Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
File: bNmlABXpaTdlb8DKW21WXkWb02A.mft (raw, json)
Hash identifier: WCeKfMFICUt+e6R0Mn9ehcuGYdE6GJaFJVuUwoYRgZc=
Subject key identifier: A5:21:14:0D:7C:A1:F5:A4:05:F9:4F:BD:57:FB:F5:7C:2F:15:BA:47
Authority key identifier: 6C:D9:A5:00:15:E9:69:37:65:6F:C0:CA:5B:6D:56:5E:45:9B:D3:60
Certificate issuer: /CN=6cd9a50015e96937656fc0ca5b6d565e459bd360
Certificate serial: 019CAB6AD88525A09CF171ADE53E97748942
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
Manifest number: 1844
Signing time: Sun 01 Mar 2026 22:00:31 +0000
Manifest this update: Sun 01 Mar 2026 22:00:31 +0000
Manifest next update: Mon 02 Mar 2026 22:00:31 +0000
Files and hashes: 1: bNmlABXpaTdlb8DKW21WXkWb02A.crl (hash: 1jEzoI7J5HuaM1tIt0OotN8LXlBCJF2gCh5yvAwHO20=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6a:d8:85:25:a0:9c:f1:71:ad:e5:3e:97:74:89:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd9a50015e96937656fc0ca5b6d565e459bd360
Validity
Not Before: Mar 1 22:00:31 2026 GMT
Not After : Mar 2 22:00:31 2026 GMT
Subject: CN=a521140d7ca1f5a405f94fbd57fbf57c2f15ba47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a8:c3:dc:96:10:91:4b:d9:44:8a:69:6f:81:
17:1b:13:af:a1:8a:08:f8:64:1a:04:1c:ae:de:eb:
f6:b3:d8:66:4d:0a:a6:79:16:54:b0:96:c8:d2:6a:
bb:a5:99:33:5a:97:e0:7e:e8:5c:35:15:15:7b:f0:
22:63:b6:32:13:33:7c:c9:d0:dd:e9:82:3e:c0:af:
99:91:38:69:42:34:c3:d7:90:94:e9:a9:2a:c8:b7:
ea:98:ea:b0:8d:b9:5e:8c:7d:95:5c:b4:20:c0:8d:
8a:6f:71:69:7e:51:ab:f0:e9:54:e4:a6:80:ed:60:
ab:81:af:65:15:3f:9f:14:3f:21:0d:04:e6:c4:73:
97:24:07:87:30:c8:b6:5c:bd:a2:8d:09:5d:25:2c:
ef:cd:41:49:7a:47:8d:45:29:b9:44:7b:7c:f2:13:
c5:a5:12:22:8d:0d:d5:63:5a:80:3d:61:e0:d9:16:
b5:3c:83:9c:60:67:23:51:30:78:a2:54:f6:4a:31:
08:1a:8b:7a:80:8b:f2:0a:f8:98:de:d4:e1:38:41:
83:fd:73:8c:85:49:4a:6c:80:44:de:cf:3c:6f:9e:
13:1b:ac:13:95:e6:5c:ce:1b:6a:07:4d:3e:f5:fd:
11:51:00:3a:c3:fc:61:e6:b5:7d:99:e8:c9:1a:20:
fa:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:21:14:0D:7C:A1:F5:A4:05:F9:4F:BD:57:FB:F5:7C:2F:15:BA:47
X509v3 Authority Key Identifier:
keyid:6C:D9:A5:00:15:E9:69:37:65:6F:C0:CA:5B:6D:56:5E:45:9B:D3:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:94:c6:0d:28:ba:1c:44:8b:7f:5d:7f:12:af:2b:04:90:d4:
93:d7:8a:9f:45:10:c3:b5:48:3b:37:37:95:1a:9f:74:be:90:
f2:f6:cd:18:fc:34:a9:84:2c:78:05:15:53:91:76:a5:65:b3:
ec:f6:71:4b:be:05:ef:b2:22:50:70:72:40:16:e1:91:e9:94:
78:98:c8:d2:69:ed:a3:45:46:52:a2:5d:01:08:bc:d3:8f:b0:
2e:24:2a:0f:1e:87:f4:43:c6:80:80:aa:59:b5:40:84:f6:15:
10:13:ca:12:84:16:41:84:40:ec:12:34:14:20:cc:46:23:5d:
95:a3:bc:bd:e0:c3:10:09:c1:ef:13:a2:b6:7c:b4:78:38:9b:
dd:97:ac:8f:e5:65:b9:fe:3a:30:c4:86:fa:69:7a:a4:71:11:
1c:3e:ee:81:17:6f:f2:32:56:86:be:94:e2:19:32:bb:30:7b:
53:04:98:8c:0d:dc:b8:d3:44:a1:ef:44:d7:57:f7:23:4d:6d:
ef:9e:a1:53:8d:cd:ce:30:0e:88:e5:91:02:e1:dd:27:17:7c:
cc:c6:f2:50:63:8a:09:e7:c2:83:db:56:6b:91:cb:f6:07:cc:
a9:fb:b4:8c:d3:09:e1:a9:5e:84:ee:8a:fa:79:a4:b4:66:23:
24:ad:46:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:42:41 2026 by rpki-client