Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
File: bd1AUuD8dlNjYcu9x3UId93zYK0.mft (raw, json)
Hash identifier: PaSqbSWvMtCkC+D4oSuYcaghyWlfoS1CucHjo/xFDTQ=
Subject key identifier: 64:74:97:31:AB:EA:0B:D0:36:D9:24:0B:D1:F8:87:5E:82:2A:54:B1
Authority key identifier: 6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
Certificate issuer: /CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Certificate serial: 019D382E4CB37BADA0165C6F1789AD1DC334
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
Manifest number: 119F
Signing time: Sun 29 Mar 2026 06:00:51 +0000
Manifest this update: Sun 29 Mar 2026 06:00:51 +0000
Manifest next update: Mon 30 Mar 2026 06:00:51 +0000
Files and hashes: 1: bd1AUuD8dlNjYcu9x3UId93zYK0.crl (hash: FqOxhsULyT5H2TDhCtkyZqsvgEV77PKAvPvJIKPplF0=)
2: v-QuOOYMf4HsWM21RDZIDik1F8Y.roa (hash: tkB5JnPvXNK8KkYHS1hN95y7jCOIV01txTm1VSy3JoA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:4c:b3:7b:ad:a0:16:5c:6f:17:89:ad:1d:c3:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Validity
Not Before: Mar 29 06:00:51 2026 GMT
Not After : Mar 30 06:00:51 2026 GMT
Subject: CN=64749731abea0bd036d9240bd1f8875e822a54b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e1:6c:f4:2f:9a:ef:e5:92:a7:e8:4f:82:ee:
b1:a4:14:ad:fb:d9:4c:05:07:84:bf:6a:8f:87:5e:
1e:c5:f1:86:a0:34:57:98:8e:cd:48:bd:75:5f:f6:
da:2d:d6:32:ae:46:0f:5c:90:41:d0:1c:da:5e:ff:
54:13:14:43:29:65:f5:3d:6e:c6:66:d6:b7:c8:ea:
ac:7a:ca:90:75:26:85:57:d0:ed:c6:ac:b3:86:aa:
0f:e8:21:0e:70:98:00:c1:f5:ff:2a:3e:7e:06:12:
eb:93:55:c2:f2:53:63:a1:99:2c:d1:65:d0:4e:3f:
12:7d:96:08:74:66:ca:8a:dd:30:34:1a:21:7b:de:
3c:98:ab:ca:d7:ec:21:93:3b:e3:ae:76:6a:ee:46:
f9:21:d1:09:eb:e3:d8:20:e3:04:ea:77:5d:ff:86:
b6:22:b3:ec:88:0a:45:1c:a8:f0:43:05:33:b0:c2:
ae:ea:f2:83:06:f3:fa:97:51:ad:5c:8b:17:19:71:
0f:52:75:35:10:5b:b4:98:71:6b:70:40:18:da:ff:
08:78:75:a6:88:75:3b:07:42:78:c5:ec:25:0c:b6:
8e:11:1a:ed:47:7c:31:c0:8d:86:8b:b0:83:27:ab:
0f:5a:3e:7d:0c:9a:5a:01:96:2c:3a:28:48:35:e6:
f8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:74:97:31:AB:EA:0B:D0:36:D9:24:0B:D1:F8:87:5E:82:2A:54:B1
X509v3 Authority Key Identifier:
keyid:6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:f7:f5:15:90:84:e8:86:c0:4b:41:34:d1:f3:dd:02:50:83:
3e:70:c0:ff:6a:05:bf:69:2d:e2:26:2b:2d:3a:14:41:f9:e5:
6d:1f:3b:1c:51:8e:f8:57:ff:75:d5:d7:ae:80:5b:5c:af:e1:
84:5e:5b:de:27:f6:76:a9:5d:e2:7b:08:26:47:f4:b6:47:04:
67:bc:e7:dd:8f:45:b4:58:94:2d:aa:a0:ba:61:57:65:3f:54:
8d:e8:df:ff:f1:de:95:dc:9b:55:cb:f5:52:90:ac:9c:a3:2b:
65:5a:40:c0:95:1f:3d:ee:76:e7:aa:23:57:59:c0:b5:b4:83:
6b:40:a3:ea:19:ed:36:10:ad:2e:7a:e8:19:52:ee:90:3f:55:
da:4c:0d:2c:b3:55:7f:31:48:33:81:c7:d2:66:60:a6:f8:4f:
9f:6b:db:36:16:ab:36:ab:af:0a:04:17:f8:d1:46:46:7d:13:
96:93:b7:6f:8e:d1:8b:e7:87:f5:df:59:f9:1e:22:af:80:cd:
08:2c:6f:1a:dd:df:47:98:ff:d3:1a:50:e7:ae:c2:4f:73:b0:
8a:07:0f:96:52:9a:89:f9:77:4c:57:90:79:46:7a:7b:01:8a:
12:3e:87:12:a4:92:7c:7c:ee:92:97:ed:80:87:aa:54:6c:e8:
7c:52:0a:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:13:24 2026 by rpki-client