Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
File: bJSdK9ZO4X711H-WPj1depgrEq8.mft (raw, json)
Hash identifier: NV9U9N2Ke72DCxCs2HNuLEDrHJzTdz9flgokPL932YY=
Subject key identifier: 8D:47:DF:32:36:60:41:CE:82:75:09:E8:AA:4C:DC:95:BE:64:E3:4B
Authority key identifier: 6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
Certificate issuer: /CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Certificate serial: 019D9886E8FAA65C7990A6ED87168B34459D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
Manifest number: 0D2D
Signing time: Thu 16 Apr 2026 23:01:11 +0000
Manifest this update: Thu 16 Apr 2026 23:01:11 +0000
Manifest next update: Fri 17 Apr 2026 23:01:11 +0000
Files and hashes: 1: bJSdK9ZO4X711H-WPj1depgrEq8.crl (hash: ISyIuY45ahKrLe5+hhLLkFu593xbFYO3AoTqinMblUg=)
2: vnH2NBbn3Q3LtUPrFoU9by3eF_0.roa (hash: UPdVY5abeB5lX+0Aslp3HBLsCZjZtVMWKp5zyq6x038=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:e8:fa:a6:5c:79:90:a6:ed:87:16:8b:34:45:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Validity
Not Before: Apr 16 23:01:11 2026 GMT
Not After : Apr 17 23:01:11 2026 GMT
Subject: CN=8d47df32366041ce827509e8aa4cdc95be64e34b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ce:fb:57:b9:44:da:d6:69:85:e5:73:a5:1e:
71:2d:c1:14:f3:36:57:7f:d7:cb:a1:1c:cc:d8:f9:
b4:04:a4:06:5f:d3:32:be:f5:86:16:a5:96:64:9e:
ef:31:80:2c:24:6e:78:2d:ad:33:48:78:1f:e7:a0:
6f:6a:3f:99:86:0d:f4:8a:7a:98:b1:a5:b5:48:3a:
e4:14:af:a4:2d:39:cc:b9:bd:e9:96:a0:20:6c:ea:
b2:01:ce:da:99:5e:98:65:de:3d:72:94:14:fa:ce:
67:eb:d1:3b:13:73:24:15:8d:37:4e:98:8d:cd:f6:
99:75:3b:61:25:ba:e1:3d:2e:b0:4e:2b:f2:23:70:
1e:48:a1:eb:50:ab:b4:bc:c5:28:3b:e7:fc:b3:69:
21:2c:8d:b4:cc:a0:47:62:1a:d1:12:4b:9a:ef:1f:
96:6a:0a:db:bc:1a:39:80:dc:84:12:a0:f0:cc:60:
24:5e:65:f8:5b:15:46:f2:8a:90:ac:0e:5b:9c:f0:
d8:ca:63:0b:bd:65:4c:82:88:9c:81:88:7f:fb:c3:
88:cd:3f:75:d8:5e:02:d6:9e:bd:d7:05:3f:6a:49:
c7:9a:01:76:67:eb:7f:e1:3b:0a:6c:68:fa:2a:cc:
01:5f:be:ca:a8:9e:d2:ca:02:13:e6:bf:d6:89:a8:
f4:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:47:DF:32:36:60:41:CE:82:75:09:E8:AA:4C:DC:95:BE:64:E3:4B
X509v3 Authority Key Identifier:
keyid:6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:90:1e:b0:b6:96:06:be:dd:41:41:e1:b7:8d:83:f7:0f:6f:
56:ae:73:e7:dd:73:bc:eb:42:99:69:97:74:05:64:1e:20:5c:
ba:a5:bd:e5:cd:14:0a:81:3a:78:12:85:06:90:05:fa:5a:4d:
0a:71:92:bf:14:7b:52:94:74:c3:c6:67:ab:c2:53:47:6a:a0:
38:bc:e3:93:3d:9a:3f:8a:6b:78:7c:98:b5:5c:dc:9d:93:37:
f4:54:aa:69:c4:c6:ef:e7:2c:02:1f:19:0e:cf:d3:f4:48:0f:
ae:fc:2d:5f:d7:f9:a1:1c:28:9e:5b:75:c9:47:d3:21:55:e1:
49:3f:12:b4:16:48:ae:60:78:1f:96:b4:a2:58:93:4f:50:76:
85:f5:bb:02:8b:0d:3e:9c:8f:ed:05:dd:d0:01:7d:7c:a5:79:
80:05:0a:65:7c:a0:f3:77:e2:93:67:cf:a8:0f:fd:36:e7:4a:
2d:c4:cb:b0:7a:36:6a:21:e2:76:2f:fb:b4:3c:09:42:7a:c5:
70:24:68:5a:68:b8:05:94:ee:60:b4:b2:38:d5:4b:15:2f:c2:
1a:e9:98:fb:ba:57:36:d4:2b:50:5e:df:d6:7d:1f:4f:23:f2:
6e:ab:19:ef:c8:c1:2b:c7:79:99:0b:17:7b:a0:c6:4a:59:d4:
fd:d3:55:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:11:43 2026 by rpki-client