Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
File: bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft (raw, json)
Hash identifier: h4NDTCz3cbJnhQfxETIAAcFkPCvq0h2krAl0Yl/TyZo=
Subject key identifier: 4C:32:F3:2D:C1:81:DB:F0:18:6D:CB:B7:78:3E:B3:F4:C9:42:4D:0E
Authority key identifier: 6C:DA:15:00:F5:C9:63:ED:23:4F:D9:48:59:F2:3B:32:F4:88:5D:FC
Certificate issuer: /CN=6cda1500f5c963ed234fd94859f23b32f4885dfc
Certificate serial: 019CABA1E092F90FAA8A0155A69B062B3B46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
Manifest number: 1625
Signing time: Sun 01 Mar 2026 23:00:38 +0000
Manifest this update: Sun 01 Mar 2026 23:00:38 +0000
Manifest next update: Mon 02 Mar 2026 23:00:38 +0000
Files and hashes: 1: Uqn6iMFS0A-L6D9kMDDjbMCbWuM.roa (hash: TeSeZwoDHMz9koxsVTB//jq8uP6vjAXuwnX8VHNH6GY=)
2: bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl (hash: 76mM8xgidmOtw9eSbjV+yZ6iHgarp/YyoUohssIl3G4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a1:e0:92:f9:0f:aa:8a:01:55:a6:9b:06:2b:3b:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cda1500f5c963ed234fd94859f23b32f4885dfc
Validity
Not Before: Mar 1 23:00:38 2026 GMT
Not After : Mar 2 23:00:38 2026 GMT
Subject: CN=4c32f32dc181dbf0186dcbb7783eb3f4c9424d0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8a:4f:7c:71:42:2f:b2:e4:ac:f0:34:1a:c5:
20:17:63:45:8e:cf:4b:17:47:f1:d9:59:82:c0:08:
2e:0e:36:fb:7e:59:0e:ca:89:6b:a1:53:01:77:e3:
5f:0f:f0:9d:e7:6a:7b:1a:cc:3d:86:30:b0:52:c6:
e0:5d:e3:57:63:0d:04:7c:d6:92:d3:d5:a8:1f:2c:
b0:73:65:8c:3e:74:bb:13:cd:43:20:a1:68:3d:80:
80:f8:04:fd:d2:88:ec:fe:1c:31:0b:7d:60:57:83:
0c:14:77:7c:e7:e2:b4:4d:bf:66:16:1b:92:7c:cd:
e5:55:ca:d5:5a:ad:87:c6:17:4f:94:a6:f4:a5:cf:
6d:4e:c8:46:26:90:47:50:1d:d9:9b:e8:59:8a:5f:
f6:bd:08:0d:46:af:ce:91:7c:ad:22:d7:70:2b:0a:
59:ce:62:34:bd:00:f9:6f:59:66:8c:78:1c:df:1d:
6d:2f:df:51:44:ac:07:ec:5e:b9:4d:1a:53:79:f5:
9f:27:ab:55:c9:f4:8c:e4:e1:37:db:ee:76:88:25:
54:ce:82:d6:06:d9:d4:65:fa:80:90:3a:91:41:b6:
db:33:70:58:68:49:25:6e:be:18:43:d4:a2:76:0b:
18:12:91:0d:28:d5:17:1f:e1:d4:f0:0e:33:1c:b0:
e1:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:32:F3:2D:C1:81:DB:F0:18:6D:CB:B7:78:3E:B3:F4:C9:42:4D:0E
X509v3 Authority Key Identifier:
keyid:6C:DA:15:00:F5:C9:63:ED:23:4F:D9:48:59:F2:3B:32:F4:88:5D:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:95:9c:42:88:79:08:52:fc:e6:de:9b:7e:b0:f2:21:a0:07:
95:f9:75:36:63:19:e9:2d:9f:64:9c:62:61:70:ce:72:ec:48:
fc:72:70:e4:fe:b3:8e:b4:2e:4f:76:8b:4b:b6:ff:a7:03:a9:
cb:4d:9f:7a:dd:29:a6:90:90:d5:4d:29:49:2f:b7:26:21:41:
0e:a8:f8:ad:14:bb:1e:3e:d8:c6:b3:e1:f2:f8:e0:5f:00:11:
14:bc:40:87:65:35:a1:16:ae:c5:65:86:b4:73:77:7b:ec:09:
ad:60:cc:4b:38:27:6a:31:8b:2f:31:2b:22:c9:d1:0c:8a:72:
7c:9a:23:a3:2f:6d:eb:46:0a:8f:ab:9e:5d:3c:86:91:f3:85:
b5:ac:46:2d:77:da:0a:fd:c8:c1:14:bc:df:87:ab:44:7c:f0:
b7:dc:9b:e8:73:69:71:a8:76:a0:e8:d0:bc:9e:62:3d:41:a4:
47:8a:c2:fc:0f:b4:cd:aa:80:ea:79:12:26:21:4d:b2:d4:7b:
88:75:12:3c:59:bd:bb:fe:ab:c1:7a:18:af:f4:c2:ff:42:1e:
c4:c4:e2:f1:0c:fb:0c:c6:9d:7a:ad:8c:60:48:13:43:fe:1c:
99:f3:fd:af:5e:9f:05:47:d0:a5:bb:de:4b:38:93:5f:ec:14:
03:39:9c:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:36:16 2026 by rpki-client