Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
File: bzHGTD5afeEED0Daj-3EfDj-Wfo.mft (raw, json)
Hash identifier: HWL8u2jIrvb3PnAPbXZAHdCuqdP3QjZI3OUXO831sYg=
Subject key identifier: D0:07:63:79:8D:15:EE:C4:99:08:1D:D9:AE:33:AB:15:B0:76:C0:4E
Authority key identifier: 6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA
Certificate issuer: /CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa
Certificate serial: 019D38D2F20478F0AA46F7512D9A3279B7A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
Manifest number: 113C
Signing time: Sun 29 Mar 2026 09:00:41 +0000
Manifest this update: Sun 29 Mar 2026 09:00:41 +0000
Manifest next update: Mon 30 Mar 2026 09:00:41 +0000
Files and hashes: 1: bzHGTD5afeEED0Daj-3EfDj-Wfo.crl (hash: RXK++v1AiJajtDynMOl20ms3fLH3ZgqK3CJFL5Vg3n0=)
2: mis20mCNr7-z3Juye3bJqllLhII.roa (hash: jr44OSFfE8hxxzeZqyHwzACU4GFNkuxHslOFaTPqZNE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:f2:04:78:f0:aa:46:f7:51:2d:9a:32:79:b7:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa
Validity
Not Before: Mar 29 09:00:41 2026 GMT
Not After : Mar 30 09:00:41 2026 GMT
Subject: CN=d00763798d15eec499081dd9ae33ab15b076c04e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:18:0f:f7:82:db:cf:46:b2:87:17:b3:f9:21:
f7:1a:c0:b6:27:f6:9e:59:74:d9:07:c0:3e:2c:3b:
4c:7f:5c:10:0c:c6:87:67:37:89:1c:94:f6:bb:ee:
b7:80:c9:14:5e:25:34:89:78:2d:fc:55:1c:76:35:
95:a8:0f:67:86:de:90:f1:03:9f:3a:69:e0:4a:1a:
d9:65:89:0b:57:b3:a9:fb:21:16:7a:fa:59:a2:aa:
9a:43:07:1c:37:92:ba:84:b1:9f:e6:c7:10:71:9c:
f6:4e:e8:9e:b1:41:6f:0b:c7:ba:d3:38:b5:43:c2:
7c:13:ca:21:94:c2:7c:68:11:77:b6:4a:40:cb:c6:
df:1d:ae:25:e6:ba:36:51:da:4b:83:3f:e6:0e:02:
a0:cd:be:49:0c:33:2d:e4:e9:38:44:6b:e1:97:f4:
d8:94:97:90:0b:d4:bd:e8:58:43:c2:cc:91:bd:2c:
20:a2:d6:36:db:a4:39:54:2a:85:28:fa:00:3a:f0:
ef:7e:b7:9e:91:6b:47:e8:b3:6b:42:e4:c0:35:a8:
03:39:73:3b:e1:2f:89:d3:80:00:3f:c6:47:9a:6b:
a2:01:67:e6:96:07:c2:1d:b5:72:42:25:71:a5:42:
22:8a:5a:85:de:41:45:fa:3a:37:48:f1:84:d2:9b:
1b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:07:63:79:8D:15:EE:C4:99:08:1D:D9:AE:33:AB:15:B0:76:C0:4E
X509v3 Authority Key Identifier:
keyid:6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:11:81:f5:2c:aa:0f:e4:d3:38:14:5e:2c:b3:a0:44:c5:00:
7f:dc:d6:97:5c:af:65:2b:55:4c:da:79:49:f0:ef:d0:0d:61:
a7:b2:de:22:22:75:c8:00:03:9d:ba:59:e5:90:ea:37:2f:a7:
54:87:a9:36:ff:9d:57:90:b1:2e:b0:90:02:56:0b:9a:69:86:
be:80:60:28:63:0f:18:a0:e7:00:2f:ef:6d:21:f8:c6:13:88:
0c:61:cc:35:03:af:20:dc:77:1d:ad:c0:be:1f:35:10:c8:b2:
11:ab:5e:cc:66:88:75:6c:6c:d2:98:89:e9:09:9b:fd:39:20:
8c:9c:cc:19:15:64:b5:c1:33:82:67:a3:48:a3:4b:f0:f4:21:
13:b2:49:44:68:8f:82:97:0f:4b:dd:11:e6:01:99:ee:74:89:
24:98:ba:49:ea:2e:6f:ee:83:5e:28:9f:66:e6:05:d6:ea:6d:
1c:f4:92:78:b2:2e:57:60:b7:0c:d4:a4:d5:36:05:e2:00:ab:
a7:16:2d:65:ab:9d:81:fe:ed:de:5d:b6:1a:b2:7c:f1:1d:8d:
0a:1d:54:43:3c:96:39:e7:81:61:e8:85:8c:e9:b1:fe:64:f6:
5e:eb:a8:e9:4f:0a:81:fc:d6:fa:03:23:b5:88:f1:6c:95:e7:
9e:40:61:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:25:14 2026 by rpki-client