Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
File: bzOv1B6gEvsoA8cnRSPI7D8mExE.mft (raw, json)
Hash identifier: xZGRPjd4dAS2fbpzXL6NHHuiJk+Hst3eVxIGTHvVCGc=
Subject key identifier: 38:53:88:3E:9B:DE:6E:99:13:FE:0D:DC:B5:9F:99:76:B2:F4:6F:0D
Authority key identifier: 6F:33:AF:D4:1E:A0:12:FB:28:03:C7:27:45:23:C8:EC:3F:26:13:11
Certificate issuer: /CN=6f33afd41ea012fb2803c7274523c8ec3f261311
Certificate serial: 019DD01A206C1420FA38E6E2DA943DFAE4F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
Manifest number: 18DE
Signing time: Mon 27 Apr 2026 18:01:06 +0000
Manifest this update: Mon 27 Apr 2026 18:01:06 +0000
Manifest next update: Tue 28 Apr 2026 18:01:06 +0000
Files and hashes: 1: 6QL-slvQFdh5mvAbIdNlA4MoLfE.roa (hash: xCB6LBupsekAKglg6eVWd5d4GZfCpoZMakFZRmJ0HsM=)
2: bzOv1B6gEvsoA8cnRSPI7D8mExE.crl (hash: eSltJ4Zlfplv4wnZ3x8louBlZ9Z6hXIwNBOTnlRKguE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d0:1a:20:6c:14:20:fa:38:e6:e2:da:94:3d:fa:e4:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f33afd41ea012fb2803c7274523c8ec3f261311
Validity
Not Before: Apr 27 18:01:06 2026 GMT
Not After : Apr 28 18:01:06 2026 GMT
Subject: CN=3853883e9bde6e9913fe0ddcb59f9976b2f46f0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:26:59:13:48:b8:8d:2d:d8:21:1b:64:70:c2:
b7:88:85:f2:18:6c:c0:26:c6:11:fd:31:ea:9c:98:
5c:86:1d:dd:aa:7c:d5:33:20:ab:ed:b6:79:f9:16:
51:dd:19:64:0a:61:0d:9e:68:74:07:12:76:68:e6:
af:7f:b2:38:a9:e4:56:eb:d1:d3:a5:52:c2:c0:b4:
58:17:90:0a:83:c4:20:90:33:b5:da:cf:57:a1:21:
f2:c0:73:c5:2f:3c:f3:29:23:32:08:3b:af:a3:aa:
b0:66:3a:d8:05:1a:2d:6e:57:43:75:f2:00:65:a5:
75:4c:41:24:78:a1:61:2e:ed:59:21:da:74:55:42:
63:00:25:fe:81:f1:d4:f2:9c:21:c9:79:ec:f5:8b:
4e:2d:88:0c:cf:e1:53:77:45:eb:cf:1c:83:30:8c:
e5:2d:58:a1:fe:57:aa:96:5e:19:e9:8a:87:35:61:
16:f7:2c:a6:6d:60:c9:6c:28:3f:12:14:97:90:b0:
6f:00:30:10:1f:47:3a:44:4f:f5:8f:f2:a8:73:76:
59:26:26:3f:00:41:05:56:25:e5:30:38:74:6a:d6:
a5:1f:8f:29:63:cd:2c:2d:a2:1a:8c:76:11:56:90:
21:56:f9:8e:7a:0c:88:a5:41:86:fc:ba:80:29:7c:
69:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:53:88:3E:9B:DE:6E:99:13:FE:0D:DC:B5:9F:99:76:B2:F4:6F:0D
X509v3 Authority Key Identifier:
keyid:6F:33:AF:D4:1E:A0:12:FB:28:03:C7:27:45:23:C8:EC:3F:26:13:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:cc:8a:81:5c:df:25:04:b8:05:a4:67:09:2c:87:71:3f:ef:
dc:78:a2:20:31:5f:35:ce:6a:91:12:c2:cf:81:6e:a8:dd:3d:
a8:c5:08:74:df:50:43:75:6c:64:d9:de:7a:f9:28:c9:23:29:
c6:26:4d:d3:00:dc:25:1f:6e:76:a3:84:ff:8c:8f:03:fe:8c:
ac:63:a8:9d:5e:0a:96:d7:68:94:5b:f1:60:d3:16:c6:5f:9b:
19:fb:33:02:9c:06:5b:9b:f8:de:af:9d:9b:5a:28:4c:05:fd:
a5:02:00:81:72:00:11:e3:c5:89:29:fb:25:7f:b0:2f:12:6a:
c5:6b:b2:aa:8d:1f:fb:c7:68:55:d7:b2:6c:cb:ae:13:1d:f0:
04:c3:eb:db:8b:b0:a3:50:f0:56:9c:cf:9e:93:f3:11:1a:15:
ff:0d:8f:2d:6c:c3:9f:39:25:7c:32:17:da:1a:66:fa:18:f9:
7f:08:93:50:c3:9d:ef:25:de:34:41:4c:45:5f:58:bd:45:b5:
be:52:b7:4f:90:24:62:90:d9:22:ac:94:92:be:f4:60:ae:10:
19:b3:70:d8:7d:31:7e:07:0c:d2:36:8a:ea:e0:e2:5a:6d:58:
4a:2b:5f:bc:c1:6b:af:13:30:69:6d:14:af:3f:89:ab:f2:bf:
6a:7d:b4:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 22:29:58 2026 by rpki-client