Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft
File: bchbZ4jkUMBUE0row2V0iyP3Qmc.mft (raw, json)
Hash identifier: 7/lgem+3GedHlxdSgyDR2gjqCrzN7cXZcRqr4/V0gfQ=
Subject key identifier: E8:64:95:EF:F7:88:9D:D0:6D:D1:36:21:3F:81:C1:A3:91:37:36:04
Authority key identifier: 6D:C8:5B:67:88:E4:50:C0:54:13:4A:E8:C3:65:74:8B:23:F7:42:67
Certificate issuer: /CN=6dc85b6788e450c054134ae8c365748b23f74267
Certificate serial: 019D3AC1BA8FA3A16156F2A8A13DDA3D6F15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft
Manifest number: 0A0B
Signing time: Sun 29 Mar 2026 18:01:07 +0000
Manifest this update: Sun 29 Mar 2026 18:01:07 +0000
Manifest next update: Mon 30 Mar 2026 18:01:07 +0000
Files and hashes: 1: RNdr2XfKznxYQv64qQ8r-9v8mi8.roa (hash: 8EELTXHUCB2Nv32RBO7+0uGvBkgV+cDWxxUoIS6QShs=)
2: bchbZ4jkUMBUE0row2V0iyP3Qmc.crl (hash: XoBg8Ntkc2BhcFB6U+6z2pb5VvxqEnraz6iWlW5cLtE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:c1:ba:8f:a3:a1:61:56:f2:a8:a1:3d:da:3d:6f:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dc85b6788e450c054134ae8c365748b23f74267
Validity
Not Before: Mar 29 18:01:07 2026 GMT
Not After : Mar 30 18:01:07 2026 GMT
Subject: CN=e86495eff7889dd06dd136213f81c1a391373604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:57:e2:d5:76:11:c2:ff:b4:8d:1a:6f:0a:cb:
71:3e:66:00:5f:94:e2:77:87:f5:8f:bb:52:da:c8:
9a:20:c7:ac:39:f5:be:4e:2a:92:8f:03:b1:4f:13:
66:ed:e5:99:c9:dd:80:9d:ab:09:78:4c:0e:9e:ed:
84:59:4a:f5:0e:4d:3c:7f:c3:9a:6c:fc:2c:40:50:
21:84:69:31:8e:ff:93:7d:51:e8:ce:49:56:89:98:
8a:6a:3f:b7:0c:84:ac:31:ad:7d:ea:66:23:7f:bb:
6a:a5:27:fd:ca:29:d1:50:8b:88:11:b5:14:07:75:
b4:7d:3b:5c:2a:a8:a9:7b:d9:b2:ab:31:01:72:1b:
23:67:4d:9a:76:f0:43:98:34:29:54:b6:d9:72:b6:
eb:06:73:9f:02:22:2c:26:20:b6:0c:9e:54:a5:dd:
f7:f1:fc:65:07:11:77:81:7d:20:68:f7:f3:df:c4:
0f:2b:5b:df:53:77:18:63:78:5f:07:97:a2:d3:86:
a3:bf:a0:f3:6e:71:2c:fe:4a:92:80:50:05:e9:ac:
fd:35:a2:68:86:36:e5:2d:ea:69:2e:4e:02:b4:11:
cc:dc:35:ec:e4:f4:7c:b7:a5:48:5e:d4:d1:39:c4:
86:68:67:80:10:0b:31:ce:92:71:c3:c2:1f:f2:fc:
30:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:64:95:EF:F7:88:9D:D0:6D:D1:36:21:3F:81:C1:A3:91:37:36:04
X509v3 Authority Key Identifier:
keyid:6D:C8:5B:67:88:E4:50:C0:54:13:4A:E8:C3:65:74:8B:23:F7:42:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:24:43:8a:37:4a:f8:0f:f8:d7:1e:1b:48:c3:0b:78:ce:67:
3e:a4:e3:0c:39:d5:93:b1:83:78:44:c0:a2:66:02:77:ca:11:
87:4a:5b:d0:b9:86:9a:cd:60:ec:67:f4:e9:3a:81:ac:58:e1:
f5:4a:ef:56:e4:7c:c6:58:50:97:ff:0f:bd:11:83:b4:10:ed:
f7:f6:bf:e5:c7:d4:b8:3e:8a:50:03:3f:a2:d5:6c:1e:4e:fa:
3d:03:dd:0e:3f:55:9d:c1:15:85:60:e8:1d:68:d1:07:2f:b6:
9b:79:6c:2d:26:ab:c6:da:37:aa:43:26:ba:d3:21:66:a2:70:
1b:df:c5:21:40:43:db:c8:87:2f:45:ae:4f:3a:5d:28:34:7b:
45:57:1e:b7:79:f5:de:d5:a0:84:63:3d:c4:70:c7:d4:38:f2:
d3:10:8b:84:24:59:b9:4e:05:74:71:bb:b7:ea:00:e7:a9:59:
35:79:3a:b7:82:ff:b7:0f:72:4a:4b:83:fc:98:84:b8:0a:0e:
f9:12:14:03:b7:be:7c:5a:08:84:a7:a0:a5:0d:bf:57:9a:fb:
97:44:f8:32:93:ec:50:43:41:70:8f:03:3f:88:1d:50:e1:12:
b8:c4:09:23:b9:86:da:7d:78:fe:e7:10:29:f9:b2:38:02:7e:
d9:71:5e:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:24:38 2026 by rpki-client