Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
File: bfHIcky70DS6t6Da3wq0uZ_2b_8.mft (raw, json)
Hash identifier: 0X8GVrbqG3RA+smCYIY+yBD85I2DT0MoMfT4sbc5+UI=
Subject key identifier: C0:91:8D:E2:E1:75:9D:2B:24:95:10:55:39:05:FE:CB:08:AD:D1:56
Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Certificate serial: 019D9BF57F44989579980F4D78422D4E9FAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 15:00:50 +0000
Manifest this update: Fri 17 Apr 2026 15:00:50 +0000
Manifest next update: Sat 18 Apr 2026 15:00:50 +0000
Files and hashes: 1: QfIo87XsCuJzTUYuuoqKD3WaLb0.roa (hash: 3OJrGr0r+PmdJst/a4vFJ2BEBu96S/fI6q0nYYtF9LQ=)
2: bfHIcky70DS6t6Da3wq0uZ_2b_8.crl (hash: eizuhOU5qKBnlagL6vc810dm7wQ/33YVDppctvrjCSA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:7f:44:98:95:79:98:0f:4d:78:42:2d:4e:9f:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff
Validity
Not Before: Apr 17 15:00:50 2026 GMT
Not After : Apr 18 15:00:50 2026 GMT
Subject: CN=c0918de2e1759d2b249510553905fecb08add156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:83:a1:de:ad:9a:02:4a:1d:bf:70:d0:4d:02:
3d:3d:53:27:ef:60:f3:bd:75:9a:48:95:9c:44:77:
3c:36:67:53:6b:83:87:cb:13:1c:98:bc:a7:43:91:
60:48:39:95:6f:93:40:60:19:8d:b0:45:10:f0:e5:
84:0a:90:d2:6a:c9:1f:be:58:e2:dc:23:0b:7b:05:
f0:02:67:37:92:d4:58:76:b4:ec:ae:53:a1:49:fe:
f1:ce:29:7a:b8:ac:56:19:93:3e:0e:a8:83:03:4e:
2a:4c:a9:cb:c7:4a:8d:a6:e7:8a:3d:b8:41:88:ac:
e2:1b:64:cb:57:df:62:96:f2:4c:24:68:df:0a:69:
3e:3d:d0:50:a5:e0:dd:23:c3:fb:85:0b:da:8e:15:
c4:07:c5:e8:6c:e5:5a:9a:49:af:30:1b:5e:b2:87:
c9:25:aa:ee:9f:38:c4:b0:25:67:b6:0d:1d:e4:75:
42:cf:25:9e:58:e6:6d:18:d2:16:39:78:e9:ac:4e:
79:38:a1:bc:58:38:d0:90:68:81:fc:ec:0b:32:55:
66:1a:e4:af:d4:9b:3b:bd:11:22:92:e8:23:c6:e2:
cb:4d:41:82:ef:a1:3d:9d:77:9e:78:7d:14:bb:80:
8e:09:de:da:23:74:a1:62:76:1f:46:53:e2:41:43:
c5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:91:8D:E2:E1:75:9D:2B:24:95:10:55:39:05:FE:CB:08:AD:D1:56
X509v3 Authority Key Identifier:
keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:35:60:d8:a7:2d:ef:ef:19:88:e3:e0:11:b8:cf:29:fe:04:
07:5d:5a:cb:e1:dc:a6:da:b5:53:d2:21:44:c8:b4:eb:88:f6:
99:f8:c5:aa:a5:28:b5:50:ab:ce:7e:e3:c5:82:96:c0:f0:ba:
c2:87:bf:ce:e3:61:86:c2:af:bd:89:be:e1:e3:9f:de:72:5d:
85:30:5a:ae:f7:e6:64:77:72:d3:b8:6e:33:9d:b7:83:a6:67:
60:90:d5:f5:7e:4b:b4:79:16:d7:5d:f4:eb:ce:64:e4:07:59:
17:a1:d5:b9:db:23:1b:10:c1:10:56:77:68:ee:e3:98:30:23:
6e:a2:1d:88:7a:6d:79:b8:32:e5:ea:35:93:8a:3e:db:8b:9d:
c3:7b:cb:87:f8:d0:c5:dc:36:dd:5c:aa:c5:12:4a:ca:06:db:
df:d6:8e:44:b5:9e:7c:53:43:22:83:e0:5f:98:be:ee:4f:2e:
d9:75:0a:cd:76:17:9e:95:cd:40:11:c1:8f:ec:b6:ea:fb:8a:
e2:bb:5f:f0:21:20:62:0b:19:d3:32:4d:31:be:c9:11:07:bc:
33:67:ca:e4:30:e9:16:05:07:b5:fa:e1:4f:04:0f:54:25:d4:
19:a9:24:01:8e:fa:92:63:2c:e1:67:59:97:14:5a:5b:93:0a:
47:27:1c:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:44:24 2026 by rpki-client