Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
File: fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft (raw, json)
Hash identifier: gIjtsBxTYG5ouyhtjHM9PVKgsIdyv/WEy3Q6K8zfstw=
Subject key identifier: 8B:B7:BF:59:0D:22:3C:4B:80:BC:66:8A:F0:81:CE:14:BD:48:94:A4
Authority key identifier: 7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
Certificate issuer: /CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Certificate serial: 019D37F742E492DC03452A04B26D977DAF12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
Manifest number: 1821
Signing time: Sun 29 Mar 2026 05:00:44 +0000
Manifest this update: Sun 29 Mar 2026 05:00:44 +0000
Manifest next update: Mon 30 Mar 2026 05:00:44 +0000
Files and hashes: 1: fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl (hash: wu67UraLB0EzB36alwfTzBJtcqhvmqiA82/dOvn7JTE=)
2: uuyf9SL1IzQsxC4GwsHv2Aqvi6I.roa (hash: bWBF8Lzkc1fXhVOcL+v1lM3xBjFclLxIjyc/HWhj0fY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:42:e4:92:dc:03:45:2a:04:b2:6d:97:7d:af:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Validity
Not Before: Mar 29 05:00:44 2026 GMT
Not After : Mar 30 05:00:44 2026 GMT
Subject: CN=8bb7bf590d223c4b80bc668af081ce14bd4894a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e5:a8:a5:1c:81:d5:5e:f1:2d:52:f0:10:97:
56:aa:15:28:e8:70:e4:08:a4:37:47:80:b0:cd:b5:
e2:d6:bc:7f:79:9c:45:7c:28:a1:37:df:40:3c:cd:
13:8d:c2:51:cd:9c:a0:eb:c4:c8:b2:c1:e1:13:b9:
17:a6:76:7c:89:9f:c9:02:85:67:d2:a8:ab:a5:5e:
60:e6:05:28:f5:49:d3:01:18:cf:90:39:b2:52:5e:
b3:0c:67:44:ad:10:81:db:ae:12:58:ce:f8:ad:a3:
c8:23:59:e2:76:e1:59:38:9f:45:9e:35:e7:5c:f5:
97:be:9e:f0:23:2f:2a:19:80:a6:95:2b:66:34:f1:
15:de:a6:1d:b7:2c:cf:81:14:93:de:bc:7d:b5:2e:
8f:18:57:bd:31:c4:df:a1:63:0f:7d:6a:d8:b4:ab:
49:49:81:79:a8:70:f2:a0:91:6a:ce:a3:f2:a1:4d:
13:aa:0e:56:e5:6a:46:51:ab:c9:2b:e5:7e:77:42:
e5:85:6f:8f:a7:c7:0f:ac:92:ef:5b:b2:34:ed:d0:
46:fe:fa:a6:74:f4:52:7c:c5:ad:ee:59:59:f1:64:
d3:02:0d:fc:ea:8a:9c:1d:41:ab:c0:31:b0:19:6a:
a6:b8:ef:ba:1a:cd:50:16:14:2a:5a:dc:b4:5d:94:
57:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B7:BF:59:0D:22:3C:4B:80:BC:66:8A:F0:81:CE:14:BD:48:94:A4
X509v3 Authority Key Identifier:
keyid:7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:a6:1f:e5:36:11:63:f3:d0:14:dd:26:a2:b0:b8:29:9a:17:
5b:6f:4e:53:95:6d:33:35:a8:ac:42:e6:c9:b8:c8:01:55:bf:
03:35:b1:11:7a:d0:4c:b0:eb:7e:c7:80:26:7f:2b:a9:6b:67:
7c:63:41:b7:98:b0:cc:72:9f:f5:38:fa:d8:fe:ca:28:82:43:
3e:e3:a2:11:49:b2:28:0c:10:dc:0b:55:ed:f9:15:61:84:a7:
b6:7c:94:79:09:8d:f9:52:ef:3f:8e:bb:4f:c6:41:ae:bd:ee:
1e:48:df:e3:6a:04:41:a1:6e:79:4a:7f:9b:8e:09:eb:85:9e:
96:e8:63:02:4e:44:dc:4f:98:9f:74:1f:84:33:c1:0b:dc:c5:
a2:b0:e1:37:cf:59:3c:cc:dd:b3:09:ab:fa:9b:72:1e:e5:ff:
6b:c8:fc:08:ce:db:9b:da:2c:69:60:8f:e0:ed:27:52:c9:f4:
81:33:19:02:85:79:45:16:09:93:bf:5d:5d:99:1d:14:e5:06:
04:a4:5a:9a:31:83:e3:2c:2a:5a:fd:0f:28:67:35:75:2f:17:
06:71:1b:16:96:98:3f:c2:01:b7:e3:5f:cd:60:0f:c1:e0:2f:
95:81:98:5c:de:ca:ee:61:4c:54:eb:ca:aa:69:b1:6b:f9:02:
3a:de:f8:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:01:09 2026 by rpki-client