Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft
File: bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft (raw, json)
Hash identifier: MaclC1bniBrwE1By8wMVfeGPbw/MLr4I2DWZB4aSpzE=
Subject key identifier: FF:9B:F4:5C:62:BB:4D:FC:E2:C1:82:96:16:E7:F2:DA:C3:9C:65:65
Authority key identifier: 6C:51:61:4B:6B:FB:6C:61:87:83:67:69:11:BD:F3:BC:82:9F:97:D7
Certificate issuer: /CN=6c51614b6bfb6c618783676911bdf3bc829f97d7
Certificate serial: 019CABD9240E71566658A1891E2D24ED68EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bFFhS2v7bGGHg2dpEb3zvIKfl9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft
Manifest number: 14D8
Signing time: Mon 02 Mar 2026 00:01:00 +0000
Manifest this update: Mon 02 Mar 2026 00:01:00 +0000
Manifest next update: Tue 03 Mar 2026 00:01:00 +0000
Files and hashes: 1: bFFhS2v7bGGHg2dpEb3zvIKfl9c.crl (hash: xvjTqRNgvgpdjNAFT4yOx65RuBmZXYA/OMSXlDZD1Cg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/bFFhS2v7bGGHg2dpEb3zvIKfl9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:24:0e:71:56:66:58:a1:89:1e:2d:24:ed:68:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c51614b6bfb6c618783676911bdf3bc829f97d7
Validity
Not Before: Mar 2 00:01:00 2026 GMT
Not After : Mar 3 00:01:00 2026 GMT
Subject: CN=ff9bf45c62bb4dfce2c1829616e7f2dac39c6565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f7:24:86:e8:eb:79:a0:0b:66:f6:ed:41:eb:
cd:0a:4e:ef:18:1f:ba:48:39:c7:1d:3e:5b:08:7f:
23:8c:fd:71:b2:69:1c:c3:bb:de:d0:c0:54:7e:21:
a0:75:1a:83:a2:aa:29:35:e3:27:9b:76:5d:2f:8d:
42:a7:4d:28:47:b9:e6:ee:08:ed:27:dc:74:c7:14:
15:ac:67:a8:02:20:bc:24:5b:53:cb:cf:22:b6:4d:
11:b2:e6:f9:70:19:f9:99:60:54:9f:91:99:dd:8e:
3e:56:fa:38:e3:3d:9c:29:ee:70:cf:1c:77:85:11:
2c:5c:00:a0:e4:33:c7:f6:9b:bb:d6:a9:21:79:88:
07:66:dd:fb:fb:61:df:66:17:41:e1:e3:5d:c1:15:
6e:14:f1:62:cf:98:b0:a8:05:38:ad:b6:68:76:29:
bd:be:dd:d1:21:2a:be:f6:94:88:73:b5:f7:da:75:
c8:b9:55:d4:25:34:05:4a:ec:4f:95:60:1d:71:dc:
e5:b2:35:53:ae:f2:ce:8c:9c:7c:cd:07:bb:a8:d5:
86:60:70:e0:d1:e8:a0:a1:3e:0f:75:62:48:27:37:
7e:ad:52:a2:e4:d2:8c:c2:cf:1e:21:32:a9:4c:17:
d6:40:bd:9d:c0:f1:3d:b5:56:d2:b3:f2:70:7f:b7:
93:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:9B:F4:5C:62:BB:4D:FC:E2:C1:82:96:16:E7:F2:DA:C3:9C:65:65
X509v3 Authority Key Identifier:
keyid:6C:51:61:4B:6B:FB:6C:61:87:83:67:69:11:BD:F3:BC:82:9F:97:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bFFhS2v7bGGHg2dpEb3zvIKfl9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/60ce7e-1923-4993-900c-7d5eb1831ef1/1/bFFhS2v7bGGHg2dpEb3zvIKfl9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:22:d2:c9:fb:14:c5:26:13:5c:2d:df:58:75:36:ea:6c:6d:
02:34:08:ed:b3:c1:a6:d9:cb:73:2b:5f:20:e7:b6:6c:c5:57:
d0:1a:33:92:0e:1f:fb:4e:bf:67:d7:29:22:78:bc:c7:35:6c:
17:55:4f:54:c3:c9:24:1a:5b:fe:05:36:c1:8c:06:da:bb:9d:
2d:5a:0d:66:2d:59:a9:62:70:bf:e9:93:1e:a3:59:27:e8:da:
1b:93:6d:a3:6e:4e:e0:2e:e3:1c:24:89:b0:e6:32:eb:fa:32:
ad:40:18:85:38:6c:68:a9:77:47:f1:a1:25:05:ee:d5:96:db:
42:71:6b:bd:1c:94:b4:e1:7e:96:85:9d:fc:16:10:ce:7c:99:
7f:eb:6d:fd:c7:48:22:53:ef:36:48:0c:f8:32:6a:ad:b2:35:
b7:37:19:38:a0:0e:03:80:75:c3:bb:ef:b1:a9:28:6a:8b:35:
27:53:79:99:d2:60:d4:ed:6c:80:cd:f8:ac:ec:a0:cf:84:49:
0c:85:79:e0:b5:d1:84:a8:fc:34:41:f4:b9:2e:59:99:95:99:
82:30:48:f7:c3:cc:fe:97:ec:30:f8:a1:ac:2b:76:5a:b9:e2:
d6:a8:2f:4f:2a:14:44:4b:d0:1c:82:a0:32:0e:3d:eb:3d:a6:
25:04:41:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:10:12 2026 by rpki-client