Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft
File: bJHX1fXOV5JskDlz7L8RK_rhUw0.mft (raw, json)
Hash identifier: ixH//83sjLqv0FySfkxXg+CKJUrjNt+3PeQszTDOGzA=
Subject key identifier: 2D:FE:7B:F2:F2:17:19:B9:2D:41:75:4A:A2:92:E6:BD:C2:D8:6B:40
Authority key identifier: 6C:91:D7:D5:F5:CE:57:92:6C:90:39:73:EC:BF:11:2B:FA:E1:53:0D
Certificate issuer: /CN=6c91d7d5f5ce57926c903973ecbf112bfae1530d
Certificate serial: 019D3940B1DAA59E507D331B0CF0FF827AF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 11:00:34 +0000
Manifest this update: Sun 29 Mar 2026 11:00:34 +0000
Manifest next update: Mon 30 Mar 2026 11:00:34 +0000
Files and hashes: 1: bJHX1fXOV5JskDlz7L8RK_rhUw0.crl (hash: kys+56H0I6lBVqrjsND4YbKls4HY1ArVt3H+u+6dmNY=)
2: gAFSZzKTjEVRf47WvbPQw9RuhoM.roa (hash: jPokL5/z/e0Il4m/WG56yEQQsrUzjo4pjF7u6A/T3a4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:b1:da:a5:9e:50:7d:33:1b:0c:f0:ff:82:7a:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c91d7d5f5ce57926c903973ecbf112bfae1530d
Validity
Not Before: Mar 29 11:00:34 2026 GMT
Not After : Mar 30 11:00:34 2026 GMT
Subject: CN=2dfe7bf2f21719b92d41754aa292e6bdc2d86b40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:23:db:83:62:33:c5:4d:9e:8c:56:7e:74:cd:
e0:9c:1b:88:bc:ce:00:db:e5:0c:42:c9:9f:fe:95:
90:53:12:61:19:24:dd:31:8e:ee:75:bb:94:b5:cd:
73:f4:56:0d:6c:9d:39:ab:ba:1f:70:b5:23:58:7c:
8d:c0:4f:9f:c8:b8:9d:ac:a2:c9:6c:64:b1:dd:d7:
31:95:dd:28:05:e6:94:cb:12:39:da:4c:37:b0:de:
e5:65:8b:1a:0c:c0:e5:46:44:97:79:87:90:f9:fc:
f1:de:2b:19:f0:77:01:01:c6:0a:56:c4:90:70:de:
ce:47:f3:3a:48:5c:6e:a2:be:11:b0:d1:fa:2e:bb:
cc:30:eb:83:eb:61:56:d5:ed:74:ca:38:25:67:23:
f1:1d:1b:10:8e:63:91:21:ed:00:d7:89:32:f0:ac:
03:ca:32:22:fb:94:44:00:8b:45:56:b3:72:7a:bc:
11:f1:e0:b9:66:f7:44:7e:0f:46:e4:3e:87:49:67:
9e:e0:ec:56:c6:47:87:a4:78:e1:c3:e4:b6:b0:a0:
46:b0:4b:db:54:1b:de:1b:60:97:e9:3c:7e:5e:94:
6e:5c:c7:ef:6b:29:e2:8f:26:31:42:5d:c1:79:c1:
26:0b:6c:45:19:d9:7f:a7:7d:57:f2:c0:f4:2f:fb:
bc:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:FE:7B:F2:F2:17:19:B9:2D:41:75:4A:A2:92:E6:BD:C2:D8:6B:40
X509v3 Authority Key Identifier:
keyid:6C:91:D7:D5:F5:CE:57:92:6C:90:39:73:EC:BF:11:2B:FA:E1:53:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:07:53:21:d9:06:e1:66:4e:41:ad:97:2b:20:e6:f2:68:9f:
26:b9:31:90:87:dc:f1:9a:6c:e4:94:14:42:63:45:da:b0:88:
0a:72:0a:45:ec:b6:86:08:c8:f1:0e:8e:02:7a:69:0d:d9:97:
4c:41:76:59:1c:00:1d:3f:9b:4a:f9:f5:95:bb:05:37:1f:30:
4f:fb:0b:f7:a0:49:52:35:b4:84:2e:7c:1c:b4:e4:31:16:cc:
75:39:e0:5c:ae:6d:80:0d:ee:b0:e2:86:be:7a:30:d6:c6:f3:
e4:5a:99:35:5a:67:2e:4f:b2:59:c0:8c:45:ca:0f:16:ac:96:
f1:4e:9a:38:7f:87:43:07:48:3d:a1:77:0a:95:9c:75:aa:e8:
aa:25:8d:cc:7f:8c:18:56:a7:bb:5a:17:e2:a5:51:9d:e7:73:
a8:90:e1:75:1c:39:a2:10:fc:e4:eb:b1:64:ba:65:86:49:1a:
5c:e6:83:c5:b8:d3:a8:3d:f0:bd:ca:d3:45:61:65:a2:76:7b:
b6:6f:c6:09:cf:54:09:68:d0:37:60:c9:63:97:30:c8:b1:2e:
c7:25:2e:74:27:32:ec:43:af:ce:1f:35:f9:4f:1b:80:8b:fa:
d5:47:e6:5f:cd:a8:09:06:4c:94:9a:0e:be:0b:bf:19:87:d9:
1c:bb:6c:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:27:25 2026 by rpki-client