Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
File: bqGhD32UTazB3sBBqqVZ1SK_uus.mft (raw, json)
Hash identifier: tdfL4HMQO4Q5a+rGQhTp5i8b4Svvq7xqZhCqSoIPQog=
Subject key identifier: EC:B0:DF:BE:F4:C7:B6:BC:0D:66:37:F4:75:58:D1:0A:65:79:57:0E
Authority key identifier: 6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB
Certificate issuer: /CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb
Certificate serial: 019D39AEAA44284E15FA8172D7B0C425D38A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
Manifest number: 1606
Signing time: Sun 29 Mar 2026 13:00:41 +0000
Manifest this update: Sun 29 Mar 2026 13:00:41 +0000
Manifest next update: Mon 30 Mar 2026 13:00:41 +0000
Files and hashes: 1: SNun1a2zT4vpVsj5URXeOY95E_k.roa (hash: s7UgHAFz2IiBfVzY5/DYD6jONt8Pg1fhCLkKP3Umvp4=)
2: bqGhD32UTazB3sBBqqVZ1SK_uus.crl (hash: /l6m0ko0GL5SLkw6toJI4yHt0Co0XZ4qTJxx8PJcjHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:aa:44:28:4e:15:fa:81:72:d7:b0:c4:25:d3:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb
Validity
Not Before: Mar 29 13:00:41 2026 GMT
Not After : Mar 30 13:00:41 2026 GMT
Subject: CN=ecb0dfbef4c7b6bc0d6637f47558d10a6579570e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:19:59:82:3f:e0:6c:3f:f2:bc:eb:86:54:df:
e2:25:a9:47:15:94:9d:a0:12:9a:15:51:c7:fe:65:
d8:36:86:f2:ed:81:99:62:60:2a:f5:dc:f4:aa:34:
1f:86:8b:2d:20:ce:5f:18:0d:ba:93:d7:b8:48:70:
33:b3:f3:1f:bc:a6:39:f9:15:92:c9:48:ae:da:9e:
06:d7:16:f1:28:b4:96:59:48:44:ab:da:e9:e8:79:
23:f3:09:45:87:36:a4:c7:60:df:f4:c5:20:03:d8:
16:fc:29:ad:ea:e5:76:8f:cd:ef:ed:5f:04:e7:ef:
9c:bf:1a:2e:73:da:ee:50:f3:cb:76:1c:71:95:d8:
5a:35:de:85:46:bc:1a:26:18:77:a7:28:a8:44:67:
4a:3e:ee:55:ed:94:bc:94:b2:36:5d:00:af:67:6a:
e4:4f:9f:bf:b6:3d:14:ff:37:43:ba:bc:1d:9f:c4:
f5:a1:86:97:ad:d1:5c:08:25:03:46:14:fe:3f:f5:
5f:dd:43:10:13:ed:f6:2a:22:40:e8:34:58:0e:c5:
32:a2:70:a7:3f:a9:17:1f:38:9b:d8:33:d4:a7:d2:
8a:12:21:c0:ef:e9:7c:be:df:6d:1a:f9:71:6f:eb:
54:5a:3b:d8:b9:d5:b8:57:a4:ce:12:3d:12:67:1a:
dc:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:B0:DF:BE:F4:C7:B6:BC:0D:66:37:F4:75:58:D1:0A:65:79:57:0E
X509v3 Authority Key Identifier:
keyid:6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:18:5b:42:37:d8:a4:ae:e9:79:2c:b1:0b:21:10:d0:af:0c:
fb:a3:73:b9:7f:bc:95:9d:12:76:d1:2b:46:1c:bb:31:13:74:
b1:31:13:f4:09:3f:4b:6e:8f:2f:d1:37:6a:77:cf:ac:60:c8:
39:0e:4e:bc:00:5c:1f:f5:29:d3:91:cd:3e:d7:b0:1d:7b:0c:
42:4b:3b:c2:bc:a4:3a:de:43:67:fb:47:3c:65:88:88:da:1a:
2c:93:04:19:83:19:5d:f4:b0:de:fd:68:8e:87:af:43:9a:07:
c1:cb:02:d0:dc:15:8a:29:ee:15:1d:26:f1:ab:f9:f8:9f:94:
aa:9f:2d:c6:55:ce:29:ff:c8:64:4d:ad:29:75:db:df:b1:6c:
28:56:d8:eb:9d:37:e1:7c:5e:78:d7:a9:f9:bc:37:1f:5e:e8:
a9:2d:75:a3:00:0e:e0:77:3b:7d:e8:9f:e7:fe:18:69:c0:11:
6f:8f:91:c6:5d:7f:11:df:e9:a9:12:fc:eb:97:3e:6c:bf:18:
59:3b:79:85:95:5e:99:e9:c7:d8:27:f8:6d:07:8e:88:4c:b8:
66:a1:a3:57:a9:5c:a5:98:18:af:cb:49:fa:c5:63:e6:a5:7d:
83:74:cc:01:f5:30:07:b2:04:bf:ce:a3:e0:fc:ce:13:5f:2e:
f0:53:fe:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 23:00:38 2026 by rpki-client