Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
File: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft (raw, json)
Hash identifier: Oo81a1KTL0ohZig5rGTtYg9BRS9K+Bt8gHoBCHouN6U=
Subject key identifier: 2D:9C:B2:0B:4F:B8:49:57:F4:F7:FC:CE:14:AB:1C:74:26:E9:E9:0D
Authority key identifier: BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD
Certificate issuer: /CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad
Certificate serial: 019CAE3523F45EDD4E1D78A838D67E3B9E86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
Manifest number: 0510
Signing time: Mon 02 Mar 2026 11:00:44 +0000
Manifest this update: Mon 02 Mar 2026 11:00:44 +0000
Manifest next update: Tue 03 Mar 2026 11:00:44 +0000
Files and hashes: 1: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl (hash: zCF55b/clUnFudb2nkm2XFJ3BEWeoMgApEUfx5dTrwg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:23:f4:5e:dd:4e:1d:78:a8:38:d6:7e:3b:9e:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad
Validity
Not Before: Mar 2 11:00:44 2026 GMT
Not After : Mar 3 11:00:44 2026 GMT
Subject: CN=2d9cb20b4fb84957f4f7fcce14ab1c7426e9e90d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:60:a2:d9:2b:af:a1:60:41:25:e8:51:e7:81:
94:a3:58:28:f5:7a:3d:1b:d7:30:0c:8b:76:33:57:
39:b5:6a:95:3b:ab:5b:6e:53:ec:5e:08:bb:ca:45:
14:7f:fe:1d:fd:87:f0:0b:26:46:12:32:49:c8:5c:
e7:b9:98:97:c5:a1:a8:ed:a1:2e:c7:66:7a:cd:fa:
f4:72:3d:86:3e:20:15:79:cc:0f:c0:3d:dd:0b:f9:
d8:7e:86:2d:3d:32:99:f2:88:59:1b:fd:33:8e:3b:
57:b1:8e:7e:73:50:55:6a:a1:83:23:37:b8:17:1a:
1b:ce:a7:57:d7:8d:56:24:85:aa:b1:a4:75:35:b9:
8f:95:c9:f5:7e:d5:86:d2:ba:fb:ea:e5:b8:4f:96:
e6:97:4d:15:67:c9:ee:32:0f:de:59:9d:ee:12:e7:
68:94:89:20:cb:91:d8:20:c2:c5:55:fc:f4:5d:19:
bf:9f:0e:ec:22:21:b0:16:5f:04:b8:a6:13:60:42:
3a:0c:7d:87:d0:6d:35:5c:c1:d2:9f:a8:53:e1:bd:
6e:b5:b2:51:70:a4:15:7d:2b:70:0a:c7:8b:19:c4:
c5:be:cb:f5:2f:5b:7c:0a:0f:cd:73:d2:27:06:29:
22:a3:38:ed:68:fe:c2:6d:5d:7f:01:01:09:73:3d:
83:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:9C:B2:0B:4F:B8:49:57:F4:F7:FC:CE:14:AB:1C:74:26:E9:E9:0D
X509v3 Authority Key Identifier:
keyid:BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:8b:9d:25:47:6e:cc:af:8b:e4:78:52:aa:c9:ff:9b:08:6a:
ad:bc:4e:af:a3:29:7c:fa:82:97:58:74:5c:8b:1c:2b:0f:a1:
58:ca:7a:90:da:19:9b:72:52:3a:29:7b:62:cd:f0:87:14:30:
13:f1:7b:70:8a:3c:af:d6:d4:03:f7:6c:ed:9a:8b:a0:0c:37:
80:d8:9e:e9:83:53:bd:a2:61:bb:e5:d7:9f:8e:8c:cb:08:25:
21:de:1d:bf:42:23:bf:1c:34:8b:fd:ac:91:43:cf:a2:2e:50:
78:2e:e5:26:4a:fb:69:8c:51:6f:57:26:ab:d4:87:cf:23:c6:
42:9e:3d:02:b4:83:a6:88:db:2f:62:e5:26:d3:c1:9a:08:86:
a3:61:b3:5d:de:bc:88:1d:a8:99:74:78:07:1e:cd:2e:4f:cb:
3c:dc:6f:94:aa:5b:97:a2:f2:3a:96:42:87:0b:8a:b3:b7:10:
65:67:81:6a:69:2f:bc:80:bb:58:9d:4c:e3:6e:3e:4d:23:60:
5f:18:1c:75:0d:2b:e4:71:c9:24:06:37:e4:81:39:c1:f6:f5:
72:36:30:a3:8d:26:4a:e7:54:d5:83:89:d3:97:b5:29:41:07:
9c:1f:6e:7b:1b:22:ba:4e:b0:6c:f5:28:d9:06:9f:64:3f:ec:
ee:27:0e:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:37:30 2026 by rpki-client