Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
File: bZOet0q7zSInwhkqoqN-bcuJjlM.mft (raw, json)
Hash identifier: IJn4bf0lZcoO12wqWmoi9LLNoiYOX3eo6Yhu4Vch9p8=
Subject key identifier: E8:DA:AF:04:DE:F5:9C:E3:1D:1F:E2:4A:27:33:B1:62:AD:AE:EC:6A
Authority key identifier: 6D:93:9E:B7:4A:BB:CD:22:27:C2:19:2A:A2:A3:7E:6D:CB:89:8E:53
Certificate issuer: /CN=6d939eb74abbcd2227c2192aa2a37e6dcb898e53
Certificate serial: 019D37C0902FFD8B79004C534B8FCBF9E2F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 04:00:59 +0000
Manifest this update: Sun 29 Mar 2026 04:00:59 +0000
Manifest next update: Mon 30 Mar 2026 04:00:59 +0000
Files and hashes: 1: bZOet0q7zSInwhkqoqN-bcuJjlM.crl (hash: 8APUX/B/cbv9FRGmORWfTeHmvpWvV9ew6VSfUdWpvek=)
2: rLpRZvFN9tLJOZKsRQ2iN0bOTkA.roa (hash: 7Y/pwxfKMpnXy8fpQNc1oxHBEDERRxAILiQLxs4GnLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:90:2f:fd:8b:79:00:4c:53:4b:8f:cb:f9:e2:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d939eb74abbcd2227c2192aa2a37e6dcb898e53
Validity
Not Before: Mar 29 04:00:59 2026 GMT
Not After : Mar 30 04:00:59 2026 GMT
Subject: CN=e8daaf04def59ce31d1fe24a2733b162adaeec6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a9:f5:1f:42:6e:33:84:3d:b8:6e:a8:84:a9:
19:51:05:31:7c:40:6c:e8:30:f9:10:d2:5b:cc:aa:
80:cf:c7:26:6f:4f:ec:f6:be:a4:63:8a:57:19:ab:
9c:95:3b:70:1e:f9:17:65:82:bb:5a:dc:7f:bf:42:
82:88:b7:1d:79:1b:a4:5b:be:de:04:e7:39:36:b3:
0c:93:d7:a1:c9:bc:cb:a1:1a:66:be:77:54:dd:23:
99:79:e6:0e:b9:d4:c4:6f:1a:6a:e9:88:a4:29:5c:
c5:ed:23:2f:25:35:85:50:6c:2e:a8:85:91:46:dc:
68:73:63:80:c3:c6:4f:5f:2d:e4:83:8c:4f:5f:76:
19:f0:24:e5:be:d3:f8:21:37:77:46:c0:79:36:39:
23:a0:5f:db:8b:eb:82:67:7a:fc:78:72:bf:52:3c:
ea:09:77:90:f9:56:39:2e:1b:29:d5:59:7f:02:7d:
f9:55:b8:e9:6d:84:c6:70:d8:c7:30:9b:cd:56:60:
7d:9a:76:95:42:61:b7:4a:1c:e6:b0:04:c5:98:1d:
01:e1:ca:bb:dc:c6:60:59:75:2c:1a:ab:27:29:9f:
52:89:89:9d:69:f9:44:59:ec:5c:13:e9:e6:31:5e:
1b:4f:5a:2c:cb:47:d1:88:54:d1:2f:fb:2a:7e:cb:
69:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:DA:AF:04:DE:F5:9C:E3:1D:1F:E2:4A:27:33:B1:62:AD:AE:EC:6A
X509v3 Authority Key Identifier:
keyid:6D:93:9E:B7:4A:BB:CD:22:27:C2:19:2A:A2:A3:7E:6D:CB:89:8E:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:ae:10:be:1f:d2:df:61:6a:b0:8d:5b:54:09:9e:4c:5d:ff:
f0:4d:46:c6:95:a2:ac:86:65:23:be:3d:68:a8:4b:65:60:37:
55:26:52:03:32:85:e3:51:c4:f6:12:a2:c3:f0:f3:5a:d8:6c:
9e:da:e4:14:f0:9b:61:88:3a:02:03:6e:ac:15:b2:2c:a6:2a:
7b:78:1a:54:20:59:c6:90:dd:14:a0:a1:a0:ad:04:31:f0:b8:
4a:5b:01:22:cc:d5:16:33:87:d3:01:08:2e:d5:7b:b0:bd:ea:
06:16:56:f7:2c:c7:06:84:f3:20:34:c6:f8:58:32:5e:b6:31:
fa:e7:98:6a:86:e6:63:1c:6c:b9:3a:ef:21:d9:d8:aa:ee:ee:
55:b3:8e:68:a1:34:62:a1:c1:0a:8b:df:96:5f:41:1e:e5:08:
5e:77:30:55:17:56:af:72:df:6d:44:bb:83:c1:a3:a1:88:0b:
54:eb:bc:a2:ce:b3:89:c2:53:2d:29:64:2b:c9:11:6e:1a:16:
f1:13:3e:7e:50:11:c0:f8:ce:fe:78:6c:1a:a5:6d:61:29:f5:
46:0e:e8:a4:57:52:a7:af:17:21:b4:39:d9:11:0e:72:bb:69:
13:9e:e9:f3:af:01:ac:fe:bd:d4:6a:3e:8a:d6:d1:0e:8d:07:
5f:ad:64:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:47 2026 by rpki-client