Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft
File: bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft (raw, json)
Hash identifier: BhV9J+8QNqihVsUzIpyeHGTQplUXKIvgHqYpiXzc3oE=
Subject key identifier: 00:F1:E4:B3:9D:8E:A7:CA:01:06:31:B5:A6:F9:FB:B1:4D:35:5C:01
Authority key identifier: 6E:AE:4B:B0:51:39:80:C8:7F:9B:AC:59:29:52:C0:95:77:7A:C1:2E
Certificate issuer: /CN=6eae4bb0513980c87f9bac592952c095777ac12e
Certificate serial: 019CACEB9F18FB07E2679CB62E1C89027EF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bq5LsFE5gMh_m6xZKVLAlXd6wS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft
Manifest number: 04A2
Signing time: Mon 02 Mar 2026 05:00:48 +0000
Manifest this update: Mon 02 Mar 2026 05:00:48 +0000
Manifest next update: Tue 03 Mar 2026 05:00:48 +0000
Files and hashes: 1: bq5LsFE5gMh_m6xZKVLAlXd6wS4.crl (hash: UIHZLSYYdDOtwhs1cTCj+GlxCyrvQPwX4yZu3i4sHOo=)
2: zLQM5UGUZQZaDaXLLIq2Cs9lTG4.roa (hash: lEMGpphC2f316K3X8TeGMMDyruycSyCxjomy+Oc5l4k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bq5LsFE5gMh_m6xZKVLAlXd6wS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 05:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:9f:18:fb:07:e2:67:9c:b6:2e:1c:89:02:7e:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eae4bb0513980c87f9bac592952c095777ac12e
Validity
Not Before: Mar 2 05:00:48 2026 GMT
Not After : Mar 3 05:00:48 2026 GMT
Subject: CN=00f1e4b39d8ea7ca010631b5a6f9fbb14d355c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:72:51:62:5f:14:a9:a9:4b:b0:53:49:d3:62:
10:7a:6f:a4:de:7a:99:2c:3f:9c:39:52:93:9e:d1:
15:b9:fb:42:94:15:7c:0b:f2:53:19:90:00:b7:5f:
44:df:5e:2e:47:0f:4e:c1:1a:70:75:5e:5b:47:fc:
35:a2:22:dd:7f:70:82:cc:be:d1:f7:9a:73:e7:b9:
c5:3e:fc:65:13:8a:3e:7e:55:9f:95:47:2e:fb:f8:
ec:e9:b8:65:a0:a2:f9:5a:88:02:1b:fc:f4:8a:66:
39:c4:c9:23:eb:f9:0e:21:7c:6c:44:32:9c:00:ba:
50:ee:c2:cf:86:ab:9d:06:9d:97:fa:2b:9c:d0:31:
39:16:4d:e3:69:eb:73:91:65:56:bb:7a:55:77:cb:
b6:12:01:38:0b:bf:89:40:62:c2:9c:a6:b6:ec:17:
25:49:c7:a9:ec:cb:44:60:eb:76:00:23:1f:2a:d9:
64:f0:75:99:4f:9c:3a:40:5f:52:b1:aa:3d:e2:bd:
32:6d:31:89:44:77:d8:ec:e2:05:23:e3:4d:df:4a:
ca:85:b8:f5:85:b8:74:8c:7e:ca:07:cb:1b:5f:62:
7a:ca:12:46:a8:3a:11:4a:88:8d:55:74:30:17:05:
c3:52:20:03:25:00:e1:96:08:f2:91:0d:6e:0d:9e:
aa:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F1:E4:B3:9D:8E:A7:CA:01:06:31:B5:A6:F9:FB:B1:4D:35:5C:01
X509v3 Authority Key Identifier:
keyid:6E:AE:4B:B0:51:39:80:C8:7F:9B:AC:59:29:52:C0:95:77:7A:C1:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bq5LsFE5gMh_m6xZKVLAlXd6wS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:29:e7:43:48:91:b1:8d:1b:bb:0e:26:a8:a5:ba:2d:ca:e4:
d4:6c:23:43:48:b6:18:ce:07:e0:e2:76:9c:57:7a:5e:01:3d:
ca:04:36:d3:3e:bc:05:d6:67:e9:ff:9e:40:79:27:6f:d8:c9:
14:19:ed:48:5b:41:ae:dd:3a:c7:cf:6d:e5:39:7a:3f:9a:70:
9d:b8:91:a7:69:32:4c:ed:df:13:ab:2f:17:01:39:d7:85:df:
2e:92:89:47:cc:dd:ff:88:07:ae:c0:c1:6a:33:8b:ff:35:ca:
7c:1f:1f:28:c5:fc:80:fe:38:3b:74:ca:dd:1e:4a:51:1c:37:
03:00:86:35:f5:77:86:8a:3f:52:70:7b:06:b9:ff:d8:3e:2a:
04:44:c7:a7:29:bd:14:23:6d:27:b2:fb:6f:96:29:e9:0e:ed:
3e:53:2e:12:9e:cf:51:a3:87:0f:c8:14:65:2b:40:34:18:1d:
a3:27:53:9f:83:bc:91:1d:a9:52:c1:a6:33:8a:13:ce:b9:27:
0b:be:60:8d:82:69:1f:83:ef:e7:a9:33:d1:c9:e4:86:c4:84:
e2:03:47:fd:bb:7a:cf:67:82:70:38:5f:1a:dc:d2:a8:a8:4c:
14:8d:3f:e8:c0:46:c7:52:3e:08:9b:a8:93:ad:7d:79:4c:a4:
40:56:76:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:59:34 2026 by rpki-client