Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
File: v42FRzQuL8ns-t_O8Azyc--dbpA.mft (raw, json)
Hash identifier: VhwyRSzkdjbzES/OLpV2s9A3GTAADJDqHgEhWPdBJr8=
Subject key identifier: AC:1A:15:46:DA:EA:74:F7:51:75:00:20:C8:48:30:93:49:B6:C4:6C
Authority key identifier: BF:8D:85:47:34:2E:2F:C9:EC:FA:DF:CE:F0:0C:F2:73:EF:9D:6E:90
Certificate issuer: /CN=bf8d8547342e2fc9ecfadfcef00cf273ef9d6e90
Certificate serial: 019D9A06FDB49BD8EA08FAAECE41B78E9E9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
Manifest number: 0622
Signing time: Fri 17 Apr 2026 06:00:42 +0000
Manifest this update: Fri 17 Apr 2026 06:00:42 +0000
Manifest next update: Sat 18 Apr 2026 06:00:42 +0000
Files and hashes: 1: A8PNklH6_RdGA5SXBmz7CmQ2ejc.roa (hash: G32ue8AWHzovX9yZjIgUF6MN72sXNFz9nWr+gwmW9lo=)
2: UvFRLcdnN72RMKcY-6GkngwKWkg.roa (hash: 8Itln6PEQnR3OxkcnuhYuWLxcSYWOcJ+PQmytB21lHs=)
3: v42FRzQuL8ns-t_O8Azyc--dbpA.crl (hash: RXIkIhUsrTvoe0/0QB5t2fggHH48IZ19PiLsMNTilQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:06:fd:b4:9b:d8:ea:08:fa:ae:ce:41:b7:8e:9e:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf8d8547342e2fc9ecfadfcef00cf273ef9d6e90
Validity
Not Before: Apr 17 06:00:42 2026 GMT
Not After : Apr 18 06:00:42 2026 GMT
Subject: CN=ac1a1546daea74f751750020c848309349b6c46c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:56:12:cd:4d:8a:5e:7d:bd:5f:8c:dc:3e:a5:
f4:0d:2e:4e:5f:f5:5f:f4:ef:7b:a9:bc:83:a5:91:
82:36:64:e9:cf:77:b2:b7:11:ce:a9:bb:01:ba:f1:
e9:54:53:56:c4:2f:b1:51:04:30:0c:be:23:3a:a3:
ce:86:18:91:eb:64:0d:40:68:17:88:2d:94:ac:71:
49:ea:8d:b7:2e:4b:85:70:7c:1f:97:15:a1:b2:1d:
75:90:6c:a3:23:28:c8:0f:9c:58:7e:7d:45:e4:c7:
4f:a6:b7:c0:ac:97:91:36:2f:2c:38:62:c6:9c:c4:
48:8a:81:8f:c3:b6:84:0e:60:dc:10:03:49:67:b6:
6b:42:02:64:9b:b4:62:6c:b5:58:02:c3:fc:3e:17:
0b:64:52:5a:f5:37:f9:f0:1b:86:35:33:34:58:d1:
99:92:51:dd:a5:80:0d:66:cb:31:cc:86:09:33:53:
56:02:75:a0:79:9c:0d:0d:ef:3b:b9:eb:32:64:d9:
62:d8:15:b1:4f:10:b4:99:c2:52:4c:69:e0:86:03:
37:b1:05:70:61:e6:22:86:7d:ac:ad:93:77:ef:1e:
41:2c:57:c6:83:84:2f:8b:08:42:80:cc:9a:ab:56:
0b:89:21:15:19:da:96:fc:a6:04:56:52:c2:1a:b4:
d3:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:1A:15:46:DA:EA:74:F7:51:75:00:20:C8:48:30:93:49:B6:C4:6C
X509v3 Authority Key Identifier:
keyid:BF:8D:85:47:34:2E:2F:C9:EC:FA:DF:CE:F0:0C:F2:73:EF:9D:6E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:4d:53:17:6d:3c:3c:9d:16:c9:53:03:0f:80:ce:e0:58:cd:
ec:29:f4:24:55:68:20:0a:09:97:a9:77:49:bb:09:1d:04:f3:
58:8b:fd:c5:1b:4d:5b:0e:db:b4:02:54:70:cd:06:15:de:37:
53:8d:19:75:51:8e:6b:78:e4:15:4d:ed:4b:a8:78:74:2f:24:
7e:03:ea:c7:8d:6c:65:38:b7:2d:6f:11:7a:5b:28:b7:cc:6e:
fa:79:36:03:a1:7b:28:52:d1:4b:94:0b:c2:40:d8:17:a1:88:
1f:ed:c8:15:d2:ed:9e:a0:d6:d1:47:f8:81:3d:b7:ee:47:2b:
8d:16:89:49:19:b0:52:86:10:ea:0c:4b:cb:be:3e:62:e7:db:
eb:95:65:f7:4f:ec:59:39:02:17:f9:c5:1f:33:76:2d:49:cd:
2a:e6:f9:99:c0:06:d1:df:4c:f8:56:3f:c0:26:ac:2c:49:39:
fc:24:be:fa:45:2a:28:59:42:6b:15:2b:48:41:c1:97:44:32:
83:e2:ca:fe:b3:b0:2b:c4:ad:29:9a:d0:d3:98:69:de:60:a3:
12:59:eb:e6:21:0b:9a:54:d8:97:63:96:be:12:b6:2d:7c:1c:
37:0a:e7:6b:e9:54:37:50:c0:6b:56:e4:2a:4a:73:15:e0:8e:
ea:19:e1:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:54:23 2026 by rpki-client