Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
File: bZYBl_5YkhTCJZ9q6olsThAH6YY.mft (raw, json)
Hash identifier: z+1x74MOHF4pYnKpL7+df4skoHpokjP/BSNPb75cmw8=
Subject key identifier: C4:E3:E4:B2:79:47:66:1E:A9:53:C2:95:03:DC:B5:8D:54:BB:4C:49
Authority key identifier: 6D:96:01:97:FE:58:92:14:C2:25:9F:6A:EA:89:6C:4E:10:07:E9:86
Certificate issuer: /CN=6d960197fe589214c2259f6aea896c4e1007e986
Certificate serial: 019CAB6BE4C732EFCE4FF26F260F26593411
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
Manifest number: 0AE3
Signing time: Sun 01 Mar 2026 22:01:40 +0000
Manifest this update: Sun 01 Mar 2026 22:01:40 +0000
Manifest next update: Mon 02 Mar 2026 22:01:40 +0000
Files and hashes: 1: bZYBl_5YkhTCJZ9q6olsThAH6YY.crl (hash: 98t64fvN94GWdUSDXdy2nbuWRRvj5rrnsqtdq/XffKY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:e4:c7:32:ef:ce:4f:f2:6f:26:0f:26:59:34:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d960197fe589214c2259f6aea896c4e1007e986
Validity
Not Before: Mar 1 22:01:40 2026 GMT
Not After : Mar 2 22:01:40 2026 GMT
Subject: CN=c4e3e4b27947661ea953c29503dcb58d54bb4c49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:96:32:f9:62:ce:25:2d:c7:44:05:b0:63:50:
80:0f:2f:70:cd:1c:43:46:9e:0b:72:1c:16:9c:f0:
35:e8:51:ad:f1:f2:44:6a:aa:fb:02:46:bd:5f:6b:
a6:f0:3b:48:a5:9c:29:3d:68:f8:f5:72:7b:3f:7e:
8d:0c:16:42:f0:74:d1:42:e6:0b:c7:2b:e9:1a:e9:
73:44:e9:03:e7:4d:af:4a:35:ef:d7:c4:51:1f:d1:
0f:f2:dc:31:73:12:cb:f5:37:2e:a4:eb:a4:71:18:
be:cb:ed:02:df:3c:69:d3:c7:cd:d6:74:bf:4f:38:
1f:3f:71:ca:78:74:47:b0:0f:df:11:ec:55:f1:85:
19:2e:43:bd:67:cb:0d:16:91:15:24:f4:01:5b:9d:
87:a0:46:5a:bb:01:d0:2e:3a:79:bc:64:3d:3f:b3:
19:9a:bb:61:4b:bd:a6:a5:a2:2d:5a:47:13:3a:74:
74:de:41:35:6e:91:d9:18:13:83:85:a3:08:3c:31:
8f:99:d5:33:83:4c:f0:a8:7a:b3:51:cb:73:fb:bc:
5a:29:b8:8b:f9:58:53:2f:ef:c5:06:9c:6d:8f:0d:
c6:e6:c5:41:8b:f7:42:62:49:31:1d:fb:3f:b0:e1:
77:a3:71:52:9c:68:ec:73:bb:5a:0e:22:60:9d:f2:
67:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:E3:E4:B2:79:47:66:1E:A9:53:C2:95:03:DC:B5:8D:54:BB:4C:49
X509v3 Authority Key Identifier:
keyid:6D:96:01:97:FE:58:92:14:C2:25:9F:6A:EA:89:6C:4E:10:07:E9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:87:06:80:7f:24:5c:fb:87:a9:d0:a1:07:96:77:a0:e9:1c:
fa:78:17:03:ed:86:1f:66:e8:0a:5e:82:85:a3:7e:98:72:f1:
02:f3:2a:d3:f7:13:60:7d:2c:ac:b7:cb:87:78:13:e7:22:e3:
31:74:0f:9b:14:0e:a6:d7:ea:d7:64:f9:82:d9:20:0c:66:39:
1a:c3:69:5d:3a:a0:c0:3c:ae:94:90:0c:79:b7:33:00:87:d8:
fa:18:73:17:1d:53:0e:b5:12:aa:c5:4c:2a:8a:9b:6e:d6:0f:
cd:6b:64:5a:c0:35:61:99:57:ba:1c:98:3f:d5:6e:3a:3d:fe:
04:a3:41:2f:b5:80:5d:aa:35:bf:9e:31:18:07:4c:0c:1c:7e:
d4:f2:1f:ff:89:45:59:b7:d5:4e:79:aa:15:06:c9:69:6c:04:
ce:71:c5:81:d4:b6:02:9d:ff:f9:1d:f3:55:a5:ab:9f:4d:9c:
a3:53:3d:76:a5:50:5c:de:d7:82:49:70:f9:04:4c:03:58:aa:
c7:61:2a:ee:62:0f:da:20:49:b6:dc:24:86:18:36:ff:a3:54:
b7:d4:8e:03:e5:f0:64:ad:55:d2:e9:3e:f5:a0:18:b2:6e:5c:
58:d3:bf:f9:de:40:67:ae:63:0b:01:e2:6f:59:ed:6a:07:6f:
05:ae:a4:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:51:54 2026 by rpki-client