Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
File: bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft (raw, json)
Hash identifier: Nag5PHttfyHrya++M0YMekdNQlvQdQ70sWdSc2nlU5U=
Subject key identifier: D9:94:81:D3:77:AF:7A:92:1D:A4:A9:46:DC:08:38:C9:19:78:62:C1
Authority key identifier: 6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
Certificate issuer: /CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Certificate serial: 019D99D0DE7524A0E370DA142D04D2C405FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
Manifest number: 057D
Signing time: Fri 17 Apr 2026 05:01:35 +0000
Manifest this update: Fri 17 Apr 2026 05:01:35 +0000
Manifest next update: Sat 18 Apr 2026 05:01:35 +0000
Files and hashes: 1: YDy6wLds96Yf3zX0RUfnfXQDw5Q.roa (hash: 86RzS+pw/jn2zDtIOdA8fDYlhM/9zcSkfL4mjAAa2B4=)
2: bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl (hash: xrQC8RDvA83dvszPumzgAd4ErgLwlV0zvXsCo1lzB1k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:de:75:24:a0:e3:70:da:14:2d:04:d2:c4:05:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Validity
Not Before: Apr 17 05:01:35 2026 GMT
Not After : Apr 18 05:01:35 2026 GMT
Subject: CN=d99481d377af7a921da4a946dc0838c9197862c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c8:02:e6:78:86:df:ef:4f:2d:65:2b:2b:72:
3f:a4:80:fd:d8:a2:99:9f:5f:bd:26:11:50:08:c7:
f1:03:6f:fe:0b:96:90:09:55:0b:7d:cf:33:2d:84:
2f:23:9d:d5:49:d3:be:3c:3b:30:02:56:88:6e:44:
f0:f5:87:04:e7:48:5d:23:e9:8c:f9:ea:b9:08:72:
b6:83:ec:4d:5f:85:ef:98:c0:d2:12:42:26:43:e3:
d1:82:5c:b3:89:c9:1b:ba:29:f1:54:c5:bf:a8:bc:
83:04:b2:02:2b:78:89:59:4f:e3:8a:8f:cb:2e:9d:
7f:7f:0b:bd:e7:be:87:17:9d:5e:3d:98:d1:84:61:
7f:9c:21:40:25:ea:da:fd:81:4e:7d:1a:1b:94:76:
9a:39:d5:94:9b:f0:fb:4e:05:50:6f:b5:ac:45:84:
c6:dd:3f:bf:61:df:bb:be:6c:16:4b:05:5f:0c:cf:
f9:eb:ee:1e:2e:9e:be:4d:9a:c8:59:27:85:b7:c2:
2f:44:59:9a:92:97:08:07:c2:12:4f:68:4f:06:6e:
40:bf:02:28:9a:15:e2:6b:60:2b:9c:27:87:8f:a5:
5d:fe:4d:91:62:2e:30:5d:f9:02:db:f1:21:96:06:
71:2b:c5:93:76:9c:44:61:bd:15:08:e1:ff:65:74:
68:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:94:81:D3:77:AF:7A:92:1D:A4:A9:46:DC:08:38:C9:19:78:62:C1
X509v3 Authority Key Identifier:
keyid:6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:73:48:e4:e3:71:53:f8:2a:13:58:a8:a0:5e:8a:67:b2:c3:
38:98:39:0d:59:ae:88:39:e2:d8:2a:a9:01:c5:77:94:56:5f:
27:bb:fe:e8:3d:fb:60:61:0d:95:6c:12:11:4d:b4:fb:e7:39:
1f:ef:c4:92:1b:48:9d:7a:3d:8c:76:a4:49:6e:ae:a5:26:b3:
21:78:1c:5e:64:7d:9b:04:b8:cd:53:42:26:b1:ad:6f:9c:ec:
57:e4:fc:d5:51:83:78:35:7e:a7:e9:f4:0d:c1:3a:57:b8:4f:
67:1a:54:f3:1a:42:1e:23:5e:a2:3e:c3:63:14:b5:44:47:e2:
fa:77:3c:3f:74:f9:69:51:8c:2b:56:af:bc:86:5e:79:a5:40:
d1:b8:6f:55:a9:a4:6f:75:4c:ed:2a:58:86:89:ca:e1:2b:63:
dc:06:d6:3c:c4:5d:18:cc:20:4d:bf:4f:7e:3c:11:73:8a:b8:
4c:03:58:4e:fa:a6:cd:ae:e1:70:15:88:6d:c5:6d:a2:42:b2:
78:8b:b1:b8:bb:b1:d2:a0:cd:10:9a:7c:a9:87:26:d2:c9:2e:
c4:bd:ba:76:14:56:a9:6e:55:e3:dd:bd:d5:93:02:12:68:69:
42:ea:29:92:17:d5:36:8b:15:de:b9:42:c0:a7:0b:27:02:a2:
95:f7:24:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:56:16 2026 by rpki-client