Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
File: B-pSPsf5N3oanl1vqGgX7T1sCoI.mft (raw, json)
Hash identifier: fDrFqph3YzeLzifPncET2wypex+X0vnZuKBM+tW52Go=
Subject key identifier: 88:A9:74:B4:67:3F:A3:8C:99:27:8A:88:B6:02:AA:25:D6:AF:F0:A7
Authority key identifier: 07:EA:52:3E:C7:F9:37:7A:1A:9E:5D:6F:A8:68:17:ED:3D:6C:0A:82
Certificate issuer: /CN=07ea523ec7f9377a1a9e5d6fa86817ed3d6c0a82
Certificate serial: 019D2816873814A60D8A18DDAEF47C082595
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
Manifest number: 1885
Signing time: Thu 26 Mar 2026 03:00:58 +0000
Manifest this update: Thu 26 Mar 2026 03:00:58 +0000
Manifest next update: Fri 27 Mar 2026 03:00:58 +0000
Files and hashes: 1: B-pSPsf5N3oanl1vqGgX7T1sCoI.crl (hash: +FbUVIHB2OGZzK14pHOebeYpUaWdNTcNepNT4YOW6U8=)
2: KAN-qjqmnh5cqoy6zcPSS-sENok.roa (hash: KIM13RN1rwVfiqcH/vu91prDVqpHnTdoOYAr3zB4tTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 03:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:87:38:14:a6:0d:8a:18:dd:ae:f4:7c:08:25:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07ea523ec7f9377a1a9e5d6fa86817ed3d6c0a82
Validity
Not Before: Mar 26 03:00:58 2026 GMT
Not After : Mar 27 03:00:58 2026 GMT
Subject: CN=88a974b4673fa38c99278a88b602aa25d6aff0a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:20:8e:10:cf:6c:07:91:f0:39:e5:90:29:c6:
35:0c:61:2e:a2:7a:75:43:9f:cd:a0:2b:1e:09:18:
ad:94:7f:37:5d:48:74:dc:e5:e6:b4:a5:28:f0:60:
5a:0e:b6:59:9d:49:6b:9b:8d:12:2e:0d:6d:40:4e:
ea:6c:96:24:35:bd:61:d9:be:22:eb:b5:52:95:2e:
31:43:05:af:42:90:0c:75:ad:a4:a4:5b:64:b3:31:
e6:67:70:1f:bf:8e:17:e5:a8:82:8c:d3:37:9f:9d:
a8:b0:2e:d0:11:74:6c:ad:91:46:d5:a7:aa:c8:20:
ba:1d:ba:c1:81:c5:27:99:2b:46:d4:c7:32:52:8b:
c6:dd:71:65:70:94:af:ed:5a:16:13:9a:91:e5:db:
c1:46:0b:b6:ea:1f:6e:b2:89:0b:17:ab:a0:61:cb:
fc:63:d1:ec:d1:54:d8:6b:9c:61:39:98:08:b5:97:
ff:6b:13:66:e0:a4:24:5a:40:c2:3d:53:a0:b4:b6:
4a:35:56:85:eb:e6:98:15:f4:a4:9e:ab:a7:92:a1:
97:17:1b:0f:dd:d1:62:e2:ba:df:03:b8:f2:16:46:
8f:d9:ff:ad:4f:34:a7:cb:27:7d:a2:6f:25:e5:1e:
f7:a4:0c:29:0a:5f:ca:c7:78:d6:ff:cd:3d:2d:e2:
f6:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:A9:74:B4:67:3F:A3:8C:99:27:8A:88:B6:02:AA:25:D6:AF:F0:A7
X509v3 Authority Key Identifier:
keyid:07:EA:52:3E:C7:F9:37:7A:1A:9E:5D:6F:A8:68:17:ED:3D:6C:0A:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:12:f1:2c:4b:20:70:70:26:ce:85:16:d7:c1:a9:af:e8:c1:
f8:d7:15:0a:f4:06:e5:62:c4:26:e6:5e:a4:df:16:e4:48:72:
8f:80:85:b1:77:1b:ac:06:39:a1:d6:a4:d5:99:8f:10:33:97:
9a:73:cb:95:b1:65:fa:db:ca:49:a0:93:d1:96:73:c0:c2:a1:
0e:27:1a:96:b7:ae:ff:3b:55:cc:1f:d5:40:61:e4:2b:de:3a:
9f:62:5b:a9:e9:4d:ad:da:d3:ae:f0:dd:7f:83:84:a7:95:d2:
1d:f1:a2:5a:c2:a8:0f:8f:6d:d4:b2:0d:fa:49:75:72:b3:e7:
48:ed:71:31:1e:72:89:4b:c7:e2:36:32:d6:4d:06:eb:c7:ba:
48:84:dd:03:df:3b:82:29:17:62:41:62:a5:d8:2a:42:33:97:
27:3d:4c:8c:19:2d:6d:c5:4b:d1:8b:b9:9f:16:c8:5b:69:53:
02:12:75:43:76:52:d3:ca:6b:cc:37:03:51:13:c4:6c:10:d8:
91:e4:c2:a2:fc:dc:70:e7:4b:90:17:25:31:1f:90:0d:5d:d4:
99:ff:52:0b:b7:b8:c5:44:72:15:e3:47:70:ce:ea:3e:e7:30:
16:89:52:fa:39:61:85:c9:24:12:ef:a9:bf:19:60:55:88:08:
0b:58:e5:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:59:47 2026 by rpki-client