Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.mft
File: bxS5AO_2EKQYf2-9ReO4V9CJagA.mft (raw, json)
Hash identifier: WZsPsos9ux4rgfY88SeoKnWaN6LvROzRwS/18MlUHfo=
Subject key identifier: 8F:F6:F9:96:E1:C7:87:E6:7D:18:6A:36:0F:17:D6:A7:C5:1D:88:6A
Authority key identifier: 6F:14:B9:00:EF:F6:10:A4:18:7F:6F:BD:45:E3:B8:57:D0:89:6A:00
Certificate issuer: /CN=6f14b900eff610a4187f6fbd45e3b857d0896a00
Certificate serial: 019D38D3D1474E26C4B1C95BC7763F278CED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxS5AO_2EKQYf2-9ReO4V9CJagA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.mft
Manifest number: 1462
Signing time: Sun 29 Mar 2026 09:01:38 +0000
Manifest this update: Sun 29 Mar 2026 09:01:38 +0000
Manifest next update: Mon 30 Mar 2026 09:01:38 +0000
Files and hashes: 1: bxS5AO_2EKQYf2-9ReO4V9CJagA.crl (hash: rdxD117yhIqRpqbuBbQtUgJhJRsbHjIqHNR0K+FRE3M=)
2: gQ9G1wyw8P68T-YoeRrNExRIJ54.roa (hash: U225Ret2JuGydyVsYjJv8x78fpJD2cYEwUxTjEVRMGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bxS5AO_2EKQYf2-9ReO4V9CJagA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:d1:47:4e:26:c4:b1:c9:5b:c7:76:3f:27:8c:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f14b900eff610a4187f6fbd45e3b857d0896a00
Validity
Not Before: Mar 29 09:01:38 2026 GMT
Not After : Mar 30 09:01:38 2026 GMT
Subject: CN=8ff6f996e1c787e67d186a360f17d6a7c51d886a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a3:56:05:07:33:92:2a:81:19:67:c6:13:9f:
c4:43:1e:63:5b:c8:e1:d8:b3:4d:3f:4a:56:50:95:
7d:25:eb:a3:0b:8b:20:a5:4e:75:92:f7:0b:cb:14:
84:c0:7a:5e:45:c1:15:12:fa:5d:13:1a:5d:88:e5:
34:6e:c5:f6:32:60:bb:e2:29:f3:2d:5f:03:a7:5a:
71:b8:40:d3:d2:09:8d:5d:72:15:ea:f2:7b:31:ac:
19:fb:2a:f2:90:36:64:1d:a2:37:6b:7d:fe:01:79:
16:3d:a7:59:78:89:11:8c:2f:ef:e8:73:28:8c:12:
94:cf:6d:2d:4c:11:22:a7:87:47:84:f7:99:a2:48:
cd:8d:3e:99:56:d0:77:24:4f:02:10:f3:7b:6e:22:
c9:12:3c:12:55:0c:55:37:8a:10:cb:d0:75:5d:28:
90:a7:cb:3b:9a:24:e4:e4:aa:b4:92:2c:b6:14:9c:
c9:fd:02:e7:e4:88:e5:14:94:4f:6f:76:aa:5e:69:
1e:31:f9:35:a2:75:22:72:cd:a5:e0:25:c8:4b:64:
14:5f:ea:89:47:e9:ab:5d:22:24:be:f1:4d:19:30:
37:a6:5f:76:79:4a:5e:8b:13:71:6f:b4:e1:5a:1f:
a2:0c:c8:a0:3e:5c:46:f3:64:51:fd:77:7e:c2:a7:
25:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:F6:F9:96:E1:C7:87:E6:7D:18:6A:36:0F:17:D6:A7:C5:1D:88:6A
X509v3 Authority Key Identifier:
keyid:6F:14:B9:00:EF:F6:10:A4:18:7F:6F:BD:45:E3:B8:57:D0:89:6A:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxS5AO_2EKQYf2-9ReO4V9CJagA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:15:8d:df:4b:9f:0b:6d:a1:5f:ee:1d:88:a1:2b:80:75:b9:
22:ec:a5:d4:bf:d1:ad:9a:d7:49:a8:a4:50:fe:4d:ee:cc:a3:
aa:e5:87:a7:55:04:19:0a:4c:e5:72:e3:4f:39:d9:19:5e:4a:
5c:de:09:22:f4:58:9f:95:0e:46:29:56:5e:c7:35:82:a4:a5:
3e:84:a3:43:e4:69:f9:94:2c:32:7a:e2:d9:e2:0d:3d:f4:6b:
f8:ab:d9:17:c4:d0:4c:67:47:cd:36:a8:dc:df:7f:e3:49:4f:
ed:5b:fb:cd:f9:3c:31:c1:b2:c0:2b:a8:5d:ed:bb:84:c6:0c:
74:cf:a1:68:8d:09:0c:8b:7d:d6:29:55:a3:ab:a3:69:b6:53:
75:04:1c:89:23:b0:5d:37:5f:a7:af:6d:8b:31:ed:90:9c:7f:
2b:b2:45:f4:8e:21:99:fc:79:ec:fa:1b:a1:a8:a7:5d:58:93:
a7:e4:c4:ec:55:a3:c6:fd:fa:8d:57:98:b8:a4:63:aa:35:50:
90:c3:7d:73:60:3a:f9:d9:5c:e4:35:93:a6:60:35:96:d1:a2:
9e:4f:92:27:c7:b9:8f:78:f2:0c:fa:a6:dc:7c:4d:34:a5:b7:
43:bb:61:cd:bc:e8:80:be:bd:d3:0b:32:97:74:1e:b1:c7:60:
10:c6:a6:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:01:05 2026 by rpki-client