Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
File: BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft (raw, json)
Hash identifier: fS4FcCGJadSoOL5+XuZvQt2aNAqxYFQhxdIr5oue1uM=
Subject key identifier: 1F:4A:CE:1F:98:9B:77:AC:7C:11:0C:02:16:BC:2C:04:12:E0:BF:0A
Authority key identifier: 07:35:DA:A8:CF:E2:5D:D1:2A:2C:26:E0:FF:CC:E9:76:36:74:8E:BD
Certificate issuer: /CN=0735daa8cfe25dd12a2c26e0ffcce97636748ebd
Certificate serial: 019D9A3E786FACC3D6A271987ABF3BB781C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
Manifest number: 18C0
Signing time: Fri 17 Apr 2026 07:01:18 +0000
Manifest this update: Fri 17 Apr 2026 07:01:18 +0000
Manifest next update: Sat 18 Apr 2026 07:01:18 +0000
Files and hashes: 1: B3vEmndp_x6YAMvLtgQ70Ik6U0I.roa (hash: bqi4W7Nv7XoPhrNwH2N+CzXFN/qDDhLjqU9t3bRJqlI=)
2: BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl (hash: KBUq6mVQesSvdHMKBIA9lk+uud5z6hfXE/rIsDQkYFk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:78:6f:ac:c3:d6:a2:71:98:7a:bf:3b:b7:81:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0735daa8cfe25dd12a2c26e0ffcce97636748ebd
Validity
Not Before: Apr 17 07:01:18 2026 GMT
Not After : Apr 18 07:01:18 2026 GMT
Subject: CN=1f4ace1f989b77ac7c110c0216bc2c0412e0bf0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a3:44:6e:5c:4b:53:23:fb:85:7c:46:71:5f:
47:b7:1d:32:5f:96:bb:65:e2:51:ee:08:46:c1:07:
6d:d7:6b:38:38:aa:4b:f6:06:86:cf:2a:a3:8b:2a:
a3:6f:2c:a0:e2:fb:77:3a:dd:b1:81:33:6e:82:2e:
2a:5d:dd:3c:16:fa:1b:0f:7e:89:4a:0c:11:9a:04:
a4:6c:ae:82:e0:a0:6a:4e:d9:f9:73:df:12:17:0c:
84:e3:1f:4f:31:9c:df:24:eb:76:81:a1:5c:b8:71:
cb:07:c7:60:c1:3d:4f:df:cd:18:98:3e:7f:6e:2d:
7b:72:0f:5a:a2:ae:b0:bd:4e:51:be:71:39:cb:0c:
7e:14:26:7e:03:4d:b6:1f:61:43:98:65:ec:56:91:
f9:0f:d6:bc:d1:5f:88:88:89:fe:fa:c4:c2:d7:0c:
5f:89:14:73:41:0a:f0:30:5a:ea:43:90:24:95:a1:
e8:f8:94:93:16:b4:5c:5b:31:0d:47:af:e6:2b:2f:
fe:5d:a2:f9:9f:c2:0b:c3:16:30:a2:80:c6:aa:8a:
bf:68:f5:9d:79:23:7e:3a:0c:bb:9f:0d:27:dc:d2:
d0:a7:72:f9:90:83:ef:b4:fa:0e:cb:df:ad:4a:2a:
c1:41:97:08:c0:b6:8a:78:b6:b7:8b:f4:58:50:83:
1c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:4A:CE:1F:98:9B:77:AC:7C:11:0C:02:16:BC:2C:04:12:E0:BF:0A
X509v3 Authority Key Identifier:
keyid:07:35:DA:A8:CF:E2:5D:D1:2A:2C:26:E0:FF:CC:E9:76:36:74:8E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:4f:7b:e5:36:df:dc:d6:9f:c6:f9:99:72:37:a9:47:91:82:
03:a2:85:c4:60:18:7b:ad:8d:d2:d4:0a:3b:ca:49:13:93:77:
dc:e4:f7:d9:5e:7a:63:58:b2:9c:d6:71:fa:60:b6:7e:82:3d:
03:97:e3:e2:30:22:8a:33:ca:9b:02:8b:3f:33:c6:0e:13:5b:
f0:ee:c5:f3:49:8f:b5:82:e5:f2:ea:38:e6:8a:f1:c7:f3:d1:
62:cd:e4:13:6b:b3:b3:57:46:c7:cc:6a:ca:a7:73:02:47:49:
48:d4:64:2c:ec:d8:a5:d6:a8:2c:80:6b:b3:5e:ef:cc:f1:07:
d0:d5:0e:84:69:2c:39:fc:8e:0d:f2:9c:02:a2:a7:db:42:53:
3a:0e:2d:e6:0b:77:8c:a1:28:00:1d:5d:0e:d0:71:fe:b5:00:
0d:1c:5d:32:a2:71:8d:40:91:2c:cc:4e:f3:b8:f9:1c:0b:96:
cd:cb:e1:35:e7:8a:fb:8f:05:36:fe:2c:0c:51:66:53:de:52:
59:79:13:54:70:f1:76:3a:86:e0:28:61:6a:37:e4:64:25:7d:
c7:3f:7d:26:28:9a:12:7f:06:0b:1e:8c:0b:7c:4d:6d:82:42:
a3:24:4d:5e:04:f4:8b:16:34:57:ec:98:87:cc:78:c6:73:b9:
88:ea:29:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:49:46 2026 by rpki-client