Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
File: bzipg89Dc6pJdJhasi1RTA9IHS4.mft (raw, json)
Hash identifier: etDxIEiwFp8iDX0g0EfMJnBd2S2/DxNnxpTpdWXgtjI=
Subject key identifier: DD:D8:60:B6:0C:F9:0F:D0:D0:62:3E:25:48:40:7C:69:6B:7A:19:71
Authority key identifier: 6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
Certificate issuer: /CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Certificate serial: 019DA378C0CF77C85AA89262F8EEA9AFE6AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
Manifest number: 0514
Signing time: Sun 19 Apr 2026 02:01:32 +0000
Manifest this update: Sun 19 Apr 2026 02:01:32 +0000
Manifest next update: Mon 20 Apr 2026 02:01:32 +0000
Files and hashes: 1: CFG1heBbtoZ3C34wQ-l9LF7gRkA.roa (hash: Oxb1oer/Ad9vuz1FfC3NXR6Dfq/xfhHJ1WN4SPW38Qo=)
2: bzipg89Dc6pJdJhasi1RTA9IHS4.crl (hash: g90Cq9zMm1SHGOjUCsRYiH0cfy+1r69Uy9DjQX8IQJ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:78:c0:cf:77:c8:5a:a8:92:62:f8:ee:a9:af:e6:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Validity
Not Before: Apr 19 02:01:32 2026 GMT
Not After : Apr 20 02:01:32 2026 GMT
Subject: CN=ddd860b60cf90fd0d0623e2548407c696b7a1971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:a7:e6:3f:9d:bb:cf:30:f7:0c:e9:51:62:dc:
3b:39:cd:f0:d6:09:12:78:b8:40:3f:26:a6:6f:ae:
a4:08:09:76:b6:7e:3d:2d:c5:59:06:4c:54:88:6f:
e3:28:04:0c:29:96:62:c5:1b:52:ca:79:1d:12:8d:
c4:34:60:6b:77:ad:ab:6a:f7:fb:ab:dc:5b:f4:73:
d2:c8:56:67:45:9c:f5:f1:9c:8f:eb:5a:9e:5f:85:
1e:0c:1c:b0:71:fa:52:71:b0:ac:81:97:5c:1f:83:
ee:f2:87:09:c5:ac:ce:a3:bc:7e:45:7a:5c:61:4b:
ff:b6:41:5f:a7:aa:22:b4:f3:ad:ad:4c:43:7e:4d:
74:1c:f3:01:73:b1:10:38:aa:ef:06:6e:f7:98:23:
9c:86:0e:47:6c:82:ce:68:b9:54:30:a8:ad:39:8c:
43:f3:2e:17:57:87:50:f0:f2:19:80:20:fc:34:00:
16:f1:4c:af:53:a9:43:4d:29:d5:5c:3f:6e:db:36:
7c:90:f5:74:ae:0a:9b:cd:d0:77:eb:8e:5d:f6:5c:
84:51:84:4c:d0:a1:9c:3c:25:cd:f4:11:50:8e:94:
74:a2:1f:4b:95:e8:40:cd:2a:ac:a1:69:af:08:6d:
f9:cf:49:df:08:fa:8c:51:bb:20:6a:e5:89:f0:36:
1a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:D8:60:B6:0C:F9:0F:D0:D0:62:3E:25:48:40:7C:69:6B:7A:19:71
X509v3 Authority Key Identifier:
keyid:6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:6f:5a:95:b6:49:e0:4c:e9:f0:c2:58:f9:be:c3:18:08:b5:
e5:a0:1a:fc:20:42:7f:e7:a0:a7:e6:28:71:a5:b3:79:98:3e:
3a:d4:e2:5e:de:2d:91:94:de:ea:d7:de:b1:70:7a:db:28:e2:
73:5a:71:7e:3d:45:62:63:6d:39:05:9d:c9:82:48:ea:db:4c:
6a:46:d0:4e:28:8e:dd:c0:0c:fa:45:1d:73:8e:d9:20:1e:bc:
3e:6c:6d:fb:5f:d0:6d:a9:d3:f2:21:d2:ee:f1:ee:db:69:11:
1f:df:91:7d:ab:4a:c2:04:aa:11:a7:f0:0d:c8:1d:f9:48:7e:
00:83:fd:71:08:04:d1:d3:73:54:4a:cd:96:68:a7:e0:d4:c5:
7e:13:33:59:ca:66:4d:4a:18:d9:32:8e:38:e8:47:6e:bd:06:
c5:ed:fc:5e:3c:8f:ef:a5:95:ad:b7:30:03:b6:fb:2e:23:2e:
35:cd:66:bc:e0:40:f7:42:7a:d2:51:0d:f3:a8:5c:e4:cc:80:
db:b8:6e:57:ec:7c:8b:fb:df:9b:67:55:b7:9e:53:19:23:c6:
79:97:ef:e8:b3:cb:de:09:77:1e:26:20:4f:9b:b5:52:b1:9a:
38:9f:53:14:8d:36:f5:3e:31:aa:ce:e0:39:1d:a7:f0:8f:15:
ed:59:75:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:31:58 2026 by rpki-client