Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
File: bQih9MOF86e2KYTVPoFmWplUEPM.mft (raw, json)
Hash identifier: NL4SRGq/KTeYg/VxGEuo0ZhMe9amLb+kXtBbs4drPXw=
Subject key identifier: 03:7A:F2:67:B4:E1:F9:13:8B:BD:23:12:1A:43:3A:4B:44:A3:BF:0E
Authority key identifier: 6D:08:A1:F4:C3:85:F3:A7:B6:29:84:D5:3E:81:66:5A:99:54:10:F3
Certificate issuer: /CN=6d08a1f4c385f3a7b62984d53e81665a995410f3
Certificate serial: 019D29290BC822B2D05E416C0992F2D8954B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
Manifest number: 0C87
Signing time: Thu 26 Mar 2026 08:00:48 +0000
Manifest this update: Thu 26 Mar 2026 08:00:48 +0000
Manifest next update: Fri 27 Mar 2026 08:00:48 +0000
Files and hashes: 1: ALmp9QVk21GznNgt6Dz8ZcrWqhg.roa (hash: O+KLwwhLgCZOa9Dra8cvY4Q3raXGnTT+rDZassQxMZs=)
2: bQih9MOF86e2KYTVPoFmWplUEPM.crl (hash: xZ4evTIAnslUA+wXeH2mwLbR56I28ABYM986M2JksMk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:0b:c8:22:b2:d0:5e:41:6c:09:92:f2:d8:95:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d08a1f4c385f3a7b62984d53e81665a995410f3
Validity
Not Before: Mar 26 08:00:48 2026 GMT
Not After : Mar 27 08:00:48 2026 GMT
Subject: CN=037af267b4e1f9138bbd23121a433a4b44a3bf0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6a:44:19:79:89:c4:28:30:f2:21:02:99:41:
4b:df:57:de:59:43:8e:c5:af:f6:02:9c:c5:8b:7a:
82:67:67:df:6f:71:ac:7d:bd:d9:57:b0:18:3f:b9:
e2:35:7b:23:ca:2c:e8:30:18:7c:1c:2f:b0:cc:2a:
b2:2a:65:66:47:2e:f2:71:b8:a7:8b:2a:53:0c:8e:
5c:fe:5c:e9:1b:3a:cb:14:a6:38:fb:18:c5:92:79:
49:cf:db:90:5f:59:d6:50:92:35:28:5f:b5:b2:9a:
89:73:4c:a8:8f:eb:5f:f7:16:b9:ce:69:0c:c4:cf:
3c:69:2c:ee:bd:eb:78:ab:0d:c8:93:ea:60:b8:4d:
bb:db:63:f7:5c:f6:54:19:ab:16:f9:4c:3b:ee:05:
69:01:e6:7b:cf:05:e1:2a:a8:03:b0:c1:36:cf:81:
bf:5f:a9:47:f4:2e:a2:b2:c3:14:f5:ce:83:3d:61:
f2:ce:3f:a8:79:4f:45:e9:4f:0c:e1:7c:0f:b3:7b:
03:9c:cc:b8:34:ed:91:88:a0:be:19:4b:72:71:0d:
b4:47:18:a1:b7:90:8e:6b:d5:af:f5:ec:33:a5:40:
36:85:19:cf:e1:b8:fa:a2:67:7a:54:28:02:70:92:
ad:63:7d:f1:6e:53:4f:6c:55:a7:ee:73:52:57:de:
0f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:7A:F2:67:B4:E1:F9:13:8B:BD:23:12:1A:43:3A:4B:44:A3:BF:0E
X509v3 Authority Key Identifier:
keyid:6D:08:A1:F4:C3:85:F3:A7:B6:29:84:D5:3E:81:66:5A:99:54:10:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:9a:16:15:42:c6:14:c0:d0:cd:6d:14:66:d3:8e:46:c3:90:
77:58:47:66:7f:c6:98:20:71:c5:e5:0c:7d:99:55:a1:be:0d:
17:f9:f7:71:44:40:0a:f1:ea:89:29:6a:2e:39:2b:56:32:66:
e0:20:d4:e0:bd:2a:65:d8:7c:a0:fe:92:c5:ed:a6:1a:6f:21:
26:c8:c8:f2:83:51:3a:ce:a4:60:c4:75:67:8b:ed:c2:81:59:
38:08:de:eb:72:65:c1:f7:b2:13:dd:a5:50:9a:40:e5:e5:20:
33:13:bd:ec:83:f6:de:06:28:ba:52:a2:e9:e5:41:a3:79:35:
02:98:1e:1b:87:d5:2e:c2:78:e6:68:5e:42:72:c3:08:3d:74:
d2:f1:7e:c3:2b:aa:de:43:88:34:99:55:51:bb:2e:34:67:a0:
b0:96:f5:da:8b:ab:59:94:aa:41:d8:7a:ee:38:b3:59:16:d5:
d2:16:d7:e1:d6:aa:5e:ca:e8:72:06:e6:94:8e:51:19:77:7d:
37:27:7e:e0:43:55:21:8f:1c:b5:ca:3a:f9:58:47:14:78:42:
e6:28:5d:e3:05:0f:2a:fc:75:d9:d0:4d:45:0a:64:fe:0b:3e:
5b:5a:b5:9b:1a:4e:21:41:0a:ef:45:1c:d3:a2:88:14:de:f2:
e2:e7:99:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:30:06 2026 by rpki-client