Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
File: bfhqH1cK4xUpAiqk9h79nsK5fQU.mft (raw, json)
Hash identifier: ys0tTM5hV0Pr8H5QztmAAVBXPm4yPEKpyz3V3ZJTDOs=
Subject key identifier: 3D:35:22:80:BA:E3:35:05:24:FE:D0:6E:4A:6D:22:D4:DF:C6:C6:9C
Authority key identifier: 6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
Certificate issuer: /CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Certificate serial: 019D9D3F99C13417A36CD2EEE6E6E46D3413
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
Manifest number: 173F
Signing time: Fri 17 Apr 2026 21:01:24 +0000
Manifest this update: Fri 17 Apr 2026 21:01:24 +0000
Manifest next update: Sat 18 Apr 2026 21:01:24 +0000
Files and hashes: 1: Nx4WUGOdHpNQN9XS38e-AsCcPVw.roa (hash: 34pVZ/V8QJHpQ0HgHgjAh/BvMJod9h4SmiBh4ahKV2A=)
2: bfhqH1cK4xUpAiqk9h79nsK5fQU.crl (hash: n8wX4RhdjWpL0I+YCjb70MrEv4/Wunul1Pb3BT8Gqqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:3f:99:c1:34:17:a3:6c:d2:ee:e6:e6:e4:6d:34:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Validity
Not Before: Apr 17 21:01:24 2026 GMT
Not After : Apr 18 21:01:24 2026 GMT
Subject: CN=3d352280bae3350524fed06e4a6d22d4dfc6c69c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1c:d7:fc:25:aa:56:ea:55:bc:2c:55:47:98:
b5:32:7c:e4:35:0d:56:c9:f6:10:7f:e3:e8:7b:26:
9f:9b:13:b7:57:a2:91:0a:c1:c0:08:ed:7a:f4:62:
db:92:fc:ce:06:6a:34:63:67:a7:7e:82:ad:8f:3f:
a0:d5:a2:5c:08:d5:b9:09:b6:51:59:22:09:13:e9:
0e:6a:a9:14:d6:5c:32:07:79:ef:06:2e:49:24:c1:
b2:a6:d2:5f:d6:2a:89:72:3c:b5:0e:31:b7:11:11:
19:5c:bb:ec:21:92:41:c9:f3:d0:31:1b:2a:e7:01:
81:1e:22:a2:e3:3c:89:18:c8:c3:46:fc:99:14:bd:
39:b8:00:25:8a:f9:39:0f:70:b8:28:aa:f9:38:9b:
2a:9d:5b:bb:43:fb:c8:65:bf:0d:36:3c:ec:cb:57:
b5:2d:a3:2c:58:87:1c:ca:a0:1c:ee:1f:25:79:58:
5f:dd:67:d9:82:3c:60:95:0d:5e:37:e2:c7:7c:13:
b5:ba:f6:b5:ad:ad:36:6c:36:8a:a7:04:79:02:a3:
b0:50:d0:6a:b0:85:26:f8:11:82:45:50:71:61:e4:
d9:fc:8a:63:b7:63:dc:05:75:1b:ac:5f:b9:ae:1d:
d3:4d:d3:81:8c:c9:4e:6c:e3:e4:1e:af:e0:88:25:
e0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:35:22:80:BA:E3:35:05:24:FE:D0:6E:4A:6D:22:D4:DF:C6:C6:9C
X509v3 Authority Key Identifier:
keyid:6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:a6:b5:fd:42:34:7e:3e:ea:4b:c2:41:e2:f0:d0:54:de:26:
50:45:9f:15:57:77:0f:9f:3c:d5:44:e4:6d:bf:30:ac:1c:f3:
49:86:87:05:13:ff:27:77:c8:55:fd:7f:ef:17:2b:8f:0e:0a:
fe:28:51:2f:6c:2a:44:ba:36:9b:35:bb:4d:36:e0:df:24:90:
67:75:10:43:07:97:af:a0:28:b2:48:57:c8:5a:e4:4e:8c:32:
87:af:f4:90:1f:09:ae:f9:b3:4e:19:e1:7e:f1:b8:51:63:dd:
4a:80:97:63:db:dc:c3:99:cb:92:f8:a6:ca:3c:8c:d5:e1:2e:
76:05:d4:39:a6:12:a2:eb:f9:66:98:4e:d6:5d:92:69:6e:c5:
80:c7:d2:3f:94:57:7d:02:b0:6f:ba:17:46:34:93:de:8c:cc:
2a:e0:f2:a8:4e:ba:3e:bc:ed:8a:e4:22:e4:f5:5d:96:1e:8d:
7f:a4:04:e1:8a:b8:9d:73:2d:b8:ec:f6:77:97:1a:e6:25:f1:
dd:9c:9d:53:b1:39:e2:32:8a:6b:f5:78:a9:42:c0:5f:e6:51:
f1:cd:27:3d:76:74:55:e0:1b:5c:20:ba:94:40:c6:58:f5:35:
04:25:38:8e:5b:ef:9b:92:a1:e8:44:c1:35:a8:de:d5:6f:58:
ae:b7:3c:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 02:33:39 2026 by rpki-client