Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
File: bzipg89Dc6pJdJhasi1RTA9IHS4.mft (raw, json)
Hash identifier: 3KBEQKZ9N1iLBz2eQvPn2JQk4zYboj6bNcWoKAQHQdk=
Subject key identifier: C9:6B:4F:50:EF:8C:3E:5D:EA:9E:3B:E4:96:E0:2A:55:4B:34:33:9F
Authority key identifier: 6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
Certificate issuer: /CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Certificate serial: 019CAA586F8E685B5A9A72E8E788D502D31A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
Manifest number: 0493
Signing time: Sun 01 Mar 2026 17:00:48 +0000
Manifest this update: Sun 01 Mar 2026 17:00:48 +0000
Manifest next update: Mon 02 Mar 2026 17:00:48 +0000
Files and hashes: 1: CFG1heBbtoZ3C34wQ-l9LF7gRkA.roa (hash: Oxb1oer/Ad9vuz1FfC3NXR6Dfq/xfhHJ1WN4SPW38Qo=)
2: bzipg89Dc6pJdJhasi1RTA9IHS4.crl (hash: IvymxsvEmV7Eq2dOLt+ManFDsMMmg2UKGL3z8eUuPNs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:6f:8e:68:5b:5a:9a:72:e8:e7:88:d5:02:d3:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Validity
Not Before: Mar 1 17:00:48 2026 GMT
Not After : Mar 2 17:00:48 2026 GMT
Subject: CN=c96b4f50ef8c3e5dea9e3be496e02a554b34339f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c9:a2:a5:c3:05:3a:4e:bc:56:76:b9:f4:0c:
92:f3:63:b4:c2:e2:8a:92:f7:9c:1e:18:28:f1:ed:
f6:3b:0d:74:38:46:0c:80:a0:aa:91:37:2c:d7:dd:
95:39:0e:c8:5d:a3:a1:92:17:21:cc:b5:f1:d9:b2:
f3:48:5f:5f:ce:7b:54:5c:80:2c:a2:c6:75:16:44:
55:8e:53:bf:78:12:af:ab:1c:a5:bd:64:cf:3b:1b:
07:46:9f:b0:b8:bc:86:2a:83:f5:8f:cc:f6:23:ca:
c8:88:9c:f9:b5:7f:4c:2e:23:0d:c2:fb:b6:e7:77:
b7:0b:fd:d4:26:8b:4b:11:66:db:66:7e:70:46:6e:
a0:33:a8:65:c7:b8:50:e6:ed:5c:35:cb:e2:f0:e5:
3e:08:c1:95:1b:b9:86:fa:c9:ea:f1:02:0e:dd:b3:
7c:9a:7b:34:8a:4e:0a:5d:33:be:d4:39:48:4b:44:
09:91:f2:7b:7e:f6:44:17:d1:ea:a3:48:96:29:e6:
45:34:49:58:bb:1b:b5:f2:f3:7b:cc:17:71:4e:5d:
5e:0b:7a:dc:d7:6c:54:d8:93:52:33:4b:8e:36:4d:
75:86:a3:b9:2f:d3:6d:74:c2:b5:70:9b:c7:84:0b:
8e:c5:9f:80:61:b7:9d:cd:ae:b5:ee:09:46:37:9e:
d9:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:6B:4F:50:EF:8C:3E:5D:EA:9E:3B:E4:96:E0:2A:55:4B:34:33:9F
X509v3 Authority Key Identifier:
keyid:6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:7c:7e:08:56:99:d2:61:e7:2f:12:96:b3:9f:b2:6e:7c:34:
8b:ea:9c:49:35:da:0d:15:92:35:d3:f6:f6:d3:e4:19:70:47:
7b:d9:40:8f:d1:47:b9:18:be:19:f0:1d:1a:30:c0:08:4c:92:
9a:ad:b7:a0:91:55:a8:29:ed:7b:8a:4e:73:eb:90:11:45:9f:
e2:83:3e:48:fd:7d:47:da:3a:44:0b:3d:c4:0c:e8:f5:53:ca:
f5:10:5f:a9:e1:b5:c2:f7:3c:2e:34:3c:a3:63:c0:b5:63:47:
de:0b:65:69:8c:2c:65:f8:69:db:e3:af:85:da:fa:72:76:69:
7d:7c:e1:f8:2f:b7:0b:4b:63:d6:51:5c:37:28:2f:21:f3:86:
fd:43:98:d8:24:10:26:e4:f3:72:37:d4:7d:51:e1:8f:08:e5:
1b:e9:04:c9:f4:bb:27:51:95:f2:21:ef:56:0b:ef:61:7d:f5:
9e:f5:e4:2a:4c:dc:c6:0c:be:83:40:bc:67:62:84:f9:1d:44:
6e:bb:42:ac:83:ef:71:ca:f0:57:7e:8b:e7:92:80:6f:4d:c9:
76:ca:73:63:0e:f9:85:a6:0d:ca:b4:9a:d0:f2:0f:62:36:4a:
39:4e:cb:03:c9:20:1b:f4:41:a7:24:bf:d9:fa:d8:fa:3b:f2:
ec:9c:5a:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:02:49 2026 by rpki-client