Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
File: BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft (raw, json)
Hash identifier: SO/42AdBos7jR1cQaaYRAWiqB0Z3N2xvb5c1lPVEP5U=
Subject key identifier: 1A:81:75:77:97:CA:EC:95:AE:39:1F:A2:E7:82:63:FD:63:7F:01:C1
Authority key identifier: 07:35:DA:A8:CF:E2:5D:D1:2A:2C:26:E0:FF:CC:E9:76:36:74:8E:BD
Certificate issuer: /CN=0735daa8cfe25dd12a2c26e0ffcce97636748ebd
Certificate serial: 019EBFC87187D93B3621604DF5B1748C8592
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
Manifest number: 1958
Signing time: Sat 13 Jun 2026 07:00:44 +0000
Manifest this update: Sat 13 Jun 2026 07:00:44 +0000
Manifest next update: Sun 14 Jun 2026 07:00:44 +0000
Files and hashes: 1: B3vEmndp_x6YAMvLtgQ70Ik6U0I.roa (hash: bqi4W7Nv7XoPhrNwH2N+CzXFN/qDDhLjqU9t3bRJqlI=)
2: BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl (hash: DnhmcNvJmHGRIcgZpEQAK+UmEdY2LmOdqLsF1xaeAAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c8:71:87:d9:3b:36:21:60:4d:f5:b1:74:8c:85:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0735daa8cfe25dd12a2c26e0ffcce97636748ebd
Validity
Not Before: Jun 13 07:00:44 2026 GMT
Not After : Jun 14 07:00:44 2026 GMT
Subject: CN=1a81757797caec95ae391fa2e78263fd637f01c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f1:f5:ec:99:77:95:7b:ac:7f:b9:a0:96:6b:
4e:4c:8e:48:59:1a:60:98:6e:ed:6c:8a:7b:74:0e:
4f:1a:e5:2d:b0:6b:7e:9d:d9:e7:f2:2c:f6:c8:ce:
b5:80:58:3c:9b:47:8e:d2:b0:1f:7b:ab:21:f0:e1:
8d:e7:2c:1f:1e:a0:8d:88:91:8b:ee:9f:b9:83:8e:
47:70:7d:35:47:5a:2d:40:c3:b1:44:c1:f9:82:b9:
56:3a:38:42:45:1a:74:e4:2a:96:01:34:e2:6d:6a:
eb:18:84:6a:ff:d2:f8:2a:cd:20:94:5c:9b:81:1c:
6a:b5:6c:15:8f:74:c5:d9:f5:03:97:24:de:b8:c4:
ca:53:ec:fa:6d:c0:23:9f:db:50:f7:ff:03:04:cc:
bb:0d:4c:99:7c:d3:1e:13:e6:c3:7f:6e:5f:be:90:
30:34:97:50:f5:25:cf:51:98:7e:a0:8f:8f:1c:ee:
46:28:82:e2:12:e9:07:5c:91:2c:5f:14:11:9d:4c:
95:51:21:fb:08:7e:6d:8f:46:a1:bb:b5:11:28:83:
29:06:48:1b:fc:30:3f:40:40:85:3f:34:8d:e0:ca:
ed:08:ec:74:d2:2e:ff:e7:93:52:69:97:66:9c:34:
a3:5a:33:d8:da:1a:a8:a2:ca:21:38:7e:de:a6:bf:
7e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:81:75:77:97:CA:EC:95:AE:39:1F:A2:E7:82:63:FD:63:7F:01:C1
X509v3 Authority Key Identifier:
keyid:07:35:DA:A8:CF:E2:5D:D1:2A:2C:26:E0:FF:CC:E9:76:36:74:8E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:77:f8:ce:6d:57:ff:92:3c:99:fb:3e:67:9d:4b:2e:ee:4c:
6f:d4:69:f6:39:5b:63:3c:04:fd:10:13:0b:b6:23:39:8f:0c:
52:41:42:b9:a3:88:0f:94:04:96:4e:a7:e1:39:9b:af:1a:7b:
94:63:b7:51:43:99:86:13:49:ec:97:b9:c0:0b:ba:46:a7:d8:
92:7e:41:00:05:1c:5f:98:d8:f3:fe:14:54:15:2a:50:19:0b:
56:6d:d4:22:6c:87:3b:83:03:27:95:3a:bd:39:70:92:2e:af:
97:2f:c0:d3:42:55:7b:e1:b8:cf:b1:07:02:b4:1d:d4:cd:26:
55:db:b4:3d:24:84:c8:f2:dc:f4:34:2c:d1:e9:3d:23:7a:d1:
7f:46:b2:d0:bc:40:cc:32:a9:ca:27:fb:9d:83:c1:6d:8e:53:
bc:5f:83:b4:92:6f:68:7a:7e:e2:5d:65:c8:37:54:16:93:23:
28:1a:fe:f8:99:7c:61:85:0c:22:dc:86:8c:16:65:5a:4a:b4:
c2:fe:a0:26:3f:04:8e:8f:b2:6c:d1:5c:a2:07:ce:d3:c1:33:
f6:bb:87:09:41:7c:da:ac:ac:78:c4:cc:c9:16:2a:4a:64:df:
1b:aa:28:f9:35:17:c9:31:52:d0:8c:f0:f4:3f:10:15:0d:84:
19:9b:17:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:58:47 2026 by rpki-client