Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
File: bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft (raw, json)
Hash identifier: wbvA2L4ReghfMSTgWsDXYrVdv9ABqeVhCk/gPZ/JzY4=
Subject key identifier: 84:DD:A3:B1:9F:EA:6B:9B:E3:F5:C9:0F:72:69:8F:EE:6D:BB:67:D0
Authority key identifier: 6C:DA:15:00:F5:C9:63:ED:23:4F:D9:48:59:F2:3B:32:F4:88:5D:FC
Certificate issuer: /CN=6cda1500f5c963ed234fd94859f23b32f4885dfc
Certificate serial: 019D9B196E35E8689837EBEAF0FBECB6F34D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
Manifest number: 16A1
Signing time: Fri 17 Apr 2026 11:00:28 +0000
Manifest this update: Fri 17 Apr 2026 11:00:28 +0000
Manifest next update: Sat 18 Apr 2026 11:00:28 +0000
Files and hashes: 1: Uqn6iMFS0A-L6D9kMDDjbMCbWuM.roa (hash: TeSeZwoDHMz9koxsVTB//jq8uP6vjAXuwnX8VHNH6GY=)
2: bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl (hash: I2H5TMUBJU8Iap1pVKtbnt02T8iLnNGbILt7ZBn3Vts=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:19:6e:35:e8:68:98:37:eb:ea:f0:fb:ec:b6:f3:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cda1500f5c963ed234fd94859f23b32f4885dfc
Validity
Not Before: Apr 17 11:00:28 2026 GMT
Not After : Apr 18 11:00:28 2026 GMT
Subject: CN=84dda3b19fea6b9be3f5c90f72698fee6dbb67d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5d:64:6f:0f:88:e8:40:32:0c:de:09:37:6c:
7a:de:61:e8:11:78:c6:88:ae:04:57:3e:a9:38:e6:
e5:d3:c3:de:7c:cd:ff:fb:5f:d9:1e:26:5b:de:1b:
21:d3:fd:2b:a1:2c:c4:85:55:61:2f:cc:6d:39:46:
19:be:2e:ea:85:8b:40:eb:25:e5:77:a7:7f:4c:6e:
51:b2:a1:6d:96:c4:3a:bc:c6:c1:c0:c2:35:06:24:
64:b0:e4:48:dd:7c:ac:e9:aa:15:9e:64:ac:14:a2:
74:3e:c8:17:1f:f7:0b:db:0f:cf:9e:ed:7f:b8:c3:
f1:69:2f:1e:80:e8:90:92:10:40:38:48:58:77:c3:
87:fb:67:68:f8:d5:68:60:ad:50:1f:32:b4:18:a4:
ac:33:a8:49:ef:92:13:37:9c:f5:12:70:18:66:c7:
10:79:78:81:b7:15:48:e2:05:1a:14:d4:18:2f:87:
23:d8:00:86:bd:60:d5:45:f0:66:0f:52:55:94:d1:
2a:e3:10:2c:e7:03:f8:6e:6d:c0:2f:81:11:5c:3e:
be:38:d5:c4:0b:9f:c5:86:e5:74:2f:b6:d7:c0:4a:
5d:b7:8b:63:21:08:6f:33:26:49:a6:cb:0f:42:c4:
e9:d2:9b:92:ba:ba:9d:f6:7b:f6:46:7b:15:1a:49:
4e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:DD:A3:B1:9F:EA:6B:9B:E3:F5:C9:0F:72:69:8F:EE:6D:BB:67:D0
X509v3 Authority Key Identifier:
keyid:6C:DA:15:00:F5:C9:63:ED:23:4F:D9:48:59:F2:3B:32:F4:88:5D:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:d1:c6:ee:96:18:97:61:e7:8d:d6:42:0f:3f:a1:a1:6c:e2:
de:82:4d:3e:53:6d:00:01:d3:28:5e:5e:0d:67:5e:30:d5:89:
01:37:b6:34:2f:eb:77:4e:dd:57:e9:bf:c0:1e:88:cc:96:70:
b3:95:e4:e7:ba:e8:80:5b:b1:d7:d1:2c:25:20:25:9e:07:14:
ee:88:83:7e:c1:72:96:16:66:e2:6f:f6:20:ba:ca:8b:98:6c:
f3:fc:b8:e2:96:ee:b6:9f:37:41:25:ea:52:2e:a3:fb:f3:75:
cd:e9:e6:28:6c:29:00:44:ba:f2:e1:a9:15:1b:df:1b:2f:11:
bd:45:3d:d8:7b:ec:a6:cb:8c:f5:22:6c:a4:90:9e:46:45:33:
87:1f:b4:e4:48:82:78:33:6e:f6:7c:f3:0e:49:8b:ec:47:50:
f4:13:23:56:99:95:e7:38:07:3c:b4:43:56:23:b7:b8:27:f9:
40:01:4c:6a:41:0f:bb:e8:db:b5:77:de:b2:e7:e1:c9:fc:66:
e5:b2:9a:89:b2:03:62:56:a1:b0:87:d5:bd:4a:44:b0:0f:1b:
34:2c:70:5a:c3:c0:2e:d1:e1:72:77:af:3a:f3:c2:31:09:c3:
b9:0a:9f:c2:21:92:c8:c6:ed:07:ce:b9:4b:61:4f:07:40:98:
28:c0:1b:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:40:06 2026 by rpki-client