Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft
File: BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft (raw, json)
Hash identifier: oHMFBL6xf+qxalmzGQdef7UwV3U0SzvRAIf1R0mzlBk=
Subject key identifier: AD:D6:6C:D0:40:35:AF:40:B8:4C:A2:5D:6D:CA:EA:3F:F4:84:1D:48
Authority key identifier: 06:C3:B8:B5:F3:7E:21:06:82:50:57:1F:4D:B8:3B:47:14:46:8A:2C
Certificate issuer: /CN=06c3b8b5f37e21068250571f4db83b4714468a2c
Certificate serial: 019D27A893AF6B18544E4356249400B398CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 01:00:52 +0000
Manifest this update: Thu 26 Mar 2026 01:00:52 +0000
Manifest next update: Fri 27 Mar 2026 01:00:52 +0000
Files and hashes: 1: BsO4tfN-IQaCUFcfTbg7RxRGiiw.crl (hash: GHUXW/PiY0LWbGrL4zWmBZdgtrbfFKd9+HsQIrCc6/0=)
2: hhSORRB_cbi8J7UPYVa8deItbjI.roa (hash: tbnenU0D5ezQqQe74bKynFZLzheD+pCDrBBIC6BR1ds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:93:af:6b:18:54:4e:43:56:24:94:00:b3:98:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c3b8b5f37e21068250571f4db83b4714468a2c
Validity
Not Before: Mar 26 01:00:52 2026 GMT
Not After : Mar 27 01:00:52 2026 GMT
Subject: CN=add66cd04035af40b84ca25d6dcaea3ff4841d48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:13:86:16:8b:bd:ff:87:06:f4:34:51:bc:92:
c7:ea:ba:af:74:6c:74:3e:58:69:04:8d:65:06:df:
75:91:0b:26:9b:ba:e5:85:62:1e:1c:e0:ef:4d:b9:
06:8f:5e:69:4d:3e:8e:f1:a3:0a:ec:a7:2c:eb:72:
d4:6b:43:12:4d:e0:cf:ed:0c:fc:1e:6e:23:f3:ac:
73:e7:df:dd:3c:0d:11:b8:de:fe:be:7d:5b:d9:32:
75:a8:6a:37:28:14:79:7f:dd:14:62:14:50:7b:dd:
fc:4c:7e:05:b8:b4:8d:7c:4c:10:bc:c3:22:79:64:
12:3c:91:9b:f0:92:f6:7e:2d:d3:97:b9:80:28:9e:
02:ea:f4:28:c5:08:82:fb:cb:c7:98:a7:df:82:3f:
78:72:c9:48:51:9b:4a:5c:b0:1e:42:8a:82:a0:cf:
7c:50:dc:42:64:37:46:15:22:46:86:8a:7d:c8:94:
f8:13:a3:62:f5:72:a7:71:51:82:26:09:02:00:97:
96:07:36:91:72:4e:b9:0f:52:ed:b0:cd:25:92:04:
3d:e0:75:f3:72:f7:ac:00:07:43:e9:c8:ee:bb:4c:
b1:96:5f:e5:98:ac:b6:e4:e3:96:d0:ca:45:52:ba:
94:0f:2d:a6:c7:d8:c9:fb:31:dd:a3:e3:00:33:e3:
74:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:D6:6C:D0:40:35:AF:40:B8:4C:A2:5D:6D:CA:EA:3F:F4:84:1D:48
X509v3 Authority Key Identifier:
keyid:06:C3:B8:B5:F3:7E:21:06:82:50:57:1F:4D:B8:3B:47:14:46:8A:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:ad:50:ac:29:43:2a:53:97:af:d4:91:2a:c0:49:c0:35:a1:
f8:69:c2:7a:35:33:13:ca:cb:6a:5a:12:1b:3d:e7:6d:9b:b9:
32:e3:15:7b:c6:25:cb:2a:5a:ea:94:b6:2a:25:88:28:50:7a:
58:81:45:94:82:47:d1:de:6e:bb:7b:8d:7c:1a:9e:08:b7:40:
01:b8:18:1f:de:8b:47:47:1c:45:ee:1e:52:1a:37:27:82:87:
e1:89:5c:e8:fb:84:36:e7:00:a7:d1:68:16:40:cd:14:8f:bc:
7b:86:22:50:de:5f:ea:84:df:a7:08:33:48:dd:5e:7f:11:2f:
d7:35:2e:7d:19:09:e9:eb:9f:8b:6e:73:9e:80:d3:f7:70:b4:
73:ab:65:07:35:32:9e:63:3f:b0:a8:02:c5:01:5d:12:b7:c4:
37:d1:09:7b:f2:d9:a2:a7:63:e0:57:04:15:f1:90:67:c0:1b:
f6:58:4e:ef:40:43:b2:da:3a:56:da:1f:c5:bd:bf:e9:4a:2c:
0d:e2:38:09:4d:aa:5e:d9:b0:99:31:b5:f8:68:ae:40:ec:2a:
58:8b:c9:76:f8:b7:b6:4f:31:fd:79:94:d0:95:3b:8b:15:43:
ea:44:96:e5:f3:35:17:74:95:98:d0:65:f8:79:be:66:4a:4f:
e9:6c:cf:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:52:07 2026 by rpki-client