Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
File: bSID7B5abCZsyjm5rxq-LLILGVo.mft (raw, json)
Hash identifier: 0i4jGq2DsUuY3gpBpC22GYix30ia7dbLVZ9KXDzve6E=
Subject key identifier: 3E:8C:0C:0E:80:ED:3F:6A:00:9E:D6:6C:26:9A:B5:69:39:8F:3F:8A
Authority key identifier: 6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
Certificate issuer: /CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Certificate serial: 019CACB466EDA64399D6C02FED9D68641D22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
Manifest number: 1846
Signing time: Mon 02 Mar 2026 04:00:29 +0000
Manifest this update: Mon 02 Mar 2026 04:00:29 +0000
Manifest next update: Tue 03 Mar 2026 04:00:29 +0000
Files and hashes: 1: KEjUQVlN-kYa2GK1u7oIUmkIKDw.roa (hash: XXTQdFb/FE8pQqJgVu712tdHVCXz3R+MnP7POS5nFQU=)
2: bSID7B5abCZsyjm5rxq-LLILGVo.crl (hash: wPIFWZ+u5mHMoxgXVXG+R8dZ+1CUkMcbKRvuTdOpMRc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:66:ed:a6:43:99:d6:c0:2f:ed:9d:68:64:1d:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Validity
Not Before: Mar 2 04:00:29 2026 GMT
Not After : Mar 3 04:00:29 2026 GMT
Subject: CN=3e8c0c0e80ed3f6a009ed66c269ab569398f3f8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1d:12:a5:48:5c:17:e3:64:4f:5f:72:31:c8:
69:5c:b0:5c:b1:87:83:fd:12:be:43:17:c2:f4:75:
c0:3d:3b:85:5f:9f:43:bf:1b:8d:06:fb:8f:75:27:
e9:83:5b:9d:5e:f8:d5:35:8a:36:97:b4:39:0e:0a:
01:de:04:1b:79:c5:8b:e7:08:29:b2:d5:d4:44:7a:
50:e3:1b:1c:8d:89:66:4d:06:15:ed:e2:be:37:d2:
9d:20:6a:d9:c7:be:23:77:44:d5:02:dc:71:05:ca:
fb:aa:1c:2e:34:07:ac:24:2e:62:c9:56:a1:2b:ba:
6f:6e:03:87:23:29:f1:33:22:e8:5c:d9:9f:67:d4:
63:af:66:cc:2e:ae:10:b6:be:4a:8a:be:23:b1:8f:
af:32:eb:66:06:58:32:f8:47:a4:94:12:8e:62:48:
a2:47:ae:19:4f:a0:c5:86:db:c3:04:4a:17:01:7a:
b2:46:be:37:c6:e0:73:9a:53:7b:1a:ce:e6:40:81:
b6:2b:ba:8d:8f:e1:65:3f:7f:a4:f2:89:32:e9:c7:
3b:15:a6:f3:b1:7c:0f:ee:2f:7b:08:94:45:1e:a1:
29:90:b4:8e:e9:a2:c3:c0:9c:84:ef:eb:09:5c:b1:
db:56:fd:16:33:39:7e:10:0f:a3:85:9c:e7:d6:19:
63:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:8C:0C:0E:80:ED:3F:6A:00:9E:D6:6C:26:9A:B5:69:39:8F:3F:8A
X509v3 Authority Key Identifier:
keyid:6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:a0:11:f1:3b:94:73:84:35:8a:17:1d:45:16:b9:2e:7d:a6:
15:05:d7:83:3a:2f:b8:c4:11:69:81:be:55:09:69:d9:ca:41:
dd:84:a4:9f:64:62:e0:b2:ad:f6:15:86:42:fc:7d:d4:8a:09:
18:83:a1:cb:60:db:89:3c:ca:d0:2f:ed:32:25:8d:c8:2c:36:
7f:92:29:7c:83:c5:26:37:4d:80:28:c0:45:aa:87:9b:a9:42:
05:b1:7f:5e:39:af:f2:0c:52:81:84:c8:68:79:f8:60:b5:06:
6a:f3:cd:67:b0:ce:f3:49:be:3d:a3:bc:41:7b:7b:f7:4d:ac:
88:96:3d:26:a8:6e:fd:c7:59:a6:60:2e:1b:f0:7a:b4:5a:df:
bb:b5:e7:0e:9e:21:72:d5:89:42:8a:86:45:4c:19:84:f0:f7:
c0:93:24:6b:4a:22:04:0a:78:b0:c0:51:31:a6:f5:d0:1e:2e:
1f:da:69:22:4b:80:dd:8b:cc:23:3e:ea:9c:c7:6f:d4:d7:95:
59:bf:ac:96:93:32:63:ce:ca:7b:81:d6:88:9d:ff:3c:13:38:
82:0e:0b:b5:8f:6d:aa:7c:62:25:ff:1d:d8:cb:d6:d3:fe:f8:
fc:1d:ab:5f:f6:dc:ca:c3:2a:e4:51:49:f4:2e:68:d3:26:30:
ff:5c:71:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:12:58 2026 by rpki-client