Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.mft
File: BzX8jPArik43L6W8ZAlE_rwk8f4.mft (raw, json)
Hash identifier: DYBXElF6GLADSid/Q3Z2oJ/ZvT+QAjBxVYLe4RIt4MY=
Subject key identifier: D8:73:80:1A:DD:4D:C0:89:14:B3:FB:16:A7:4E:2A:06:54:8B:D0:DE
Authority key identifier: 07:35:FC:8C:F0:2B:8A:4E:37:2F:A5:BC:64:09:44:FE:BC:24:F1:FE
Certificate issuer: /CN=0735fc8cf02b8a4e372fa5bc640944febc24f1fe
Certificate serial: 019CABA1E74CC332A906A01A64E63BEC196F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzX8jPArik43L6W8ZAlE_rwk8f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.mft
Manifest number: 0645
Signing time: Sun 01 Mar 2026 23:00:40 +0000
Manifest this update: Sun 01 Mar 2026 23:00:40 +0000
Manifest next update: Mon 02 Mar 2026 23:00:40 +0000
Files and hashes: 1: BzX8jPArik43L6W8ZAlE_rwk8f4.crl (hash: U/IKSSdtSkNKm+eZ/jpgYnXin5AejldgBKAVjxscsy8=)
2: WrCSnmO3TptCu12D-7QukIGoskU.roa (hash: SmXLGdZ06cpzybo2WIdSNuF5mOp0yHjCCfLvK0oa2kM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.mft
rsync://rpki.ripe.net/repository/DEFAULT/BzX8jPArik43L6W8ZAlE_rwk8f4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a1:e7:4c:c3:32:a9:06:a0:1a:64:e6:3b:ec:19:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0735fc8cf02b8a4e372fa5bc640944febc24f1fe
Validity
Not Before: Mar 1 23:00:40 2026 GMT
Not After : Mar 2 23:00:40 2026 GMT
Subject: CN=d873801add4dc08914b3fb16a74e2a06548bd0de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d1:4f:5b:ef:e4:ec:77:44:56:5e:dc:19:c9:
ca:07:42:98:41:92:c5:aa:af:df:f5:f2:b2:4a:9b:
61:7d:09:92:42:52:ea:f9:15:c7:95:98:0b:cb:8b:
7b:3d:fb:6c:b1:b6:0c:f7:df:d3:16:0d:f6:95:6a:
02:2b:a3:85:9b:a7:ef:3a:b6:c7:5a:34:a1:e0:70:
bf:b3:33:24:7b:af:f9:62:e3:74:92:0b:75:bc:0a:
01:99:41:94:84:2b:6a:ca:c6:d6:c5:be:06:ee:9a:
53:75:2c:67:6f:8a:57:59:36:e2:53:dc:43:ef:35:
2a:4e:77:ce:0b:f1:b8:35:4d:d4:1d:76:05:af:7f:
ae:6b:c1:d5:77:eb:2d:28:00:c8:62:a1:1c:f5:6f:
7b:96:27:6e:cf:eb:a6:3d:73:88:52:e8:32:7a:26:
dd:f3:71:ae:8a:33:4e:fc:39:0a:ed:a5:aa:8c:27:
f1:0f:d6:ea:9a:68:7a:b9:af:4a:55:d4:d7:28:fe:
71:76:b1:ba:55:4b:c6:ef:d2:d5:52:0c:27:5b:93:
f0:cb:18:c6:1e:00:8e:21:a5:52:07:6d:e8:3c:aa:
33:26:17:7a:5e:b8:c1:54:3e:fd:4e:bc:2b:f5:3b:
32:47:df:16:6a:ed:e8:b0:08:51:41:38:9e:ca:d3:
89:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:73:80:1A:DD:4D:C0:89:14:B3:FB:16:A7:4E:2A:06:54:8B:D0:DE
X509v3 Authority Key Identifier:
keyid:07:35:FC:8C:F0:2B:8A:4E:37:2F:A5:BC:64:09:44:FE:BC:24:F1:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzX8jPArik43L6W8ZAlE_rwk8f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:5b:2f:23:7d:78:ab:6d:d4:7e:b3:16:44:57:a3:42:2a:83:
53:02:83:67:49:06:5e:d7:65:0d:de:29:69:e2:fb:3d:c0:ce:
9d:4d:c4:0c:d5:df:55:c9:70:82:8c:4a:4e:da:db:3f:b6:b6:
56:34:e5:3a:a6:ca:70:38:5e:fa:21:43:3c:c3:e7:27:b7:20:
50:91:d4:df:43:2b:78:37:8c:bc:a2:91:61:36:cc:78:76:b3:
56:01:7f:2b:b8:d8:d3:51:bb:55:ec:f2:83:e0:bd:5a:8c:52:
65:e9:eb:1e:07:a8:b1:ba:34:98:c8:e7:58:78:d1:02:10:80:
dc:d7:52:cb:81:ec:ef:f0:69:ae:a4:63:cc:d0:9e:e6:36:4f:
5b:e2:ff:ae:f4:9d:26:eb:bc:aa:f2:f6:2c:90:67:bf:9f:73:
55:8d:3c:ce:78:39:8e:2a:74:40:5c:ee:ff:40:4f:41:c0:56:
51:3c:1e:2c:4f:18:98:94:25:16:0f:66:3a:82:5c:d2:69:cc:
0c:aa:4b:8f:b4:0d:03:da:d1:c5:de:b8:6f:30:c6:17:9b:2f:
c2:3b:40:a1:9b:32:1a:cb:d1:ad:f8:2b:1d:8e:49:1f:67:0d:
f1:d6:56:8f:dc:97:7e:ec:c4:66:2b:cb:2e:0a:5c:03:7e:2f:
c8:85:5d:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:14:36 2026 by rpki-client