Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
File: v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft (raw, json)
Hash identifier: 5ort3NuMDnk9AiQftJi7MAUWPp0vieCcGn9E6kubar0=
Subject key identifier: 34:38:18:B0:DA:41:3A:D2:5C:BE:43:66:49:5E:15:B7:BB:90:54:93
Authority key identifier: BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49
Certificate issuer: /CN=bf56ba98c6745a63026d78fc284722399d2eb849
Certificate serial: 019CAC4706A5576D2834D5A54B7A34253659
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
Manifest number: 1282
Signing time: Mon 02 Mar 2026 02:01:01 +0000
Manifest this update: Mon 02 Mar 2026 02:01:01 +0000
Manifest next update: Tue 03 Mar 2026 02:01:01 +0000
Files and hashes: 1: pBZly4FM6dBwlJDuWkuLuvUQhJg.roa (hash: o71HDV8s+9P3IJ7RipmOqIZNCQQ65Mxlc2gRRdwJM+c=)
2: v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl (hash: S/UbPEq/pnxYXW6sGocamJf7698jJxN34iIfgk7txr8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:06:a5:57:6d:28:34:d5:a5:4b:7a:34:25:36:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf56ba98c6745a63026d78fc284722399d2eb849
Validity
Not Before: Mar 2 02:01:01 2026 GMT
Not After : Mar 3 02:01:01 2026 GMT
Subject: CN=343818b0da413ad25cbe4366495e15b7bb905493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6f:e2:ee:6c:f1:99:96:8f:7d:d0:79:96:98:
ac:8f:ca:f7:ae:ce:ae:b4:fa:71:a3:b1:5e:1c:89:
09:b5:00:7c:19:e6:b4:c4:f7:8b:bf:a3:5c:67:7f:
f5:92:99:ba:dc:0e:af:da:5a:0e:26:82:14:94:aa:
24:2c:bf:6e:be:73:d6:ba:62:f3:6b:ff:94:20:91:
88:af:c7:c2:44:ff:9e:b4:ae:5d:f2:1c:a0:97:66:
91:73:16:46:10:46:db:c3:1c:e9:fa:d0:9b:e6:c3:
ae:4f:aa:ca:b9:63:64:cd:da:6c:c6:07:29:bb:fe:
89:08:b8:67:a1:ed:92:ac:5a:16:5f:6a:07:6d:cb:
1f:39:fe:53:c1:2f:8f:03:1a:07:f7:b2:63:02:07:
c2:79:a8:4a:51:76:42:40:30:a5:47:2e:84:0c:24:
7a:a5:62:d6:1e:7c:0a:9d:d6:8e:07:39:b0:0a:61:
d6:3f:0a:80:6b:36:6b:40:fe:3b:bf:0e:36:9d:ab:
e1:e9:8e:d4:1b:f3:7f:29:90:b7:43:67:2e:95:f6:
b9:30:05:19:ce:82:71:3f:72:d9:c9:02:ae:49:a4:
65:d5:bb:b3:5f:b1:36:a2:17:dd:a6:e4:0c:89:78:
59:79:17:85:b8:c4:17:70:ee:fb:df:e5:e8:f5:a2:
fa:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:38:18:B0:DA:41:3A:D2:5C:BE:43:66:49:5E:15:B7:BB:90:54:93
X509v3 Authority Key Identifier:
keyid:BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:10:07:9a:e9:a7:f3:44:59:ec:9c:a2:f1:46:57:62:87:bc:
20:18:ff:8f:00:7e:c4:cf:ab:63:c0:e1:bb:b7:89:61:73:95:
78:91:52:06:a3:61:5c:62:62:66:1d:18:99:3d:74:c1:5a:d9:
5f:34:03:3f:11:ab:a8:70:f8:23:dc:7a:e8:2b:6a:60:27:ad:
ac:6a:ed:c9:e9:4b:20:8d:cf:d8:61:4d:a6:74:4e:8d:a4:55:
14:69:2b:c6:9e:34:2e:05:9b:25:d3:6e:bc:fc:cc:8e:d7:04:
2e:f6:3e:97:d5:81:91:f4:d4:af:92:a8:8b:a1:7b:51:b4:e4:
aa:cd:f2:cb:32:cc:02:e0:14:36:1f:8d:1e:2e:1a:d3:5d:f4:
66:45:4c:a9:cd:fd:ea:0e:e9:f4:56:c7:40:c8:f4:37:e4:bb:
f0:15:7e:08:30:dc:8f:1a:d3:c6:81:e5:fe:f2:dd:e2:d7:2a:
a1:4a:f6:f8:da:26:94:2f:f3:d3:9e:60:85:fa:a9:00:a1:43:
53:43:0d:a5:c8:a9:f3:41:02:cf:86:0b:16:42:99:d7:3f:16:
a5:d9:03:35:0b:dd:fb:4a:08:fa:4d:cd:00:f3:20:7c:ad:b2:
91:31:ea:3a:96:78:aa:ef:10:7a:67:a7:47:16:45:36:ac:30:
aa:a6:bc:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:53:48 2026 by rpki-client