Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
File: bSPOewwQBo-8RMAhlD4zkBPyruA.mft (raw, json)
Hash identifier: YUYtb+PEfeViyMrN89uFj1UTicOhKil5psCoGmcWHeM=
Subject key identifier: 6D:10:24:E9:FC:69:2C:C6:DC:C3:ED:83:38:B1:AE:79:AB:44:FB:C1
Authority key identifier: 6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
Certificate issuer: /CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Certificate serial: 019D9962EF18A3BB3E6A64289F379A9B1F61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
Manifest number: 18C1
Signing time: Fri 17 Apr 2026 03:01:30 +0000
Manifest this update: Fri 17 Apr 2026 03:01:30 +0000
Manifest next update: Sat 18 Apr 2026 03:01:30 +0000
Files and hashes: 1: WK4FeKC76gPpIjRhyORnL_0frZU.roa (hash: vdHNIiugtJJb19ih4gpWPEIdemNrQgRmwJqyp8Z7ys0=)
2: bSPOewwQBo-8RMAhlD4zkBPyruA.crl (hash: y9ZnWdTv5S8wrpizIKigXg9dK8xVZ7LThHznTw2wD5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:ef:18:a3:bb:3e:6a:64:28:9f:37:9a:9b:1f:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Validity
Not Before: Apr 17 03:01:30 2026 GMT
Not After : Apr 18 03:01:30 2026 GMT
Subject: CN=6d1024e9fc692cc6dcc3ed8338b1ae79ab44fbc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:84:57:1f:85:0e:30:8d:23:a4:07:b4:eb:00:
e4:e8:77:bd:4f:fd:14:e9:75:c5:d5:94:fd:33:4e:
bf:57:dc:fa:6a:67:bb:7a:9d:f6:e2:ff:0a:ee:0c:
c3:b8:be:06:17:f2:55:f4:96:28:5b:ad:a9:7b:c3:
ae:b8:2c:5d:5f:ee:ee:62:67:9f:72:dd:16:15:80:
7d:62:29:17:a4:e7:21:07:25:0f:46:85:bf:59:bf:
c7:04:8e:8a:ab:99:a0:5c:83:ea:f0:d5:80:4f:7c:
a7:4a:2d:c4:38:92:8c:55:9c:a5:12:95:44:00:a7:
4d:e6:ff:cb:76:4d:1e:59:49:62:d7:c5:98:90:24:
1b:1e:3f:83:0c:7b:bf:7f:06:e7:65:3e:f5:c6:c3:
e5:b2:64:56:5d:df:65:cb:09:8b:6e:ac:41:c4:c1:
60:a0:cd:01:30:36:f5:36:4e:a1:1c:f3:1d:94:00:
7a:30:6f:c3:12:43:5a:7b:55:c7:ec:ce:07:95:db:
ba:8b:a9:3c:f5:7c:50:e1:40:eb:82:2b:eb:31:50:
cf:8c:f3:f2:5c:ee:4a:af:0f:19:85:26:19:e6:04:
8a:4a:17:54:d0:06:9b:26:f8:1b:f4:f2:a5:65:5f:
b3:ab:50:ec:41:f5:b8:c4:b8:1d:cd:dc:c5:51:70:
1b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:10:24:E9:FC:69:2C:C6:DC:C3:ED:83:38:B1:AE:79:AB:44:FB:C1
X509v3 Authority Key Identifier:
keyid:6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:1d:a8:56:c4:96:87:e3:1b:aa:63:f5:90:aa:13:ff:23:f8:
e9:6f:1d:45:e3:c4:ae:8d:65:6c:9e:e2:9d:00:13:4c:97:99:
37:1c:b0:3d:00:64:25:b9:6e:34:1c:e5:d2:dd:dd:61:92:ee:
49:ab:c4:15:ad:cc:b1:1d:a2:e5:a4:b7:2f:0e:36:cd:36:ab:
3a:84:c4:1b:98:ff:cc:e4:64:ee:10:54:6e:9b:10:0b:59:88:
c2:88:8d:c9:e4:80:a7:92:c2:bb:02:d4:83:5a:de:af:66:4d:
4c:dc:5d:64:fd:4f:76:b2:d7:51:06:d5:d2:5d:70:6b:3f:28:
b2:2f:ee:66:ea:99:4a:d7:57:bc:ee:d6:a4:10:1d:c1:98:0c:
82:fb:ce:40:ee:79:bf:b6:28:22:c2:9f:b0:49:41:cb:9a:70:
f0:10:77:76:73:43:a9:7b:b2:0b:99:01:51:d0:4c:5e:3a:ee:
29:c6:13:8f:e0:56:5f:e9:88:4f:71:1d:4e:f2:49:c0:de:12:
eb:2b:d3:02:c5:54:ce:7d:98:62:31:92:50:4a:ad:a5:51:9e:
9e:c4:4e:b2:19:10:77:43:ee:c3:5c:02:b4:af:9f:04:a7:1e:
d1:8b:94:04:e2:5d:c8:02:69:45:74:07:4e:4f:70:ae:d7:6c:
4d:cb:35:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:28:21 2026 by rpki-client