Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
File: BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft (raw, json)
Hash identifier: YB/ew1B3iJvpPu0Inq33TJMRoxH98LMrWf4u07l6Dv4=
Subject key identifier: F0:54:A2:B4:BA:3A:0F:52:E1:0F:62:6D:BE:39:42:0C:23:A8:94:22
Authority key identifier: 07:35:DA:A8:CF:E2:5D:D1:2A:2C:26:E0:FF:CC:E9:76:36:74:8E:BD
Certificate issuer: /CN=0735daa8cfe25dd12a2c26e0ffcce97636748ebd
Certificate serial: 019CACB500C9161160E5FD370ECBA56029C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
Manifest number: 1845
Signing time: Mon 02 Mar 2026 04:01:09 +0000
Manifest this update: Mon 02 Mar 2026 04:01:09 +0000
Manifest next update: Tue 03 Mar 2026 04:01:09 +0000
Files and hashes: 1: B3vEmndp_x6YAMvLtgQ70Ik6U0I.roa (hash: bqi4W7Nv7XoPhrNwH2N+CzXFN/qDDhLjqU9t3bRJqlI=)
2: BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl (hash: NrCb8BAYY0yUK1h4pjclY+jMYsj1PZhGM0e5fTT/8KE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:00:c9:16:11:60:e5:fd:37:0e:cb:a5:60:29:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0735daa8cfe25dd12a2c26e0ffcce97636748ebd
Validity
Not Before: Mar 2 04:01:09 2026 GMT
Not After : Mar 3 04:01:09 2026 GMT
Subject: CN=f054a2b4ba3a0f52e10f626dbe39420c23a89422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:28:03:b5:3d:4b:87:65:7d:30:9b:a2:52:e4:
82:2f:1e:e5:4c:21:98:dd:59:ba:0d:c2:b2:c0:dd:
3e:92:42:62:3a:8e:b4:2f:b4:93:51:9b:50:c0:80:
16:8a:dd:aa:e6:4a:0f:cc:eb:6c:48:04:16:4f:31:
cf:ac:33:52:ea:c8:14:4d:30:73:9f:aa:d5:e8:b3:
13:21:dc:30:b1:79:b1:03:ba:33:f8:e4:26:70:75:
1c:f8:ed:9c:e4:f4:ed:fa:ac:15:b6:f1:08:c3:01:
a8:dd:8b:e5:0f:39:4f:c1:ef:f0:ae:51:1d:5d:21:
91:7d:80:9b:5e:10:6f:c6:48:9c:79:d3:f2:63:e8:
22:a7:32:60:fe:0d:1f:cb:9a:65:30:3c:a9:41:17:
99:57:16:38:ca:e6:32:a8:41:ce:4b:dd:33:a3:20:
11:d1:a5:14:51:6c:a8:eb:65:dc:52:5a:4b:3c:57:
e7:c8:cc:4b:f4:74:f2:95:ee:04:8e:9b:d8:6b:ef:
fd:01:d8:81:94:9d:0d:13:16:00:50:18:92:79:1f:
5a:fd:a7:75:9e:51:01:75:c5:19:61:bc:4f:c7:7e:
86:32:98:7a:ff:66:fa:33:36:43:0e:f8:59:d9:4c:
f3:99:4b:89:99:03:ad:67:b6:df:25:12:f3:85:7d:
47:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:54:A2:B4:BA:3A:0F:52:E1:0F:62:6D:BE:39:42:0C:23:A8:94:22
X509v3 Authority Key Identifier:
keyid:07:35:DA:A8:CF:E2:5D:D1:2A:2C:26:E0:FF:CC:E9:76:36:74:8E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:cc:70:7a:ae:ae:60:37:2d:0f:c4:b0:ab:0e:84:81:da:4a:
59:4d:43:05:81:e1:2e:5b:ea:d7:c8:a3:db:5e:d0:f2:51:09:
d1:5d:2a:95:f7:11:55:6e:f2:33:33:ea:b5:71:57:c2:d3:06:
4a:87:95:e4:22:85:8a:94:19:e3:84:d3:29:f6:e6:f6:80:60:
8d:5b:9d:d6:56:41:8f:8f:95:90:b5:2c:52:2d:be:3a:03:2e:
ad:cd:1b:80:d2:6c:b4:54:8d:65:46:51:85:64:c2:82:4a:d8:
72:87:7d:06:d6:bd:a5:e5:1c:b5:3b:fc:a2:7b:cb:ce:8b:0b:
3d:38:49:c2:98:73:f1:1f:ad:75:07:71:75:52:07:df:93:64:
f6:3e:a0:3a:8c:f1:34:0f:e6:44:09:9d:05:ab:6b:e1:33:9a:
ca:bf:73:7b:27:ff:36:4e:e0:ee:fb:85:dd:dc:99:3d:ae:84:
c4:42:ca:21:c9:59:56:e5:13:92:d9:16:84:a1:e7:29:ae:e8:
7b:08:d3:e4:3e:a7:f2:f9:a9:04:32:67:96:6b:06:74:68:92:
72:91:00:bd:67:e4:be:07:a3:36:2a:c7:51:aa:95:49:32:8e:
84:1b:12:08:88:f0:53:ea:cb:98:46:2d:4d:3e:4a:5c:79:e4:
3a:bf:22:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZystQDJFhFg5f03DsulYCnDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3MzVkYWE4Y2ZlMjVkZDEyYTJjMjZlMGZmY2NlOTc2MzY3
NDhlYmQwHhcNMjYwMzAyMDQwMTA5WhcNMjYwMzAzMDQwMTA5WjAzMTEwLwYDVQQD
EyhmMDU0YTJiNGJhM2EwZjUyZTEwZjYyNmRiZTM5NDIwYzIzYTg5NDIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqSgDtT1Lh2V9MJuiUuSCLx7lTCGY
3Vm6DcKywN0+kkJiOo60L7STUZtQwIAWit2q5koPzOtsSAQWTzHPrDNS6sgUTTBz
n6rV6LMTIdwwsXmxA7oz+OQmcHUc+O2c5PTt+qwVtvEIwwGo3YvlDzlPwe/wrlEd
XSGRfYCbXhBvxkicedPyY+gipzJg/g0fy5plMDypQReZVxY4yuYyqEHOS90zoyAR
0aUUUWyo62XcUlpLPFfnyMxL9HTyle4EjpvYa+/9AdiBlJ0NExYAUBiSeR9a/ad1
nlEBdcUZYbxPx36GMph6/2b6MzZDDvhZ2UzzmUuJmQOtZ7bfJRLzhX1HlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPBUorS6Og9S4Q9ibb45QgwjqJQiMB8GA1UdIwQY
MBaAFAc12qjP4l3RKiwm4P/M6XY2dI69MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnpYYXFNX2lYZEVxTENiZ184enBkalowanIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8yYTRiZjUtNDBjZi00NDdhLTk3ZTAt
Njc5Y2YwMjEwZDQ5LzEvQnpYYXFNX2lYZEVxTENiZ184enBkalowanIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS8yYTRiZjUtNDBjZi00NDdhLTk3ZTAtNjc5Y2YwMjEwZDQ5
LzEvQnpYYXFNX2lYZEVxTENiZ184enBkalowanIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGsxweq6u
YDctD8Swqw6EgdpKWU1DBYHhLlvq18ij217Q8lEJ0V0qlfcRVW7yMzPqtXFXwtMG
SoeV5CKFipQZ44TTKfbm9oBgjVud1lZBj4+VkLUsUi2+OgMurc0bgNJstFSNZUZR
hWTCgkrYcod9Bta9peUctTv8onvLzosLPThJwphz8R+tdQdxdVIH35Nk9j6gOozx
NA/mRAmdBatr4TOayr9zeyf/Nk7g7vuF3dyZPa6ExELKIclZVuUTktkWhKHnKa7o
ewjT5D6n8vmpBDJnlmsGdGiScpEAvWfkvgejNirHUaqVSTKOhBsSCIjwU+rLmEYt
TT5KXHnkOr8iqw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 13:21:15 2026 by rpki-client