Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
File: bZYBl_5YkhTCJZ9q6olsThAH6YY.mft (raw, json)
Hash identifier: y7Q4kHYhCkUNeUR4brQA+sMD7i2qeCECll0aufDT56A=
Subject key identifier: 8C:FD:ED:7B:53:80:7B:CD:9C:75:F7:0A:D4:CC:9D:10:C4:FE:08:82
Authority key identifier: 6D:96:01:97:FE:58:92:14:C2:25:9F:6A:EA:89:6C:4E:10:07:E9:86
Certificate issuer: /CN=6d960197fe589214c2259f6aea896c4e1007e986
Certificate serial: 019DA29CF859E24090B84C410CBF60FFC7A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
Manifest number: 0B63
Signing time: Sat 18 Apr 2026 22:01:29 +0000
Manifest this update: Sat 18 Apr 2026 22:01:29 +0000
Manifest next update: Sun 19 Apr 2026 22:01:29 +0000
Files and hashes: 1: bZYBl_5YkhTCJZ9q6olsThAH6YY.crl (hash: ONa0wQkek8YCRhnJk3ALaOK4MO/CHTq2ow+fNviXpKA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 22:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:9c:f8:59:e2:40:90:b8:4c:41:0c:bf:60:ff:c7:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d960197fe589214c2259f6aea896c4e1007e986
Validity
Not Before: Apr 18 22:01:29 2026 GMT
Not After : Apr 19 22:01:29 2026 GMT
Subject: CN=8cfded7b53807bcd9c75f70ad4cc9d10c4fe0882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7e:1a:bb:ef:e2:cf:ea:e2:8e:2e:97:0d:99:
eb:79:e0:da:75:69:3c:34:a8:e5:ff:c2:e3:67:59:
32:85:ff:04:6b:b7:17:33:00:ce:73:0b:d7:39:0a:
da:8b:a1:bf:1d:66:7a:fe:da:20:c9:f4:49:f1:94:
da:ff:63:fb:e9:5d:e0:df:75:41:e3:17:74:f9:d5:
94:fb:c3:cc:c9:fd:91:f7:e8:10:7a:c1:09:5e:1c:
f5:d4:48:d9:17:4e:34:92:16:8b:8a:e2:6a:55:8f:
c9:9d:07:56:07:37:0f:57:a9:c3:f8:a0:47:38:7d:
21:83:0a:51:c7:65:0a:1b:7d:0a:ce:86:a4:9b:7f:
c0:0f:6f:1f:0b:a8:11:88:67:53:0f:9b:fd:db:5a:
ee:84:db:b2:79:65:ce:73:ae:bc:dd:99:86:26:49:
c0:83:49:73:24:30:69:99:e4:5e:00:e7:53:ab:5c:
11:89:64:a6:be:70:f8:66:6d:62:ac:85:2b:10:e3:
33:5e:8a:58:bb:8d:4f:97:55:66:7d:c8:2e:a1:3e:
de:fa:d6:fb:e2:03:4b:df:7e:42:61:3c:8d:96:03:
c4:68:2c:1a:a8:ed:85:95:c5:3c:2a:70:04:02:4d:
8b:a2:66:75:ec:ab:27:d6:67:81:ca:77:9e:8c:a0:
48:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:FD:ED:7B:53:80:7B:CD:9C:75:F7:0A:D4:CC:9D:10:C4:FE:08:82
X509v3 Authority Key Identifier:
keyid:6D:96:01:97:FE:58:92:14:C2:25:9F:6A:EA:89:6C:4E:10:07:E9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:f7:b4:0b:53:bc:26:db:2c:cc:82:f9:a1:47:15:aa:28:71:
45:a8:39:cf:49:74:b3:f5:80:2b:74:c9:f3:bd:35:68:48:f3:
b8:ca:bb:b0:c3:f4:b6:93:ec:f5:a1:c8:e1:06:cc:9a:2b:a1:
81:e8:97:89:b9:1a:ae:a5:53:e9:d8:d6:d1:84:b6:87:1d:eb:
83:1f:28:7a:99:cb:94:73:a6:f7:90:e7:95:69:6d:60:a8:71:
5c:65:33:21:5e:12:bb:18:3d:12:be:11:21:97:5f:fc:e2:01:
52:b0:e4:f6:59:e5:e9:e1:d5:b0:9e:b3:01:f5:e5:7a:43:13:
5d:30:97:1a:92:45:e5:64:64:b3:d1:ae:52:e1:a6:12:b9:19:
ed:c1:ea:9c:4b:df:61:c0:b8:2a:8f:7b:c3:3e:1a:04:a7:9e:
9a:9a:3f:b0:4a:91:51:33:c5:e7:f9:8f:ff:71:6a:d6:96:80:
dd:c6:c1:3f:20:82:c7:61:7a:75:c4:32:6f:ba:1c:ee:c6:c1:
9a:2c:bd:af:19:1b:61:ca:2e:f0:7f:74:20:1f:21:b7:90:f4:
61:f1:ee:10:a3:f5:dc:52:cc:51:1e:12:23:34:d6:43:06:c3:
2d:11:1e:2f:a9:df:ec:fe:3d:65:f7:7b:b5:56:52:7c:54:f9:
9d:ff:26:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2inPhZ4kCQuExBDL9g/8eiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkOTYwMTk3ZmU1ODkyMTRjMjI1OWY2YWVhODk2YzRlMTAw
N2U5ODYwHhcNMjYwNDE4MjIwMTI5WhcNMjYwNDE5MjIwMTI5WjAzMTEwLwYDVQQD
Eyg4Y2ZkZWQ3YjUzODA3YmNkOWM3NWY3MGFkNGNjOWQxMGM0ZmUwODgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArH4au+/iz+riji6XDZnreeDadWk8
NKjl/8LjZ1kyhf8Ea7cXMwDOcwvXOQrai6G/HWZ6/togyfRJ8ZTa/2P76V3g33VB
4xd0+dWU+8PMyf2R9+gQesEJXhz11EjZF040khaLiuJqVY/JnQdWBzcPV6nD+KBH
OH0hgwpRx2UKG30Kzoakm3/AD28fC6gRiGdTD5v921ruhNuyeWXOc6683ZmGJknA
g0lzJDBpmeReAOdTq1wRiWSmvnD4Zm1irIUrEOMzXopYu41Pl1VmfcguoT7e+tb7
4gNL335CYTyNlgPEaCwaqO2FlcU8KnAEAk2LomZ17Ksn1meByneejKBIPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIz97XtTgHvNnHX3CtTMnRDE/giCMB8GA1UdIwQY
MBaAFG2WAZf+WJIUwiWfauqJbE4QB+mGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlpZQmxfNVlraFRDSlo5cTZvbHNUaEFINllZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi84NzljMDItZGJmNC00ZTQwLWE0ZWQt
MzEzNzU0ZTY0ZTEzLzEvYlpZQmxfNVlraFRDSlo5cTZvbHNUaEFINllZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi84NzljMDItZGJmNC00ZTQwLWE0ZWQtMzEzNzU0ZTY0ZTEz
LzEvYlpZQmxfNVlraFRDSlo5cTZvbHNUaEFINllZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIfe0C1O8
JtsszIL5oUcVqihxRag5z0l0s/WAK3TJ8701aEjzuMq7sMP0tpPs9aHI4QbMmiuh
geiXibkarqVT6djW0YS2hx3rgx8oepnLlHOm95DnlWltYKhxXGUzIV4Suxg9Er4R
IZdf/OIBUrDk9lnl6eHVsJ6zAfXlekMTXTCXGpJF5WRks9GuUuGmErkZ7cHqnEvf
YcC4Ko97wz4aBKeempo/sEqRUTPF5/mP/3Fq1paA3cbBPyCCx2F6dcQyb7oc7sbB
miy9rxkbYcou8H90IB8ht5D0YfHuEKP13FLMUR4SIzTWQwbDLREeL6nf7P49Zfd7
tVZSfFT5nf8mSg==
-----END CERTIFICATE-----
Generated at Sun Apr 19 08:48:28 2026 by rpki-client