864BC9912E9E39FB39B0B96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bZ_0pTo9sPQyggzXN9VD-Gepctg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/61979a-ea83-4ee7-b7f7-e168db2c54b4/1/bZ_0pTo9sPQyggzXN9VD-Gepctg.mft
Manifest number: 1893
Signing time: Sun 29 Mar 2026 16:01:46 +0000
Manifest this update: Sun 29 Mar 2026 16:01:46 +0000
Manifest next update: Mon 30 Mar 2026 16:01:46 +0000
Files and hashes: 1: WGGxRGnSpSQM4E5fz2l8fx0ruxM.roa (hash: zDZbumDhMR6Ghkp07YAiTeEiF3v2S77fftVITSxto9g=)
2: bZ_0pTo9sPQyggzXN9VD-Gepctg.crl (hash: /69nobm7v8Om4vqHB+yXP5E74iqDVpvsySATkSXA4sE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/61979a-ea83-4ee7-b7f7-e168db2c54b4/1/bZ_0pTo9sPQyggzXN9VD-Gepctg.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/61979a-ea83-4ee7-b7f7-e168db2c54b4/1/bZ_0pTo9sPQyggzXN9VD-Gepctg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bZ_0pTo9sPQyggzXN9VD-Gepctg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:54:73:a6:98:64:bc:99:12:e9:e3:9f:b3:9b:0b:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d9ff4a53a3db0f432820cd737d543f867a972d8
Validity
Not Before: Mar 29 16:01:46 2026 GMT
Not After : Mar 30 16:01:46 2026 GMT
Subject: CN=3fa95d86249e0d6b37224872309bf6d27acf7455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f1:83:83:2f:d2:6a:84:60:11:f9:87:33:36:
2d:f6:46:0c:1a:3e:ab:a9:d5:ae:c0:60:c9:a0:b3:
8b:da:eb:29:17:e0:cf:49:5c:92:ca:b3:66:81:37:
a4:32:37:3b:6c:bd:83:6f:fc:b3:2d:7a:0c:fe:c6:
a9:a7:12:3e:11:b2:91:20:e2:42:4c:09:21:95:e9:
39:a6:6a:35:fe:80:9d:7f:a4:f0:69:97:24:f9:c0:
22:bf:ef:ef:75:0b:5c:5a:30:ac:20:3d:42:5d:65:
6a:f9:ff:e4:aa:57:f2:98:10:ed:71:af:f7:8b:7c:
d6:2d:2d:13:60:5f:11:32:45:ca:cd:1e:55:90:f9:
4e:6c:e8:bc:7f:58:4b:cd:ad:a9:3d:1d:57:f6:f0:
df:e5:1d:79:65:d7:d2:46:ac:30:fe:de:5b:d5:5b:
7d:af:4a:52:8c:4a:11:0b:b0:c3:ce:88:5f:d5:f9:
49:66:cd:9b:3d:38:c6:ce:92:d1:8f:5c:2f:44:88:
28:e9:5e:55:25:5a:e6:ee:d3:af:da:33:e7:9f:38:
d4:80:d0:a8:7b:87:cb:66:11:c2:cc:ae:e0:bb:a2:
0d:c1:46:a9:e5:1f:7b:d0:0d:bf:2c:93:6d:e6:c5:
bb:c3:4c:95:ca:17:b3:a0:ed:07:f2:8e:68:77:3e:
2e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:A9:5D:86:24:9E:0D:6B:37:22:48:72:30:9B:F6:D2:7A:CF:74:55
X509v3 Authority Key Identifier:
keyid:6D:9F:F4:A5:3A:3D:B0:F4:32:82:0C:D7:37:D5:43:F8:67:A9:72:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bZ_0pTo9sPQyggzXN9VD-Gepctg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/61979a-ea83-4ee7-b7f7-e168db2c54b4/1/bZ_0pTo9sPQyggzXN9VD-Gepctg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/61979a-ea83-4ee7-b7f7-e168db2c54b4/1/bZ_0pTo9sPQyggzXN9VD-Gepctg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:4b:9a:22:98:b2:2f:a6:f1:8e:bf:03:e7:c4:5b:a2:6e:3f:
c0:51:c0:ed:39:30:3a:fc:a7:21:7f:d1:cb:1b:21:c2:be:41:
b5:41:57:a9:c1:dc:03:8d:c6:86:05:8d:8c:a2:e2:5a:4c:84:
43:19:22:bd:14:1e:17:6b:b0:98:fe:cd:e4:80:14:84:d9:e0:
c7:e4:cf:c2:a1:ea:f1:fe:f6:76:70:e9:8b:22:d7:de:1c:f0:
1c:f6:86:c2:ad:84:e8:41:48:18:da:c1:58:b6:91:06:b4:5b:
5c:df:b1:7c:e1:f7:a3:71:a1:ad:14:21:69:a3:28:17:7a:6a:
1f:27:35:29:f1:ca:b9:9f:dd:2d:c2:d1:4e:c5:a6:22:21:e9:
48:02:c5:71:9f:58:33:7c:40:b4:32:3c:31:63:66:11:83:43:
35:9d:d2:36:46:53:f0:4e:a4:cb:b3:e1:9c:cd:63:5c:75:04:
a5:5f:cd:f8:70:f0:d2:bc:8a:ee:7b:7d:bb:50:68:e6:ee:b2:
40:dc:d2:69:bd:d2:6e:f1:e1:6a:3a:4e:eb:b6:73:88:ae:66:
0a:e6:51:4a:99:e2:14:eb:c1:6c:c7:77:56:03:55:06:66:51:
fd:c6:4f:71:05:76:c1:81:50:9a:36:cf:ef:72:5a:5d:c0:30:
cf:4f:60:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:50:19 2026 by rpki-client